Releases · Aetherinox/csf-firewall

06 Feb 18:36

dee4bf1

v15.09 Pre-release

Pre-release

Insiders Pre-release (v15.09)

This is an Insiders release of ConfigServer Security & Firewall. This means that a stable release of the next major version is around the corner.

View the full changelog.

Warning

This is a release candidate, which means it is not a stable release and could contain bugs. You should download it at your own risk.

Release Info

Item	Value
🏷️ Version	v15.09
📕 Blog	https://docs.configserver.dev/blog/2026/release-v1509/
🕟 Stamp	`15.08-2025-12-13T00:03:23.000Z 🔺 15.09-2026-02-06T18:35:56.000Z`
📅 Last Release	`55 days ago`
📄 csf-firewall-v15.09.tgz	ConfigServer Firewall app _{d1a55304fda7c0c6d947c491015e955846ffa2b58990be3028eaa74008e65999}
📄 csf-firewall-v15.09.zip	ConfigServer Firewall app _{6305f229d7e5a68cfa8ba7ebeff376656c387c8abef7caff270eec3a7fcc3a54}
📄 csf-firewall-v15.09-helpers.zip	Helper patches. View README for instructions _{47a925971c2f860a53a07d95c8bdfe8e3932fbcca66ac365596ff30a673613fe}

What's New

This release contains the following changes:

Statistics

How the files have changed:

Changed files : 300
Changes : 256696
Commits : 204
Additions : 47
Deletions : 256649
PRs (categorized) : 90
PRs (uncategorized) : 114
PRs (open) : 0

Statistics

How the files have changed:

Changed files : 300
Changes : 256696
Commits : 204
Additions : 47
Deletions : 256649
PRs (categorized) : 90
PRs (uncategorized) : 114
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

update workflow release : a3b5010 @Aetherinox
disable blocklist generation for main repository : 1776eb5 @Aetherinox
remove blocklist source files : e1150df @Aetherinox

🚀 Features

(ui) remove beating heart animation for sponsor icon #72 : 6640270 @Aetherinox
(ui) hide sponsor button if SPONSOR_LICENSE specified, or UI_SPONSOR_HIDE = 1 #72 : aecdc1c @Aetherinox
(ui) add new setting SPONSOR_HIDE_ICON #72 : bd625f7 @Aetherinox
(blocklist) add AbuseIPDB template to blocklist : f2a2e52 @Aetherinox
(sponsor) update default value for sponsor setting SPONSOR_ICON_ANIM : 0fa1f04 @Aetherinox
(directadmin) enable new footer for directadmin : 54a9244 @Aetherinox
(cwp) enable new footer for control web panel : 69e1726 @Aetherinox
(cyberpanel) enable new footer with theme selector : 522fcc6 @Aetherinox
(ui) add new class tag value-restricted, value-disabled : c73b72a @Aetherinox
(webmin) add setting UI_WEBMIN_SHOW_BUTTON_CONFIG : d117034 @Aetherinox

🐛 Bugfixes

(directadmin) install error end of file unexpected (expecting "fi") #70 : e8254d0 @Aetherinox
(cwp) sanitize and strip color codes for cwp version status : 1037e4d @Aetherinox
(cli) detect tty for colored or clean output in responses : 77df099 @Aetherinox
(webmin) ensure each setting is properly formatted, pre-wrap descriptions : 70f5a8d @Aetherinox
(webmin) add webmin settings button to interface without breaking theme js : df6dc46 @Aetherinox
(ui) incorrectly adding gap between first and second line in web interface under Firewall Configuration : 8853f98 @Aetherinox
(webmin) support for almalinux, rocky10, redhat : 036eccb @Aetherinox
(ui) proper formatting for each section in gui config editor : 452ed72 @Aetherinox
(ui) force homepage buttons to have same width : fd0bb6d @Aetherinox
(cyberpanel) fix footer padding for cyberpanel : 1f33294 @Aetherinox
(cyberpanel) correct issue with iframe showing small vertical scrollbar : 015a69e @Aetherinox
(interworx) correct vertical scrollbar showing in iframe : 1661d87 @Aetherinox
(ui) sanitize, utilize textContent : d85665f @Aetherinox

