Merge branch 'cloudlinux:master' into mkrcho-wp-plugin-v1

martinkrcho · web-flow · commit fbceafbcd517 · 2025-03-14T10:42:30.000+01:00
diff --git a/docs/.vuepress/public/images/iplists-disabled-error.png b/docs/.vuepress/public/images/iplists-disabled-error.png
diff --git a/docs/command_line_interface/README.md b/docs/command_line_interface/README.md
@@ -952,7 +952,7 @@ imunify360-agent ip-list local [command] <value> [--option]
 |-|-|
 |<span class="notranslate">`-h`, `--help`</span>|Show this help message and exit| 
 
-`value` is an item to manipulate with. It can be IP itself or a country code (find necessary country codes here in [CIDR notation](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing#IPv4_CIDR_blocks) in the column ISO ALPHA-2 CODE). 
+`value` is an item to manipulate with. It must be a valid IP address.
 
 ### List 
 
@@ -972,8 +972,8 @@ imunify360-agent ip-list local list [--options] <value>
 |<span class="notranslate">`--by-comment BY_COMMENT`</span>|Filters output by comment| 
 |<span class="notranslate">`--limit LIMIT`</span>|Limits the output with specified number of incidents| 
 |<span class="notranslate">`--offset OFFSET`</span>|Offset for pagination| 
-|<span class="notranslate">`--order-by [ORDER_BY ...]`</span>|List of fields to sort the results by| 
-|<span class="notranslate">`--by-type {ip,country}`</span>|Filters output by item tipe [country | ip]| 
+|<span class="notranslate">`--order-by [ORDER_BY ...]`</span>|List of fields to sort the results by. Each field must be followed by "+" for descending order or "-" for ascending order (e.g., --order-by ip+ or --order-by purpose-)| 
+|<span class="notranslate">`--by-type {ip,country}`</span>|Filters output by item tipe [country\|ip]| 
 |<span class="notranslate">`--json`</span>|Returns data in JSON format|  
 
 :::tip
@@ -1071,7 +1071,8 @@ imunify360-agent ip-list local [command] --purpose captcha <value> [--options]
 `command` is a positional argument and can be:
 
 | | |
-|-|-|
+|-|-| 
+|<span class="notranslate">`add`</span>|Add item(-s) to local ip-list|
 |<span class="notranslate">`delete`</span>|Remove item(-s) from local ip-list|
 |<span class="notranslate">`list`</span>|List item(-s) in local ip-list|   
 
@@ -1284,7 +1285,7 @@ Optional arguments:
 |<span class="notranslate">`--by-status [BY_STATUS [BY_STATUS ...]]`</span>|Return items with selected status.|
 |<span class="notranslate">`--by-scan-id BY_SCAN_ID`</span>|Return items with selected ID.|
 |<span class="notranslate">`--items ITEMS`</span>|Return selected items.|
-|<span class="notranslate">`--search SEARCH`</span>|Search query.|
+|<span class="notranslate">`--search SEARCH`</span>|Search query.| 
 
 
 <span class="notranslate">`action`</span> is the second positional argument for <span class="notranslate">`ignore`</span> and can be one of the following:
@@ -1304,13 +1305,24 @@ where PATHS are the absolute paths to files or folders divided by a whitespace.
 |<span class="notranslate">`cleanup`</span>|clean up infected ITEMS for a USER|
 |<span class="notranslate">`cleanup-all`</span>|clean up all files that have been detected as infected for all users|
 |<span class="notranslate">`restore-original`</span>|restore the original (malicious/infected) file to its original location|
+|<span class="notranslate">`diff`</span>|get difference between infected and cleaned file|
 |<span class="notranslate">`list`</span>|list malicious/infected files|
 |<span class="notranslate">`move-to-ignore`</span>|move a <span class="notranslate">Malicious List</span> entry to the (malware) <span class="notranslate">Ignore List</span>|
 |<span class="notranslate">`remove-from-list`</span>|remove malicious/infected files from the <span class="notranslate">Malicious List</span>|
 |<span class="notranslate">`restore-from-backup`</span>|restore a clean version of infected file from backup|
 |<span class="notranslate">`restore-from-quarantine`</span>|<b>deprecated in ver. 5.9.</b> Restore a quarantined file. The file will be automatically re-scanned|
 
