Changes and additional OS support:
- Added log file locations to csf.conf
- openSUSE v10 compatible (generic)
- Debian v3.1 (sarge) compatible (generic)
- Unbuntu v6.06 LTS compatible (generic)
- Added installation check for the LWP (libwww-perl) perl module
- Ran spell checker against the readme.txt file
- Fixed problem with installer where Msfe.pm wasn’t being copied on installation
- Added new IP licensing scheme. You will need to email your order details and servers main IP address to email@example.com to be able to upgrade MSFE in future releases
- Updated post-upgrade message to reflect the new route to the MSFE WHM UI
- Added link to MSFE changelog if an upgrade is available
For this version, you can download the update from http://download.webumake.com – if you don’t have a download account, please email firstname.lastname@example.org and request one, and be sure to include the name under which you originally ordered and your servers IP address for future updates. Future versions will then be available for upgrade from within WHM.
We have found that some clients hosted by Liquidweb are seeing the message “MailScanner Status: Disabled” at the top of their MailScanner front-end after a cPanel upgrade.The problem has been caused by Liquidweb’s installation of clamav rpms that modify the exim configuration each time cPanel is upgraded, thus breaking MailScanner. We have been uninstalling these rpms as part of our mailscanner install for several months now but it appears that Liquidweb has re-installed those rpms and the problem has arisen again since a recent cPanel upgrade.Fix instructions follow.If you would like us to perform the fix for you, then please log a ticket on our helpdesk with access details. There will be a $30 (half hour) charge for performing this service.Here is how to fix it:1. Remove /etc/exim.conf.local to start with a clean copy.
/bin/mv -fv /etc/exim.conf.local /etc/exim.conf.local.old/scripts/buildeximconf
2. Remove all installs and rpms of clamav and reinstall clamav.
killall clamdrpm -e clamav-db clamd clamav clamav-devel/bin/rm -Rfv /usr/bin/clam*/bin/rm -Rfv /usr/sbin/clam*/bin/rm -Rfv /usr/lib/libclam*/bin/rm -Rfv /usr/share/clam*/bin/rm -Rfv /usr/include/clam*/bin/rm -Rfv /usr/bin/freshclam*/bin/rm -Rfv /usr/etc/clamav*/bin/rm -Rfv /usr/local/bin/clam*/bin/rm -Rfv /usr/local/sbin/clam*/bin/rm -Rfv /usr/local/lib/libclam*/bin/rm -Rfv /usr/local/share/clam*/bin/rm -Rfv /usr/local/include/clam*/bin/rm -Rfv /usr/local/bin/freshclam*/bin/rm -Rfv /usr/local/etc/clamav*useradd clamavgroupadd clamavcd /root/rpmswget http://prdownloads.sourceforge.net/clamav/clamav-0.88.7.tar.gz
tar -xzf clamav-*cd clamav-*./configure –disable-zlib-vcheckmakemake installreplace “Example” “#Example” — /usr/local/etc/freshclam.confreplace “Example” “#Example” — /usr/local/etc/clamd.conffreshclamcd ../bin/rm -Rf clamav-*cd /root/rpms/
touch /var/log/clam-update.logchown clamav:clamav /var/log/clam-update.log/scripts/perlinstaller –force Mail::ClamAV
3. Upgrade MailScanner (per instructions on website – http://www.configserver.com/cp/upgrade.html) to add correct configuration to exim.conf.local. Should be able to select option 2 (quick perl module check). You will need to do ths at the command line since you are probably already running the latest version of MailScanner.4. Re-add the dictionary attack ACL, log_selector, etc. to exim.conf.local via WHM exim configuration editor, if desired.
- Modification to work correctly current EDGE
cd /usr/srcrm -fv cse.tgzwget http://www.configserver.com/free/cse.tgztar -xzf cse.tgzcd csesh install.shcd /usr/src/rm -Rfv cse*
A kindly reminder that anyone running FC4, FC3, FC2 or FC1 needs to migrate their servers as soon as possible. As this notice on the FedoraLegacy states:
In case any of you are not aware, the Fedora Legacy project is in the process of shutting down. The current model for supporting maintenance distributions is being re-examined. In the meantime, we are unable to extend support to older Fedora Core releases as we had planned. As of now, Fedora Core 4 and earlier distributions are no longer being maintained.
This means that if you’re running FC4 or lower you will no longer receive any OS updates including vital security fixes. You therefore need to migrate to a supported OS as soon as possible.We’d strongly recommend moving over to CentOSv4. If you have to use Fedora Core (and you should not use it on any production servers as it’s a development OS) then you should only currently use FC5 since cPanel don’t yet support FC6.
This is a major landmark for us in the development of csf and lfd which provides installation of the firewall and daemon onto non-cPanel generic Linux distributions:
- Major Enhancement: csf+lfd can now be installed and used on a generic Linux OS without cPanel using install.generic.sh – see readme.txt for more information
- PF INVDROP entries made bi-directional if PF logging enabled (reduces the number of INVDROP LOG rules by half)
- Fixed Process Tracking throttle control to correctly use PT_INTERVAL