🔧 Changes

(cyberpanel) bump csf version for plugin : 4809ff8 @Aetherinox
(interworx) bump csf version for plugin : 53944ba @Aetherinox
(directadmin) update plugin.confwith csf update server strings #70 : 2aa27b9 @Aetherinox
(ui) change branding for CentOS Web Panel to Control Web Panel : ea9c86b @Aetherinox
(csf) housekeeping : 2bc1986 @Aetherinox
deprecate global bash functions; POSIX compliancy : b8cb8c0 @Aetherinox
remove external dependency : c95f9ae @Aetherinox
harden sponsor functionality, eliminate client-side trust : edece43 @Aetherinox

🧹 Housekeeping

(csf) abuseip.pm : 4fd6228 @Aetherinox
(cwp) update interface header : 665914a @Aetherinox
(docker) re-write docker integration script : 65bfcd7 @Aetherinox
(openvpn) re-write integration script : d958f5f @Aetherinox
(docker) add command flags : aabd6bc @Aetherinox
(integrations) update commented variable descriptions : 9e8eee2 @Aetherinox

✏️ Docs

(mkdocs) add upgrade button to home page : 01f128e @Aetherinox
(mkdocs) update light and dark theme tabbed content : 5b5975e @Aetherinox
(mkdocs) update list, add port management commands : 8fdcee8 @Aetherinox
(mkdocs) refactor page usage/prepost.md : bc83b7f @Aetherinox
(mkdocs) add page Integrations - AbuseIPDB : 03eda73 @Aetherinox
(mkdocs) add abuseipdb Contributing to AbuseIPDB : 405ded7 @Aetherinox
(mkdocs) add malicious reporting to AbupseIPDB docs : b30c5e2 @Aetherinox
(mkdocs) update changelog to include directadmin changes #70 : c2d42e4 @Aetherinox
(directadmin) add control panel to install page #70 : 6ed3077 @Aetherinox
(mkdocs) update pre/post page : b7d662a @Aetherinox
(mkdocs) re-brand CentOS Web Panel to Control Web Panel : 8f7c270 @Aetherinox
(mkdocs) add icons curl wget : 9f1da22 @Aetherinox
(mkdocs) change server url for back-end api : 7bc7abe @Aetherinox
(mkdocs) update cheatsheet ports : a5457df @Aetherinox
(mkdocs) update scripts, remove innerHtml : 85d926c @Aetherinox

Contributors

Aetherinox

Assets 9

13 Dec 00:03

BinaryServ

15.08

0c91771

v15.08 Latest

Latest

Release Info

Item	Value
🏷️ Version	v15.08
📕 Blog	https://docs.configserver.dev/blog/2025/release-v1508/
🕟 Stamp	`15.07-2025-10-24T13:08:43.000Z 🔺 15.08-2025-12-13T00:03:23.000Z`
📅 Last Release	`49 days ago`
📄 csf-firewall-v15.08.tgz	ConfigServer Firewall app _{2eb48077b8ecd672a666915700f20564036ef9f5cdc984dca098869e82a21f7d}
📄 csf-firewall-v15.08.zip	ConfigServer Firewall app _{99513f1943c4adf5cf4a937219bc7c52344e4ed5b8283b8fff58b683916bb76e}
📄 csf-firewall-v15.08-helpers.zip	Helper patches. View README for instructions _{e96742578186b14264b00658c99b59550f3974a4f6b79ea6ded177b27ea5f0c5}

What's New

This release contains the following changes:

feat(cron): Perl cron csget re-written
- Now compatible with all distros
- Utilizes tertiary redundancy system for fetching updates:
  - /usr/bin/wget
  - /usr/bin/curl
  - /usr/bin/GET
- New flags added:
  - -r, --response
  - -n, --nosleep
  - -k, --kill
  - -l, --list
  - -d, --diag
  - -D, --debug
  - -v, --version
  - -h, --help
feat(cli): new port management console commands via PR #57
- --addport, -ap: Add a new port to your whitelist
- --removeport, -rp: Remove an existing whitelisted port
- --listports, -lp: List all ports that are whitelisted within your /etc/csf/csf.conf
feat(install): install scripts install.*.sh now detailed and proper output to user
feat(cwp): add logic to mitigate immutable flag +i on cwp installs; restore flag after install complete
feat(webmin): automatically install webmin module /usr/local/csf/csfwebmin.tgz
- No longer requires webmin module to be manually imported
pref(blocklist): optimize blocklist generation scripts
refactor(cwp): centos web panel nav menu label for CSF changed
- Renamed from ConfigServer Scripts to ConfigServer Firewall
refactor(license): update json response structure for license / insiders service
refactor(scripts): bash script protect.sh now POSIX compliant
refactor(install): make all bash install.*.sh installation scripts POSIX compliant
feat(core): add warning message if LF_MODSEC_PERM threshold below 3600 seconds (1 hour)
chore(core): add comment to csf.conf files to specifyinput value type for LF_MODSEC_PERM
chore(core): update config description for LF_MODSEC
chore(webmin): add property longdesc to module.info in CSF webmin module
chore(general): clean up files no longer used by application
chore(general): revise csf.blocklists with updated urls to the various blocklist services
fix(cwp): centos control panel menu link csfofficial returned blank page
fix(core): prevent output if latest version and no terminal present, stops unnecessary update notifications; adds #no critic
fix(blocklist): remove duplicate entries from highrisk static blocklist
fix(scripts): add shellcheck directive to extras/scripts/protect.sh
fix(cron): cron csget incorrectly assigned wrong user:group to file; triggered SELinux security error
- update install.*.sh scripts to assign root:root
docs(mkdocs): add new chapter Advanced