 
+The optional arguments for <span class="notranslate">`malicious diff`</span> are:
+
+| | |
+|-|-|
+|<span class="notranslate">`--id ID`</span>|specific file by ID. IDs be obtained via `malware malicious list`|
+|<span class="notranslate">`--user USER`</span>|admins can filter results by user. Users can only see their own files|
+|<span class="notranslate">`--json`</span>|return data in JSON format. |
+|<span class="notranslate">`--verbose, -v`</span>||
+
+
 <span class="notranslate">`action`</span> is the second positional argument for <span class="notranslate">`on-demand`</span> and can be one of the following:
 
 | | |
@@ -1331,7 +1343,8 @@ The optional arguments for <span class="notranslate">`on-demand start`</span> an
 |<span class="notranslate">`--no-follow-symlinks`</span>|
 |<span class="notranslate">`--file-mask FILE_MASK`</span>|
 |<span class="notranslate">`--intensity-cpu {1 to 7}`</span> 1 means the lowest intensity, 7 means the highest intensity|
-|<span class="notranslate">`--intensity-io {1 to 7}`</span> 1 means the lowest intensity, 7 means the highest intensity|
+|<span class="notranslate">`--intensity-io {1 to 7}`</span> 1 means the lowest intensity, 7 means the highest intensity| 
+|<span class="notranslate">`--prioritize`</span>|Initiate a new on-demand scan immediately, despite other scans queued.|
 
 <span class="notranslate">`action`</span> is the second positional argument for <span class="notranslate">`suspicious`</span> and can be one of:
 
diff --git a/docs/dashboard/README.md b/docs/dashboard/README.md
@@ -333,6 +333,19 @@ You will see a notification if an IP has been added successfully.
 
 ![](/images/added_zoom80.png)
 
+Starting with imunify360-firewall-8.2.0, manual addition can be disabled. To disable it, set <span class="notranslate">`PERMISSIONS.allow_local_ip_management = false`</span> configuration option from a command line:
+
+<div class="notranslate">
+
+```
+imunify360-agent config update '{"PERMISSIONS": {"allow_local_ip_management": false}}'
+```
+</div>
+
+After local IP management is disabled an attempt to add IP address results in error:
+
+![](/images/iplists-disabled-error.png)
+
 #### How to add a country manually
 
 To add a country to the Black List, click <span class="notranslate">_Add_</span> on the right side of the page.
diff --git a/docs/email/README.md b/docs/email/README.md
@@ -40,13 +40,14 @@ Imunify Email has been checked for compatibility with following tools and mail g
 
 :::danger Note
 Hosting administrator only.
-
 Imunify Email requires Imunify360 to be installed on the server.
-:::
+::: 
 
-Imunify Email is simple to install.
+:::warning 
+Ensure that port 11335 is open. Additionally, note that it is a UDP server, and therefore, it is not accessible via telnet. 
+:::
 
-At the moment, it runs on the following distributions:
+Imunify Email is simple to install. At the moment, it runs on the following distributions:
 
 * CentOS 7, 8 with support of cPanel/WHM control panel.
 * CloudLinux OS 7, 8, 9 with support of cPanel/WHM control panel.
diff --git a/docs/faq_and_known_issues/README.md b/docs/faq_and_known_issues/README.md
@@ -399,7 +399,7 @@ For instance:
 <div class="notranslate">
 
 ```
-wget http://www.eicar.org/download/eicar.com.txt -O /tmp/eicar.com.txt
+wget https://secure.eicar.org/eicar.com.txt -O /tmp/eicar.com.txt
 curl -v -s -o /dev/null -F 'data=@/tmp/eicar.com.txt' http://mycoolwebsite.net/
 ```
 </div>
diff --git a/docs/features/README.md b/docs/features/README.md
@@ -37,6 +37,10 @@ imunify360-agent reload-lists
 
 Or restart the agent.
 
