cxs

Changes:

• Ensure sessions directory is created before it is needed

Changes:

• Added new cxs Setup Wizard to the UI for easy first-time configuration
• Added new cxs Command Wizard to help create effective scan commands
• Manual scans via the UI now run detached from the control panel interface so that the need to keep the browser open is no longer required
• Added a completely new quarantine interface via an SQLite database
• Added statistics to provide information at a glance as to what cxs has been doing
• Added new option –dbreport. This will store reports within the SQLite database
• Added command Wizards to help configure cxs Watch, Modsecurity and FTP
• Added cxs Daily/Weekly Scan Wizard, to create and modify cron jobs in /etc/cron.d/cxs-cron
• Added an option to rerun the new cxs Setup Wizard if you want a fresh start
• Added an option to rescan a quarantine directory to populate the SQLite database
• Added new option –config [file]. Instead of listing arguments on the cxs command line, a file containing key value pairs can be used instead. This is a requirement for configuring cxs Watch, cxs FTP and cxs ModSecurity scanning via the UI
• Move cxs POD to separate files and use pre-generated text and html files to remove the need for perldoc binary
• Updated install.txt documentation
• New requirements: SQLite v3, DBI and DBD::SQLite perl modules for the new quarantine/scan database. These are all included in the cPanel environment, but may need to be installed in other environments before cxs will upgrade
• Ignore cPanel temporary files in /var/cpanel/users/
• Improvements to WordPress plugin version checks
• Fixed glob scan stats

We have been working hard on the next major release of cxs. The focus this time is on the Graphical User Interface.

• We’re introducing an all new cxs Setup Wizard for easy first-time configuration to help server admins setup cxs simply, quickly and effectively from the start.
• We’re added a new cxs Command Wizard to help create effective scan commands for use in manual scans and cron jobs.
• Manual scans via the UI now run detached from the control panel interface so that the need to keep the browser open is no longer required. You can come back at any time to view the status of the scan you have launched.
• We’re adding a completely new quarantine interface via an SQLite database. This brings with it easy access to files placed in quarantine, wherever the quarantine directory. Those who have used our MailScanner Control UI will recognise that we’re using the same style of interface to interact with the quarantine and other files
• We’re adding statistics to provide information at a glance as to what cxs has been doing
• We’re adding reports stored within the same SQLite database
• We’re adding the ability to re-run the new cxs Setup Wizard if you want a fresh start

We’re expecting to release this new version in the coming days. The changes made mean that the server requirements have changed.

cPanel installations will not need anything else installing as the environment already supports all of the requirements.

On other servers, the following will be required:

Installation of sqlite v3
Perl modules: DBI and DBD::SQLite

On RedHat and derivatives servers this can be done via yum:

 yum install sqlite
 yum install perl-DBI
 yum install perl-DBD-SQLite

On Debian servers using apt:

 apt-get install sqlite3
 apt-get install libdbi-perl
 apt-get install libdbd-sqlite3-perl

Note: cxs will not upgrade to v8.00 until the new perl modules are available

Changes:

• Remove the need for URI::Escape
• Added restart of csf/lfd on upgrade if cxs Reputation System is enabled
• Restrict the scope of perl shebang replacement when installing on cPanel servers

Changes:

•  Restored reporting of errors/restrictions in cPanel UI which had been blocked by the move to WHM Templates

Changes:

• Fix to ensure only web upload script triggers with a defined remote IP are submitted to the IP Reputation System, if enabled

Changes:

• New feature: IP Reputation System. The system provides a variety of IP blocklists gathered from information that is submitted by participating servers. This dual aspect provides the information to help protect the server using the reputation from active attacks. See POD under “IP Reputation System” for more information
• Added IP Reputation System to cxs UI
• Major update to Script Version Scanning. cxs –[no]sversionscan now scans for more than 200 individual applications, more than 200 WordPress plugins and more than 200 Joomla Extensions. Over 700 in total!
• Double fork external commands in DA UI to work around DA mod_perl restrictions, allowing full functionality

Changes:

• Fixed issue when using a cxs.bayes.local database which caused cxswatch to reload the bayes database repeatedly
• Additions to Script Version Scanning

Changes:

• New BETA feature: IP Reputation System. The system provides a variety of IP blocklists gathered from information that is submitted by participating servers. This dual aspect provides the information to help protect the server using the reputation from active attacks. See POD under “IP Reputation System” for more information
• Added URI::Escape as a required module

Changes:

• Decoder improvements