Statistics

How the files have changed:

Changed files : 300
Changes : 1192560
Commits : 199
Additions : 1186117
Deletions : 6443
PRs (categorized) : 87
PRs (uncategorized) : 112
PRs (open) : 0

Statistics

How the files have changed:

Changed files : 300
Changes : 1192560
Commits : 199
Additions : 1186117
Deletions : 6443
PRs (categorized) : 87
PRs (uncategorized) : 112
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

(ipset) switch over to new artifact server : 34729d8 @Aetherinox
(blocklist) update script bl-block for highrisk : 510b95d @Aetherinox
(contributing) update : f97ba3f @Aetherinox

🚀 Features

(install) add dynamic SYSLOG_LOG and IPTABLES_LOG on install #41 : 3ea9e59 @Aetherinox
(webmin) automatic webmin installation #33 : 43d3561 @Aetherinox
add warning if LF_MODSEC_PERM too low #59 : 397a421 @Aetherinox
enhanced output during installation : 8689436 @Aetherinox
(install) copy new csget cron file if source and dest mismatch : f132e4f @Aetherinox
(csget) update update module : 58c1144 @Aetherinox
(csget) add --help menu : c67115f @Aetherinox
(csget) new flag --response; split output to log file and terminal : d7e1f96 @Aetherinox
(csget) add new --help menu, update checker : a635c42 @Aetherinox
(install) add --dryrun flag to install scripts : eb83292 @Aetherinox
(cyberpanel) add mod output to terminal when applying : 72e2195 @Aetherinox
(csf) add warning to console output when using default web ui username and password : 6a8d569 @Aetherinox
(cli) add command --addport, -ap #57 : ac9e05a @Aetherinox
(cli) add command --removeport, -rp #57 : 3ba60d1 @Aetherinox
(cli) add command --listports, -lp #57 : 05a2535 @Aetherinox
(license) add new funcs for license and insiders checks : 86ff221 @Aetherinox

🐛 Bugfixes

remove debug print from displayui : f63d64e @Aetherinox
(blocklist) remove dupes from static list highrisk #46 : 777ee0e @Aetherinox
update insiders response structure : 406bfc8 @Aetherinox
(cwp) address cwp file copy with immutable +i flag : b76087c @Aetherinox
(cwp) fix csf page not loading after last update : 7520fb8 @Aetherinox
diagnostics module no longer required in production #58 : 10ac561 @Aetherinox
add proper user:group assignment for root to csget cron #58 : 995bf12 @Aetherinox
(ci) gracefully stop workflow if conditions not met #63 : 7fbc533 @Aetherinox
the "not-so-graceful" abort job #63 : 898c70a @Aetherinox
(install) switch to literal UTF8 char instead of unicode for icons; fixes ubuntu : b51ee7b @Aetherinox
(install) add reset to log output : c4b3a73 @Aetherinox

🔧 Changes

(webmin) add module.info longdesc : 8da88bd @Aetherinox
update config description for LF_MODSEC #59 : a4a2759 @Aetherinox
add input value type to LF_MODSEC_PERM comments #59 : 78a50b9 @Aetherinox
(ipset) add ShadowServer foundation to blocklist : c3fc399 @Aetherinox
update insiders link to docs in webui : 18cce13 @Aetherinox
build version 15.08 : 423c7ed @Aetherinox
(cwp) update left nav menu for csf : 5c589fd @Aetherinox
(csf) update csf.blocklists with current urls and header #50 : d43fa75 @Aetherinox
(csf) update log functionality output for users : ec33961 @Aetherinox

