Chirpy

Changes: New feature – LF_PERMBLOCK. Permanently blocks IP addresses that have had X temporary blocks in the last Y seconds. Uses email template permblock.txt New feature – LF_NETBLOCK. Permanently blocks network classes (A, B or C) if more than X…

Changes: Fixed bug in the generic csf release where the default csf.conf was missing the DROP, CT_STATES and GLOBAL_IGNORE settings – Thanks to Jim for the help in tracking the issue down

Changes: Rewritten the update code so that a new csf.conf is creating when upgrading. It now uses the latest csf.conf and transfers the existing settings to the new configuration file. This way all installations are sure to have all new…

Changes: Fixed bug introduced in v3.14 for generic installation only

Changes: Auto-whitelist all DNS traffic to/from IPs in Modified csf.conf text for new installations to account for auto-configuration of ETH_DEV which has been the case for some time:# By default, csf will auto-configure iptables to filter all traffic except…

Changes: Added new option DENY_TEMP_IP_LIMIT which limits the number of IP bans held in the temporary IP ban list to prevent iptables flooding. If the limit is reached, the oldest bans will be removed/allowed by lfd on the next unblock…

Changes: Added SMTP AUTH failure regex for Kerio MailServers Fixed an issue where a permanent Port Scanning alert would report as a temporary block, eventhough a permanent block was performed Added regex for failed SSH key authentication logins (thanks to…