Skip to content

Changelog

Version Downloads Repo Size Last Commit)


15.06 Oct 16 2025

  • fix: Backwards compatibility issue related to older versions of Webmin control panel. Specifically v2.111 and Authentic theme v21.10. Webmin detected as "Generic" installation; header icon missing; generic footer loaded.



15.05 Oct 16 2025

  • fix: Correct HTML escaping in the Firewall Configuration page to ensure settings are processed safely and correctly.
  • refactor: Refactored csf.sh init.d script; POSIX compliant.



15.04 Oct 15 2025

  • feat: Added new setting UI_LOGS_REFRESH_TIME
    • How frequently CSF automatically refreshes the displayed logs
  • feat: Added new setting UI_LOGS_START_PAUSED
    • Define if automatic log refreshing on page load starts off running 0 or paused 1
  • fix: Corrected an issue in the Webmin control panel where the log textbox height was set incorrectly on page load
  • docs: Update Webmin installation



15.03 Oct 15 2025

  • feat: Reduced the minimum font size allowed for FontMinus / FontPlus from 12px to 10px
  • refactor: Rewrote the JavaScript library csfajaxtail.js for improved optimization and maintainability
  • fix: Restored missing Module Config and Help buttons in the Webmin header
  • docs: Release blogs now support comments integrated from Github



15.02 Oct 14 2025

  • feat: New login page for Generic installations
    • Light & Dark theme
    • New csf.conf setting:
      • UI_RETRY_SHOW_REMAINING
  • feat: New footer design for improved consistency and navigation
    • Added logout button to footer for Generic installations
  • feat: Integrated csfpre.sh and csfpost.sh directly into CSF for native pre/post script support
  • feat: Configuration files now include headers visible in the GUI for easier file identification; called with HEADER:
  • feat: New codename detection helper func for conditional statements depending on the installer used by end-user
  • feat: Added an official help page to the download service
  • feat: Implemented Light/Dark mode toggle in the footer for better theme control
  • feat: Added optional Content Security Policy (CSP) protection to web interface
    • New csf.conf settings:
      • UI_CSP_ENABLED
      • UI_CSP_ADVANCED_ENABLED
      • UI_CSP_ADVANCED_RULE
  • style: Rewrote configuration file comments for clarity; now more descriptive, organized, and include practical examples
  • refactor: re-write ports-blacklist to be POSIX compliant
  • refactor: Download service now fetches version from Github repo; no longer requires manual bumps
  • refactor: Overhauled the base install.sh script
    • Ensured full POSIX compliance
    • Added support for both absolute and relative execution paths
    • Introduced new flags: --dryrun, --detect, --help, --version
  • chore: Update CSF SSL certificate and key
  • perf: Implement CSS optimization to pre-load required stylesheets
  • docs: Completed several pages, including:
    • Installation instructions for: vestacp, cyberpanel, cpanel, interworx, centos web panel (cwp)
    • Revised package / depenency commands to fix inconsistencies
  • fix: Resolved missing VestaCP header on the /list/csf admin page
  • fix: Restored CyberPanel integration functionality
  • fix: Resolved regex pattern issues when dealing with strict conditions



15.01 Oct 06 2025



15.00 Aug 28 2025

  • chore: Download and update servers taken offline
  • chore: Disabled automatic updates within csf
  • chore: Added country code validation and warning output
  • refactor: Updated regex to extract client ip from logs
  • docs: Changed license to GPLv3



14.24 Aug 02 2025

  • fix: regression bug in v14.23 "Modified UI HTTP header checks to be case agnostic"



14.23 July 21 2025

  • change: Modify Apache regex to detect "remote" or "client" as the IP trigger
  • change: Mdified UI HTTP header checks to be case agnostic



14.22 Sep 20 2024

  • build: Updates ConfigServer Firewall to v14.22
  • remove: session IP match check from DA login
  • added: example spamassassin temp file regex to csf.fignore for new installations



14.21 Aug 30 2024

  • change: add header animations, app name returns user home
  • change: clicking app logo or name now returns user to home page
  • change: add favicon
  • change: silence curl in openvpn patch
  • change: removal of NETWORK_MANUAL_MODE, NETWORK_ADAPT_NAME
  • change: new animated checkbox input for firewall profiles
  • change: clicking logo in header now re-directs user to home
  • change: enhanced login screen animations
  • change: enhanced mobile view
  • build: update main source release to CSF v14.21
  • build: dark theme now compatible with CSF v14.21
  • fix: docker inspect error when container has more than one network #1
  • fix: extended sized buttons with text cutting off
  • docs: removal of manual mode values no longer needed



14.20 Aug 28 2024

  • feat: add new patch openvpn
  • feat: add new command-line arguments:
    • add -d, --dev for advanced logging
    • add -f, --flush to completely remove iptable rules
    • add -r, --report to display dependency stats, app information, etc.
    • add -v, --version to display patcher version
  • feat: added new login page to dark theme
  • feat: add dark theme
  • feat: add traefik integration
  • feat: add authentik integration
  • change: docker patch now allows for multiple ip blocks to be whitelisted
  • change: optimizations to load order
  • change: updated toggle switches for various setting pages
  • change: start migration of in-line style properties over to stylesheet
  • change: new ruleset for openvpn integration
  • change: auto disable csf TESTING mode when patch ran
  • change: add -r, --report to display status of dependencies and setup
  • refactor: re-write of script
  • refactor: merge all scripts into one
  • fix: interface bug which existed in light theme which caused certain divs to break
  • fix: openvpn ip detection
  • fix: issue with manual mode being disabled - #1
  • fix: error "docker network inspect" requires at least 1 argument. - #1
  • fix: error invalid port/service '-j' error
  • ci: dark theme now included with all releases as .zip
  • ci: auto-update /docs/ on push to repo
  • ci: add workflow to automatically grab latest version of ConfigServer Firewall and append to each release
  • docs: update to include traefik and authentic integration
  • docs: rewrite documentation to include better instructions



14.19 May 06 2024

  • change: switch to using iptables-nft if it exists in /usr/sbin/iptables-nft
  • added: IO::Handle::clearerr() call before reading data from a log file
  • added: "Require all granted" to the MESSENGER .htaccess file
  • added UID/GID rules to IPv6 if enabled
  • modified: dovecot regex to look for "failed: Connection reset by peer"