n#### ✨ Optimizations

(master) optimize loop by removing cat #46 : b9e6be5 @Aetherinox

🧹 Housekeeping

(posix) make webmin port/protocol fetching posix compliant : fda906e @Aetherinox
(master) re-write master blocklist; ensure no dupes #46 : 9a9fad3 @Aetherinox
(highrisk) fix duplicates #46 : 6c51408 @Aetherinox
(blocklist) update expiration; sources : ce858e7 @Aetherinox
(csget) better output logs : 984979b @Aetherinox
(csget) add additional flag alias for --nosleep as --nodaemon : 9bb81e2 @Aetherinox
(install) ensure flag --dryrun contains boolean : 8e9d766 @Aetherinox
(gene...

Contributors

Aetherinox

Assets 9

24 Oct 13:08

BinaryServ

15.07

37aa56e

v15.07

Release Info

Item	Value
🏷️ Version	v15.07
📕 Blog	https://docs.configserver.dev/blog/2025/release-v1507/
🕟 Stamp	`15.06-2025-10-16T12:43:26.000Z 🔺 15.07-2025-10-24T13:08:43.000Z`
📅 Last Release	`8 days ago`
📄 csf-firewall-v15.07.tgz	ConfigServer Firewall app _{391e82586d599df2a325c2143379ae5b16592c1047b47fb1de9aa371fc3fd490}
📄 csf-firewall-v15.07.zip	ConfigServer Firewall app _{fa57876b37bcfa766e4cf1468dd9f8a14fa1a12ad818118298fe6fc3b6fb46aa}
📄 csf-firewall-v15.07-helpers.zip	Helper patches. View README for instructions _{12aa1c417f3c15fee48b3e58ac1fbe442510a886e1339ff065b6f2f797b5c33d}

What's New

This release contains the following changes:

feat: Add new "Resources" tab interface.
feat: Add "Insiders" releases.
docs: Add Privacy Policy to CSF.
chore: Add Discord server
- https://discord.configserver.dev
chore: Remove spamhaus edrop list, merged with drop.
refactor: Cyberpanel installation script to ensure POSIX compliant.
refactor: Update functionality to support both numerical and tagged releases.
perf: optimized logic to make restarts faster when using resource intense pre/post scripts
fix: Cyberpanel integration error:
- "address form post error Data supplied is not accepted"
fix: Dark-reader causing login page to not render properly.
fix: Whitespace in ipset blocklist definitions causing entire blocklist to not load.

Statistics

How the files have changed:

Changed files : 208
Changes : 2810629
Commits : 44
Additions : 2790674
Deletions : 19955
PRs (categorized) : 43
PRs (uncategorized) : 1
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

update labels within workflows : 7fbec6d @Aetherinox

🚀 Features

(ui) add highlighter classes "Firewall Configuration" page : 7b7f4c6 @Aetherinox
(csget) update cron to handle numeric tag versioning : f9da6a6 @Aetherinox
(update) revise version check for updates : 69c2db2 @Aetherinox

🐛 Bugfixes

(ui) dark-reader causes login page to not properly render : 4121336 @Aetherinox
(ipset) white-space in blocklist definition causes list to not load. Fixed #36 : 44d2164 @Aetherinox
(cyberpanel) address form post error Data supplied is not accepted #37 : 1e3af0f @Aetherinox

🔧 Changes

remove deprecated api folder; replaced by download.configserver.dev : 153078a @Aetherinox
(blocklist) remove spamhaus edrop list, merged with drop : cd6e93d @Aetherinox

🧹 Housekeeping

(cyberpanel) ensure posix compliant #37 : e8a65e9 @Aetherinox
(ui) update update button width : 5e40d2b @Aetherinox

📦 Build & Dependencies

bump version v15.07 : 45597f8 @Aetherinox

✏️ Docs

(assets) add github logo : fec9065 @Aetherinox
(assets) upload csf blocklist / ipset logos : 3170712 @Aetherinox
(assets) add ipset blocklist logo 3 : 2278eeb @Aetherinox
(readme) add discord.configserver.dev : 5106593 @Aetherinox
(mkdocs) add discord url : a2f3e7e @Aetherinox
(mkdocs) add privacy policy : b482b36 @Aetherinox
(mkdocs) add troubleshooting sub-chapter : c555ddf @Aetherinox
(mkdocs) separate installs into installs/integration : 8398c0c @Aetherinox

