Blog & News

Imunify360 version 3.9.5 has officially been released. This latest version brings improvements to the system as well as several bug fixes. All Nuagerie servers are automatically updated, however, the manual update commands have been included. To see the complete list of all the changes made, please visit the official changelog.

Improvements

• Malware Scanner: added new option “Follow symlinks” for On-Demand scanning. It’s disabled by default.
• Malware Scanner: reworked quarantine - new quarantine folder and how it behaves by default.
• Malware Scanner: added new setting for ClamAV
• Malware Scanner: a human-readable signature identifier next to the file instead of php_mlw.xxxxxxx.
• WebShield: Imunify360 properly handles traffic coming from CloudFlare/MaxCDN. The settings option is enabled for all new installs of Imunify360.
• WebShield: custom certificate support, default SNI certificate support.
• DoS plugin: reduced the number of “false-positives”. The lower threshold (minimal value) is set to 150. New parameter added to specify connection limits per port (port_limits).
• Proactive Defense: added PHP 7.3 support, native PHP version support (including Plesk and DirectAdmin panels).
• Ubuntu 18.04 is now supported (for Plesk and DirectAdmin panels).
• Improved UI performance and responsiveness in Plesk.
• Added a CLI diagnostic tool for administrators to check ModSecurity settings for cPanel setup (check modsec/fix modsec commands added).
• New documentation look and feel at https://docs.imunify360.com/.

Bug Fixes

• The agent is launched correctly even when the OSSEC configuration is broken.
• Some other changes that improve overall stability and performance.
• Malware Scanner: database & log files, user mailboxes, and other system files are no longer being quarantined.
• Malware Scanner: fixed scanning report in the UI when infection was detected by ClamAV but should not be displayed to a user.
• Malware Scanner: fixed bug with incorrectly updating malware database for a cleanup.
• UI: The URL of the new CLN page is updated in the Imunify360 UI.
• Configs: fixed bug with duplicated “X-Real-IP” field in HTTP header.
• Proactive Defense: end of EasyApache 3 support.
• Fixed Imunify360 migration process when Imunify360 config is broken or user doesn’t exist anymore.
• Fixed the cleanup process for quarantined files. Now, if a file fails to clean up for some reason it is returned to the quarantine.
• Fixed a bug regarding malicious files detection after being replaced with another file.
• Fixed a security issue regarding files quarantine.
• Fixed package dependencies for alt-python35.
• WebShield with CDN support is disabled by default.
• We have fixed a couple of major issues in Malware Scanner so mailbox files and logs are whitelisted properly and won’t be added to quarantine because of a false-positive detection in some cases.
• We have fixed an issue with Imunify360 service hanging when a pipe is created in some folders (e.g. /var/tmp).

Upgrading your system

The following commands are to upgrade your version of Imunify360. For more information or assistance, follow the instructions in the documentation.

CentOS/CloudLinux systems

yum update imunify360-firewall

Ubuntu 16.04 and 18.04 systems

apt-get update
apt-get install --only-upgrade imunify360-firewall