CSF 5.76 released
Posted on: 02/18/2013 06:10 PM

ConfigServer has released a new version of their Linux server firewall

CSF 5.76 released


Changes:

- Only add the /128 IPv6 bound address per NIC instead of the whole /64 to the local IPv6 addresses

- Modify SSHD and SU regexes to allow for empty hostname field in log file

- Added new option UNBLOCK_REPORT. This option will run an external script when a temporary block is unblocked

- Additional entries in csf.logignore on new installations

- Switched from using the iptables state module to using the conntrack module in preparation of the formers obsolescence

- Removed LF_EXPLOIT_CHECK and replaced it with LF_EXPLOIT_IGNORE so that new tests can be easily added and then ignored desired

- Added new LF_EXPLOIT check SSHDSPAM to check for the existence of /lib64/libkeyutils.so.1.9 or /lib/libkeyutils.so.1.9, See:
http://www.webhostingtalk.com/showthread.php?t=1235797



Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/csf_5_76_released.html)