Contributors

Aetherinox

Assets 9

16 Oct 12:43

BinaryServ

15.06

917d74a

v15.06

Release Info

Item	Value
🏷️ Version	v15.06
📕 Blog	https://docs.configserver.dev/blog/2025/release-v1506/
🕟 Stamp	`15.05-2025-10-16T06:22:08.000Z 🔺 15.06-2025-10-16T12:43:26.000Z`
📅 Last Release	`0 days ago`
📄 csf-firewall-v15.06.tgz	ConfigServer Firewall app _{4d1416d711df7d0bbc0db947dcdb102254594e7b157ed37112e16c7405fb0188}
📄 csf-firewall-v15.06.zip	ConfigServer Firewall app _{92d6c10443fb2a75bd13baa4449d96321f0e50de97687af9eaa241fd6e9154dd}
📄 csf-firewall-v15.06-helpers.zip	Helper patches. View README for instructions _{9ef6afe9a3104a0cbebbe0d143448670609744de0a7efe1822d5284b9f5afc1a}

What's New

This release contains the following changes:

fix: Backwards compatibility issue related to older versions of Webmin control panel. Specifically v2.111 and Authentic theme v21.10. Webmin detected as "Generic" installation; header icon missing; generic footer loaded.
- #23
- #28

Statistics

How the files have changed:

Changed files : 18
Changes : 172
Commits : 4
Additions : 141
Deletions : 31
PRs (categorized) : 4
PRs (uncategorized) : 0
PRs (open) : 0

Statistics

How the files have changed:

Changed files : 18
Changes : 172
Commits : 4
Additions : 141
Deletions : 31
PRs (categorized) : 4
PRs (uncategorized) : 0
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

(release) update workflow template when generating new release : 7a2e1b0 @Aetherinox
- Releases now display both .tgz and .zip in file list
- Blog now linked automatically to each release

🐛 Bugfixes

(webmin) add backwards compatibility with new theme and webmin v2.111 #23 #28 : 6bad438 @Aetherinox

📦 Build & Dependencies

(version) bump minor release 15.06 : abcd545 @Aetherinox

✏️ Docs

(mkdocs) update blog, changelog : 490a0a6 @Aetherinox

Contributors

Aetherinox

Assets 9

16 Oct 06:22

BinaryServ

15.05

8f5fe75

v15.05

Release Info

Item	Value
_{🏷️ Version}	_v15.05
_{📄 csf-firewall-v15.05.zip}	_{ConfigServer Firewall main app} _{903d8903ca1e03a998fc73e717fb34c4b0ca75cd9fd013cb97e05e683c04a733}
_{📄 csf-firewall-v15.05-helpers.zip}	_{Helper patches. View README for instructions} _{334b6863fe0d19cc0e7a08f98dc59ac8d547b441bedbadd45d0733c797ceb1a0}
_{🕟 Stamp}	_{15.04-2025-10-15T16:28:20.000Z 🔺 15.05-2025-10-16T06:22:08.000Z}
_{📅 Last Release}	_{0 days ago}

Release Blog

View the latest release blog at:

https://docs.configserver.dev/blog/2025/release-v1505/

What's New

This release contains the following changes:

refactor: csf.sh init.d script; POSIX compliant.
fix: Correct HTML escaping in the Firewall Configuration page to ensure settings are processed safely and correctly.
fix: Release workflow not fetching correct pull requests.

Statistics

How the files have changed:

Changed files : 62
Changes : 63596
Commits : 7
Additions : 28207
Deletions : 35389
PRs (categorized) : 6
PRs (uncategorized) : 1
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

update release workflow : 99b4833 @Aetherinox

🐛 Bugfixes

(ui) properly escape HTML-sensitive characters in configuration inputs #27 : 7bea09f @Aetherinox

📦 Build & Dependencies

(version) bump minor release 15.05 : e19a4ec @Aetherinox

✏️ Docs

(mkdocs) fix word wrap on codeblocks : 79fa35f @Aetherinox
update changelog for 15.05 : 84147fc @Aetherinox

Contributors

Aetherinox

Assets 9

15 Oct 16:28

BinaryServ

15.04

e71a363

v15.04

Release Info

Item	Value
_{🏷️ Version}	_v15.04
_{📄 csf-firewall-v15.04.zip}	_{ConfigServer Firewall main app} _{cc6abf3aab08526d45f349175df1ffff1f4be8ed4286b221d06d6cb203815575}
_{📄 csf-firewall-v15.04-helpers.zip}	_{Helper patches. View README for instructions} _{56394291334f1e64231d0511c0de980b0808ae308cde5a5010d5289c5c125d08}
_{🕟 Stamp}	_{15.03-2025-10-15T03:28:48.000Z 🔺 15.04-2025-10-15T16:28:20.000Z}
_{📅 Last Release}	_{0 days ago}

