cxs

Notice of removal of cxs integration with pure-ftpd

We deprecated the integration of cxs with pure-ftpd way back in 2019:

New cxs v11.04

The next release of cxs will remove this integration completely and no longer be available.

Any existing installation still using this integration will see this removed on upgrade. It cannot then be re-enabled as the components will have been completely removed.

New cxs v12.06

Changes:

  • Improved memory overhead when processing tarballs
  • Improved memory overhead when processing zip files
  • Ensure /etc/cxs/sessions is created
  • Allow “–threads 1” to help memory footprint
  • Modified –threads [num] to add an “auto” option, i.e. –threads auto. This will calculate an optimum number of threads on servers with more than 4 CPUs. See docs for more information
  • Updated documentation to specify processor threads, not cores
  • Fixed –threads [num] report post-processing sorting

New cxs v12.05

Changes:

  • Added CWP ModSecurity integration via UI
  • DBI finish added before disconnect to discard any active fetches
  • Added workaround for iOS issue with bootstrap modals

ConfigServer Scripts on cPanel v92 and CentOS v8

For those venturing into the new world of cPanel v92 in the EDGE tier on CentOS v8.2, our initial tests show that all of our scripts and products install and work as expected.

We had already done extensive work on CentOS v8 with csf, cxs and MailScanner to ensure they work in this new OS iteration (mostly on DirectAdmin) and the cPanel environment continues to provide for the resources needed to make installation, configuration and functionality straightforward.

New cxs v12.04

Changes:

  • Modified cxs on DA to set defapache to “webapps” by default
  • Improve handling of corrupt database and exit cleanly
  • Modified behaviour of –cgi to force enable –qlocal if mod_security run as a user other than –defapache [user]
  • Fixed issue where os.pl was not running to check for perl modules on install
  • Added diagnostic information for –cgi issues

New cxs v12.03

Changes:

  • DirectAdmin moved from BETA to RELEASE for RHEL/CentOS/CL
  • Added new option –vmmax [kB]. This will abort a scan if the VmRSS size of the process exceeds this value to prevent memory exhaustion. By default it is set to 2000000 kB = 2GB
  • Modified cxs reputation reporting to prevent overloading
  • Improved DA session checking
  • Added -u to unzip UI commands
  • Protect from logarithm divide by 0 error
  • Improved DA UI display

New cxs v12.02

Changes:

  • Fixed issue using +/- in –options causing the UI wizard to fail
  • Fixed issue with –cgi depending on the directory location of the ModSecurity SecTmpDir setting

New cxs v12.01

Changes:

  • Indepth performance profiling and code review
  • Performance improvements to scanning code can now reduce overall scan times by up to 20%-80% depending on type and amount of data scanned
  • Improvements the the Universal Decoder including base64 mapping and significant performance improvements
  • The option –voptions [] has been removed as it provided little performance benefit with reduced efficacy
  • Improved plesk user detection based on the hosting and sys_user tables in the psa D/B
  • Updated documentation
  • NOTICE: We are deprecating support for Virtuozzo/OpenVZ servers. Future releases will not take into consideration those platforms which have become onerous to support. The software application may continue to work but support and functionality is no longer guaranteed

New cxs 11.14

Changes:

  • Modified CyberPanel installation to support move to python3

New cxs v11.13

Changes:

  • Fixed issue with master fingerprint ignore