We are pleased to announce the release of Juggernaut Security and Firewall 3.0 under General Availability. This is a major release and all users are encouraged to upgrade. This release has passed Plesk certification and is now available in the Plesk extension directory.
Domain Level Country Blocking
Create access policies to deny or allow access to URLs based on the users country, continent, or autonomous system number. The Apache MaxMind DB geolocation module provides geo-filtering at the web server level. You can learn more about the new domain level country blocking here.
Administrators can now create a policy for Roundcube webmail to allow or deny access based on the users country, continent, or autonomous system number.
The new Messenger V3 uses Apache to provide the web server functionality for the messenger services. It uses a fraction of the resources that the LFD inbuilt service uses and overcomes the memory overhead of using the messenger HTTPS service. This option is recommended for advanced users who host a lot of domains as it provides better PCI compliance, multi-language support, and uses less resources. You can learn more about the new Messenger V3 here.
MaxMind ASN Database Support
We've added the MaxMind Autonomous System Number database to the list of databases that will be downloaded by Juggernaut Firewall. This allows us to lookup the network, ASN, and organization information for an IP address.
[+] Added support for AlmaLinux 8.3.
[+] Added support for the MaxMind DB Apache geolocation module. The MaxMind DB Apache packages will be installed from the danami-juggernaut repo.
[+] Added a new policy area where admins, resellers, and customers can manage Apache web server access policies. Users can allow or deny access to specific URLs based on the users country, continent, or autonomous system number.
[+] Added a new webmail policy page where the admin can allow or deny access to the webmail based on the users country, continent, or autonomous system number.
[+] Updated the IP address network information lookup page to include the network, ASN, and organization information. Users must first download the MaxMind ASN database under geolocation settings for these items to be displayed.
[+] Added CSF messenger V3 support to allow the messenger service to use Apache directly instead of starting its own messenger daemon. To enable messenger v3 press the default button on the messenger settings page to apply the Plesk defaults, check the messenger v3 checkbox, then restart the login failure daemon.
[+] Added a new permissions page under settings so that admins can allow or deny access to the policies area for customers and resellers.
[+] Added Apache monitoring to the dashboard services widget.
[+] Added new `maxminddb` and `geofilter` options to the installer command line interface.
[+] Added an additional pre-install check to make sure that the operating system is fully supported.
[=] Updated the country select lists to not be locaized so that the country names will always match what is displayed by MaxMind.
[=] Updated the setup wizard to disable firewall testing mode and start the login failure daemon when going though the wizard.
[=] Updated the log search to automatically raise the default limit when searching for patterns.
[=] Updated the MaxMind database signature verification to use sha256 instead of md5.
[=] Removed the messenger log to make room for the new action log.
[=] Deleted some section icons to speed up page load.
[=] Updated the jQuery and MaxMind libraries.
[=] Updated the minimum supported Plesk version to 17.8.11.
[=] Dropped support for Ubuntu 16.04.
[-] Fixed a bug where the syntax highlighting was not working when viewing modsecurity transactions outside of the modsecurity log.
[-] Fixed a bug with the pre-install OS version check.
The upgrade is available to all active license holders. Login to your Plesk panel and click on Extensions -> Updates -> Select the Juggernaut Security and Firewall extension then press the update button. You can view the upgrade process using the command: tail -f /var/log/plesk/panel.log
Wednesday, August 4, 2021