Security 10745 Published by

A new version of the CSF Firewall has been released



A Stateful Packet Inspection (SPI) firewall, Login/Intrusion Detection and Security application for Linux servers.

Changes:

- Modified csf UI to detect Webmin install and symlink script and images directory so as to no longer require Webmin module update on a new csf version
- Tidied up csf UI html
- Fixed System Statistics graph display when using Webmin
- Modified Server Security check to only perform GENERIC test when using Webmin to prevent hanging processes
- Added CLI options --car, --carm. This removes an allowed IP in a Cluster and removes it from /etc/csf.allow
- Added new options LF_WEBMIN, LF_WEBMIN_PERM. This feature adds login failure detection for Webmin in WEBMIN_LOG
- Added new option LF_WEBMIN_EMAIL_ALERT. This feature sends an email if a successful login to Webmin is detected in WEBMIN_LOG
- Modified LF_SCRIPT_ALERT text in csf.conf for cPanel servers
- Modified proftpd regex to cope with non-standard format and to remove trailing colons from account name
- Modified LF_SCRIPT_ALERT regex to cater for paths containing spaces
- Improvements to LF_SCRIPT_ALERT memory usage and possible script detection
- Added alternative LF_SCRIPT_ALERT regex for specific 1H.com exim logging ACL
  CSF 6.09 released