New csf v4.27

Changes:

  • New Feature – Port Flood Protection. This option configures iptables to offer protection from DOS attacks against specific ports. This option limits the number of connections per time interval that new connections can be made to specific ports. See csf.conf and readme.txt for more information. This option is only available on servers with the ipt_recent kernel module
  • cPanel DNSONLY compatibility added – Thanks to JJ for the assistance
  • Improved Cipher suite checking and advice for Apache and FTP in Server Check
  • Remove md5sum check from JS exploit check as it is covered by LF_INTEGRITY and causes confusion
  • Added new option LOGFLOOD_ALERT which will send an email alert based on logfloodalert.txt if lfd skips logs lines due to log file processing problems
  • Added new option PT_DELETED together with the FAQ explanation as to why lfd reports deleted processes. The option can be disabled to ignore such processes
  • Rearranged LOCALINPUT and LOCALOUTPUT rule positions to allow exceptions to SMTP_BLOCK