Release Blog

View the latest release blog at:

https://docs.configserver.dev/blog/2025/release-v1504/

What's New

This release contains the following changes:

feat: Added new setting UI_LOGS_REFRESH_TIME
- How frequently CSF automatically refreshes the displayed logs
feat: Added new setting UI_LOGS_START_PAUSED
- Define if automatic log refreshing on page load starts off running 0 or paused 1
fix: Corrected an issue in the Webmin control panel where the log textbox height was set incorrectly on page load
docs: Update Webmin installation

Statistics

How the files have changed:

Changed files : 24
Changes : 759
Commits : 11
Additions : 689
Deletions : 70
PRs (categorized) : 10
PRs (uncategorized) : 1
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

update issues templates : 5faed93 @Aetherinox

🚀 Features

(ui) add two settings: UI_LOGS_REFRESH_TIME and UI_LOGS_START_PAUSED #25 : a8f1fa6 @Aetherinox

🐛 Bugfixes

(webmin) correct log line height; set to auto, webmin theme issue #25 : 8c38339 @Aetherinox

🔧 Changes

update version schematic comments and developer notes : 906b8f8 @Aetherinox

📦 Build & Dependencies

(version) bump to 15.04 : b5f82e1 @Aetherinox

✏️ Docs

(mkdocs) update changelog : 174d071 @Aetherinox

Contributors

Aetherinox

Assets 9

15 Oct 03:35

BinaryServ

15.03

f736468

v15.03

Release Info

Item	Value
_{🏷️ Version}	_v15.03
_{📄 csf-firewall-v15.03.tgz}	_{ConfigServer Firewall main app} _{fa5780ef4fd954d91e56d26ddb2c935b05bda699c5a90438ab7cda69c0584e74}
_{📄 csf-firewall-v15.03-helpers.zip}	_{Helper patches. View README for instructions} _{3669e5fa9550e8d0b9b83b65199d1e244a667ce63bbded8c614d56824c73bdbe}
_{🕟 Stamp}	_{v15.03 2025-014-10T18:14:51.000Z}
_{📅 Last Release}	_{1 day ago}

Release Blog

View the latest release blog at:

https://docs.configserver.dev/blog/2025/release-v1503/

What's New

This release contains the following changes:

feat: Reduced the minimum font size allowed for FontMinus / FontPlus from 12px to 10px
refactor: Rewrote the JavaScript library csfajaxtail.js for improved optimization and maintainability
fix: Restored missing Module Config and Help buttons in the Webmin header
docs: Release blogs now support comments integrated from Github

Assets 9

14 Oct 11:29

BinaryServ

15.02

4cf2f20

v15.02

Release Info

Item	Value
_{🏷️ Version}	_v15.02
_{📄 csf-firewall-v15.02.zip}	_{ConfigServer Firewall main app} _{c1134834c9faf7d4a67f17b682dbb46336b10bb00e825cb83c56600104fac4ad}
_{📄 csf-firewall-v15.02-helpers.zip}	_{Helper patches. View README for instructions} _{7e4d310129f340860c5e3963bf347cb30ea25c54afe0652c69bef32f1ff2af1b}
_{🕟 Stamp}	_{v15.01 2025-014-10T18:14:51.000Z}
_{📅 Last Release}	_{45 days ago}

Release Blog

View the latest release blog at:

https://docs.configserver.dev/blog/2025/release-v1502/

What's New

This release contains the following changes:

Note

v15.02 re-introduces the Login page that this repository originally released. However, it has been enhanced to include both a light and dark theme this time, instead of just a dark theme.

