هاستینگ میهن وب سرور
رتبه موضوع:
  • 0 رای - 0 میانگین
  • 1
  • 2
  • 3
  • 4
  • 5
اطلاعیه انتشار بروز رسانی های فایروال CSF
#21
نسخه 9.28 فایروال csf منتشر شد
تغییرات:
New logo added and configured for cPanel plugins
HTML fixes
STYLE_CUSTOM is now set to 0 by default on all new installations. If you want to choose custom styling this option can be enabled
پاسخ
#22
نسخه 9.29 فایروال csf منتشر شد
تغییرات:
Fixed issue that was breaking LF_DISTSMTP
Fixed issue in UI lfd Stats. Note: The lfd stats data file has been renamed from /var/lib/csf/stats/lfdmain to /var/lib/csf/stats/lfdstats Additionally, the stats for 2016-12-31 will reset to 0 due to this bug
Corrected text in readme.txt
Added new csf CLI cluster option: -ctd, –ctempdeny ip ttl [-p port] [-d direction] [comment]
This sends a temporary deny request to the cluster
Added new csf CLI cluster option: -cta, –ctempallow ip ttl [-p port] [-d direction] [comment]
This sends a temporary allow request to the cluster
Added new csf CLI cluster option: -cg, –cgrep ip
This requests the –grep output for [ip] from each cluster member
Modified cluster requests to respond with an acknowledgment to the sender
Modified –cdeny [ip] and –callow [ip] to include optional comment
Added separate tab for Cluster options in UI if enabled and added new cluster temp allow/deny commands to UI
Modified Port Scan Tracking. UDP packets destined for the network broadcast address(es) will now be ignored in Port Scan Tracking unless BRD is added to PS_PORTS. The broadcast address(es) include the those listed in IP or IFCONFIG plus the default (255.255.255.255) unless one of the servers IPs
Added new feature: PT_USERRSS. This User Process Tracking option sends an alert if any user process exceeds the RSS memory limit set – RAM used, not virtual. PT_USERRSS is set to 256 (MB) and PT_USERMEM is now set to 512 (MB) by default on new installations. On existing installs PT_USERRSS is set to the same value as PT_USERMEM


و
نسخه 9.30 فایروال csf منتشر شد
تغییرات:
Fix to try and resolve cluster send/recv issues (Note: _All_ members of the cluster need to be running v9.30 for clustering to function correctly)
پاسخ
#23
نسخه 10.00 فایروال csf منتشر شد
تغییرات:
Added new feature to MESSENGER: MESSENGER_HTTPS*. See /etc/csf/csf.conf for more detail. This option redirects blocked IP addresses that connect over an HTTPS connection (port 443) to the HTML MESSENGER service. The option uses existing SSL certificates on the server for each domain to maintain a secure SSL SNI connection without browser warnings. The setting is disabled by default
Note: The perl module IO::Socket::SSL (v1.83+) with support for SNI must be available to use MESSENGER_HTTPS* otherwise it will be disabled
Added new feature to MESSENGER: Google ReCAPTCHA (v2) to allow those blocked in the firewall to unblock themselves. See RECAPTCHA_* in /etc/csf/csf.conf for more details and limitations
Added MESSENGER procedure to restart listening sub-process if it has died
Moved MESSENGER processes to a separate module
Ensure that all forked processes terminate appropriately
On cPanel servers, use the cPanel WHM Template to support the new v64 UI layout (as best we can to maintain the look that we want)
Modified the cPanel csf ACL metadata and driver Perl modules to match new requirements for v64 and also maintain backwards compatibility
پاسخ
#24
نسخه 10.02 فایروال csf منتشر شد
تغییرات:
Modified Messenger HTTPS to cater for a wider range of Apache VirtualHost formatting
Added Messenger HTTPS workaround for servers using PEM but a version of IO::Socket::SSL that does not yet support it (pre v1.988)
Added Messenger HTTPS warning in csf.conf regarding memory usage on some servers using the option
Added java binary for cPanel solr process to csf.pignore on new and existing servers
پاسخ
#25
نسخه 10.03 فایروال csf منتشر شد
تغییرات:
Added new option MESSENGER_HTTPS_SKIPMAIL on cPanel installations. This option ignores ServerAlias definitions that begin with “mail.”. This can help with memory usage on systems that do not require the use of MESSENGER_HTTPS on those subdomains. The option is enabled by default on cPanel servers
Improved RECAPTCHA_* hostname check
Cluster CLI can now block CIDRs, e.g LF_NETBLOCK blocks will be applied cluster-wide
پاسخ
#26
نسخه 10.04 فایروال csf منتشر شد
تغییرات:
Added error message to RECAPTCHA_* if the non-priveleged user cannot write to its home directory
Further improvements to RECAPTCHA_* hostname check
پاسخ
#27
نسخه 10.05 فایروال csf منتشر شد
تغییرات:
Fixed table header html/css
Added workaround for adding superusers listed in /etc/csf/csf.syslogusers to the RESTRICT_SYSLOG_GROUP if the log socket is not accessed via the owner permissions
Changes for cPanel v64 template
Updated text description in csf.dirwatch for new installs
پاسخ
#28
نسخه 10.06 فایروال csf منتشر شد
تغییرات:
Added new entry in csf.pignore on cPanel servers for:
exe:/usr/libexec/dovecot/indexer
exe:/usr/libexec/dovecot/indexer-worker
Croak if IPTABLES is not set, incorrect or not present in csf.conf
Set SELinux context for /etc/logrotate.d/lfd on new generic installs
پاسخ
#29
نسخه 10.07 فایروال csf منتشر شد
تغییرات:
Fixed bug when using RECAPTCHA_NAT where the listed IP’s were not correctly processed
Server Check now follows includes in dovecot.conf
Server Check now reports RHEL/CentOS/CloudLinux v5.* as EOL
پاسخ
#30
نسخه 10.08 فایروال csf منتشر شد
تغییرات:
Added cpanel.allow and cpanel.ignore Include files for the cPanel authentication servers. These are included on new installations and added to existing files on cPanel installations
If running cPanel 1:1 NAT, use the contents of /var/cpanel/cpnat to whitelist/ignore the external IP addresses
پاسخ


پرش به انجمن:


کاربران در حال بازدید این موضوع: 20 مهمان