+:::tip Note
+Starting with imunify360-firewall-8.2.0 all IP lists are applied automatically. Manual reloading is no longer required.
+:::
+
 :::warning Warning
 Specifying IPs in those files will not prevent Imunify from adding the same IPs to dynamic lists (like Gray list), but all White lists always have the priority over Black lists when it comes to actual filtering of requests/packages.
 :::
@@ -371,7 +375,7 @@ Version Imunify360 6.0 or later supports the use of MDS in UI.
 :::
 
 :::danger Warning
-For now, Malware Database Scanner (MDS) supports WordPress and Joomla databases only.
+For now, Malware Database Scanner (MDS) supports WordPress, Joomla, and Magento 2 databases only.
 :::
 
 ### How to use Malware Database Scanner (MDS)
@@ -535,6 +539,7 @@ For cPanel/EasyApache 4, Plesk, DirectAdmin and LiteSpeed _mod_remoteip_ will be
 * Sucuri WAF
 * Ezoic
 * Fastly
+* OGO CDN
 
 #### How to trust all IPs that are specified by Ezoic CDN
 
diff --git a/docs/ids_integration/README.md b/docs/ids_integration/README.md
@@ -2,7 +2,12 @@
 
 [[toc]]
 
-## IDS Integration
+## IDS Integration 
+
+:::tip Note 
+Please be aware that *firewalld* is not fully compatible with Imunify360.
+While it is possible to use Imunify360 and firewalld on the same server, you may need to duplicate certain rules or permissions and manually implement changes to configure both Imunify360 and firewalld. Therefore, we recommend utilizing either the Imunify360 firewall exclusively or Imunify360 in conjunction with CSF.  
+:::
 
 ### CSF Integration
 
@@ -569,7 +574,7 @@ This section includes specific settings for each hosting panel that Imunify360 s
 
 * Web application firewall
 * Malware scanning of files uploaded using web
-:::
+::: 
 
 <span class="notranslate">Mod_security</span> installation process is specific for different panels:
 
@@ -595,7 +600,7 @@ If <span class="notranslate">mod_security</span> is installed before Imunify360,
 
 ::: tip Note
 If Imunify360 installer detects any existing ruleset, it installs only minimal set of its rules. So, you need to disable all third-party rulesets prior to Imunify360 installation to get the full ruleset installed automatically.
-:::
+::: 
 
 ### cPanel
 
diff --git a/docs/imunifyav/README.md b/docs/imunifyav/README.md
@@ -505,6 +505,14 @@ The table has the following columns:
   * **Add new file or directory** — click _Plus_ icon to add a new file or directory to the Ignore list.
 To perform a bulk action, tick the required files and click the corresponding button above the table.
 
+::: tip Note
+Wildcards are not supported when adding paths to the <span class="notranslate">Ignore List</span>. For example, the following paths are not supported:
+* <span class="notranslate">`/home/*/mail/`</span>
+* <span class="notranslate">`/home/user/*.html`</span>
+* <span class="notranslate">`/home/*`</span>
+:::
+ 
+
 The following filters are available:
 
 **Timeframe** — displays the results filtered by chosen period or date.
diff --git a/docs/imunifyav/cli/README.md b/docs/imunifyav/cli/README.md
@@ -147,7 +147,7 @@ Allows to update configuration file via CLI.
 imunify-antivirus config update [configuration options]
 ```
 
-You can find instructions on how to apply configuration changes from CLI [here](/cli/#how-to-apply-changes-from-cli) and configuration options can be taken from the `/etc/sysconfig/imunify360/imunify360.config` file.
+You can find instructions on how to apply configuration changes from CLI [here](./#how-to-apply-changes-from-cli) and configuration options can be taken from the `/etc/sysconfig/imunify360/imunify360.config` file.
 
 **Example:**
 
@@ -272,7 +272,7 @@ succeeded:
 ## Hooks <Badge text="Deprecated" type="warning"/>
 
 :::danger Warning!
-You can use a new notification system via [CLI](/cli/#notifications-config).
+You can use a new notification system via [CLI described here](./#notifications-config).
 :::
 
 You can read more about hooks [here](/imunifyav/#hooks-cli).