This change will merge with the updating dark theme to be added to CSF so that the login page and the theme match color schemes.

feat: New login page for Generic installations
- Light & Dark theme
- New csf.conf setting:
  - UI_RETRY_SHOW_REMAINING
feat: New footer design for improved consistency and navigation
- Added logout button to footer for Generic installations
feat: Integrated csfpre.sh and csfpost.sh directly into CSF for native pre/post script support
feat: Configuration files now include headers visible in the GUI for easier file identification; called with HEADER:
feat: New codename detection helper func for conditional statements depending on the installer used by end-user
feat: Added an official help page to the download service
- https://download.configserver.dev/help
feat: Implemented Light/Dark mode toggle in the footer for better theme control
feat: Added optional Content Security Policy (CSP) protection to web interface
- New csf.conf settings:
  - UI_CSP_ENABLED
  - UI_CSP_ADVANCED_ENABLED
  - UI_CSP_ADVANCED_RULE
style: Rewrote configuration file comments for clarity; now more descriptive, organized, and include practical examples
refactor: re-write ports-blacklist to be POSIX compliant
refactor: Download service now fetches version from Github repo; no longer requires manual bumps
refactor: Overhauled the base install.sh script
- Ensured full POSIX compliance
- Added support for both absolute and relative execution paths
- Introduced new flags: --dryrun, --detect, --help, --version
chore: Update CSF SSL certificate and key
perf: Implement CSS optimization to pre-load required stylesheets
docs: Completed several pages, including:
- Installation instructions for: vestacp, cyberpanel, cpanel, interworx, centos web panel (cwp)
- Revised package / depenency commands to fix inconsistencies
fix: Resolved missing VestaCP header on the /list/csf admin page
fix: Restored CyberPanel integration functionality
fix: Resolved regex pattern issues when dealing with strict conditions

Assets 9

06 Oct 12:15

BinaryServ

15.01

4cf2f20

v15.01

Release Info

Item	Value
_{🏷️ Version}	_v15.01
_{📄 csf-firewall-v15.01.zip}	_{ConfigServer Firewall main app} _{f4b4784c6bd6c8d34e20ca3c6a504d0df5667c54ce3090d93c1d6b6164cfcbd9}
_{📄 csf-firewall-v15.01-helpers.zip}	_{Helper patches. View README for instructions} _{441b3cde9c51cd920f9ea52ca0ab8666a75a8968a06a2c188a1deec3078db724}
_{🕟 Stamp}	_{v14.24.0-2025-03-06T18:14:06.000Z 🔺 14.24.1-2025-03-11T20:45:57.000Z}
_{📅 Last Release}	_{5 days ago}

What's New

This release contains the following changes:

Note

This release does not include major theme changes as those are planned for v15.02. This update is to get the automatic update system working again, fix a few minor bugs that were found, and ensure the servers function properly.

v15.02 is upcoming

If you require the dark theme from the original version, you'll need to use the old replacement from the previous version. Those are no longer going to be released separately and will be integrated into the app. Unfortunately, this update had to come first.

Statistics

How the files have changed:

Changed files : 300
Changes : 44722
Commits : 42
Additions : 32226
Deletions : 12496
PRs (categorized) : 21
PRs (uncategorized) : 21
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🚀 Features

released new download and update server https://download.configserver.dev
released blocklist service https://blocklist.configserver.dev
new csf.conf setting UI_BLOCK_PRIVATE_NET with a default value of 1
add pre-loader functionality for css / js

🐛 Bugfixes

checkip qw missing cccheckip argument

🔧 Changes

restore csf update servers and automatic update
prep work for updated theme, to ensure it doesn't break existing themes for webmin or create loads of work for them.
added new .tgz archive in release as to previous developer's structure instead of .zip

✏️ Docs

release official csf documentation at https://docs.configserver.dev : a3a0396 @Aetherinox

Contributors

Aetherinox

Assets 9

05 Sep 20:20

BinaryServ

15.00

2201892

v15.00

Release Info

Item	Value
_{🏷️ Version}	_v15.00
_{📄 csf-firewall-v15.00.zip}	_{ConfigServer Firewall main app} _{01a4996f078eae1a479eb4b74803ff8153b5696fc289409380a0699538ce7b6b}
_{📄 csf-firewall-v15.00-helpers.zip}	_{Helper patches. View README for instructions} _{93a81575a4957ba09cde62a86191905714b2b3121f5e8ddb28283f954fcfd56f}
_{📄 csf-firewall-v15.00-theme-dark.zip}	_{Dark theme} _{d34485332ce25f452eee85daf05a436361dcc49d7252aac67782d5f7b13e264b}
_{🕟 Stamp}	_{v14.24.0-2025-03-06T18:14:06.000Z 🔺 14.24.1-2025-03-11T20:45:57.000Z}
_{📅 Last Release}	_{5 days ago}

What's New

This release contains the following changes:

Note

Due to the recent closure by the original developer of ConfigServer Firewall; all future updates to the software will be done via this repository.

This release (v15.00) is a close match to the version released by the original developer, with a few additions.

