New csf v4.59

Changes:

  • Added proftpd regex for Plesk server log file format
  • Modifed the Server Check cipher checks for pure-ftpd and Apache to use openssl to ensure SSLv2 is disabled
  • Added cPanel Server Check checks for dovecot, courier-imap IMAP and POP3D SSL cipher list
  • New option SAFECHAINUPDATE added. If enabled, all dynamic update chains (GALLOW, GDENY, SPAMHAUS, DSHIELD, BOGON, CC_ALLOW, CC_DENY, ALLOWDYN) will create a new chain when updating, and insert it into the relevant LOCALINPUT/LOCALOUTPUT chain, then flush and delete the old dynamic chain and rename the new chain. See csf.conf for more information. This option is disabled by default, but we do recommend that it is enabled on non-VPS servers with restrictive numiptent values
  • Added SAFECHAINUPDATE to the firewall Server Check (except for Virtuozzo VPS servers)
  • Modified Server Check on cPanel to make the PHP v4 warning clear and to warn where PHP v5 and v4 have both been compiled (PHP v4 is obsolete and should not be used at all anymore)
  • Added WHM checks for skipparentcheck and cpsrvd-domainlookup to Security Check
  • New option LF_ALERT_TO. If set, the value of this option will override the To: field in all of the lfd alert templates