Security 10801 Published by

ConfigServer has released a new version of their CSF firewall



Changes:

- Implemented a new locking system to try to mitigate an iptables bug when issuing concurrent iptables commands

- Implement flushing on the lfd pid file so that it is always accurate

- Improvements to csf --grep [ip] to escape regular expression matching

- New feature added - LF_REPEATBLOCK. This option instructs csf to deny an already blocked IP address the number of times set. See csf.conf for more information

- New feature added - LF_BLOCKINONLY. This option instructs csf to only block inbound traffic from those IP's and so reduces the number of iptables rules, but at the expense of less effectiveness. See csf.conf for more information

- New feature added - ST_DISKW. This option adds disk write performance statistics to the stats graphs. See csf.conf for more information

- Fixed file location for Debian and derivative OS's for /etc/mysql/my.cnf in Server Check
  CSF 5.66 released