ConfigServer Firewall

feature: bring new artifact server online which will be responsible for end-user updates to ConfigServer firewall.
feature: remove old update end-point in order to prevent domain hijacking
change: modify apache regex to detect "remote" or "client" as the IP trigger
change: modify ui http header checks to be case agnostic
change: add country code validation and warning output
change: update regex to extract client ip from logs
change: update SESSION_ID validation
pref: relax session binding / validation
pref: move parent process validation check
refactor: normalize http header handling to lowercase and make content-type matching case-insensitive
fix: regression bug for ui http header checks to be case agnostic

Dark Theme

No changes in this release

OpenVPN & Docker Patches

No changes in this release

Statistics

How the files have changed:

Changed files : 300
Changes : 44722
Commits : 42
Additions : 32226
Deletions : 12496
PRs (categorized) : 21
PRs (uncategorized) : 21
PRs (open) : 0

Pull Requests

This release is associated with the following pull requests:

🪛 Continuous integration

fix escaped output : 1036c05 @Aetherinox

🚀 Features

bring new artifact server for updates online
- Releases no longer rely on https://configserver.com/; everything is handled in-house
add new api endpoint for update notifications
update patch docker.sh with better conditions and detection : 7633947 @Aetherinox

🐛 Bugfixes

move parent process validation check
checkip qw missing cccheckip argument : 05f553b @Aetherinox
docker patch text color bug with extra `- : c43c857 @Aetherinox

🔧 Changes

normalize http header handling to lowercase and make content-type matching case-insensitive
add country code validation and warning output
update regex to extract client ip from logs
change wordage on SESSION_ID validation
relax session binding / validation
update highrisk to include china networks AS17621, AS4134, AS4837, AS140061 : 371fe2b @Aetherinox
update highrisk ipset to include internet-census.org : 0c01361 @Aetherinox
remove commenting : d2c6fe5 @Aetherinox

✏️ Docs

(readme) update docker.sh prints : a3a0396 @Aetherinox
(readme) update formatting : 475ae7b @Aetherinox
(readme) update section IP Sets / Blocklist : 30917c8 @Aetherinox
(readme) add disclaimer on LF_IPSET_MAXELEM limit : 45566c9 @Aetherinox
(readme) add instructions for LF_IPSET_MAXELEM for blocklist master.ipset : b46e31a @Aetherinox
(readme) fix clone path : 761e68d @Aetherinox
(readme) update title : b940eff @Aetherinox
(readme) update description : 5241ad7 @Aetherinox
(readme) minor adjustments : eee3ea6 @Aetherinox
(readme) add default values to docker.sh patch : bad33df @Aetherinox
(readme) minor change; remove quotes from default setting file_csf_allow table : 82e9c36 @Aetherinox
(readme) add enable/disable csf & lfd commands : d3d6859 @Aetherinox
(readme) add to ipsets section : ccaf442 @Aetherinox

Contributors

Aetherinox

Assets 10

Uh oh!

Releases: Aetherinox/csf-firewall

v15.09

Insiders Pre-release (v15.09)

Release Info

What's New

Statistics

Statistics

Pull Requests

🪛 Continuous integration

🚀 Features

🐛 Bugfixes

🔧 Changes

🧹 Housekeeping

✏️ Docs

Contributors

Uh oh!

v15.08

Release Info

What's New

Statistics

Statistics

Pull Requests

🪛 Continuous integration

🚀 Features

🐛 Bugfixes

🔧 Changes

🧹 Housekeeping

Contributors

Uh oh!

v15.07

Release Info

What's New

Statistics

Pull Requests

🪛 Continuous integration

🚀 Features

🐛 Bugfixes

🔧 Changes

🧹 Housekeeping

📦 Build & Dependencies

✏️ Docs

Contributors

Uh oh!

v15.06

Release Info

What's New

Statistics

Statistics

Pull Requests

🪛 Continuous integration

🐛 Bugfixes

📦 Build & Dependencies

✏️ Docs

Contributors

Uh oh!

v15.05

Release Info

Release Blog

What's New

Statistics

Pull Requests

🪛 Continuous integration

🐛 Bugfixes

📦 Build & Dependencies

✏️ Docs

Contributors

Uh oh!

v15.04

Release Info

Release Blog

What's New

Statistics

Pull Requests

🪛 Continuous integration

🚀 Features

🐛 Bugfixes

🔧 Changes

📦 Build & Dependencies

✏️ Docs