3.12.0

Fix. SecFW. IPv6 detecting fixed.
Fix. Scan. Fixed scan_type identified.
Fix. Code. Trailing comma deleted to support PHP before 7.4.
Fix. Uniforce Lite/Full. Product naming fixed.
Fix. Requirements. PDO class missing handled.
Mod. Helper. Get sanitized message from error_get_last().
Fix. Code. Requirements. Debug commented.
Fix. Code. Use safe method Helper::arrayCombine() instead of array_combine();
Fix. Storage. CSV reading. Symbols limit updated to 15000 instead of 2000.
New. Code. Requirements. CURL extension check.
Fix. Test connection. Do not use singleton to prevent empty db name error.
Fix. BFP. Is logged in check fixed for Bitrix instance.
Fix. Helper. Getting server IP address on IIS fixed.
Fix. View. Edit an empty line
Fix. BFP. Checking CMS fixed.
Fix. SecFW. BFP - login page detecting fixed.
Fix. SecFW. Brute force protection logic fixed.
Fix. Security FireWall. Brute force protection writing result to the storage fixed.

3.11.0

• New. UniforceLite. Implemented module.
• New. SecFW. Pass statuses for the test page has been described.
• New. Scan results layout and data gathering.
• Upd. Scan. Processing the get parameter.
• Upd. General. Update path for preloader gif.
• Upd. ScannerController.php Tabs to spaces.
• Upd. Code. Settings. Roll back fluid interface code-style.
• Upd. Typo. Updated description.
• Fix. Code. Redundant constant defining removed.
• Fix. Buffer. Attaching JS. Skip on custom ajax event flag for phpBB.
• Fix. Scan. Fixed pagination.
• Fix. Signatures scanner. Fix decoding issues.

3.10.0

• Fix. Cookies. Auth cookie set via JS if page is cached.
• Fix. Cron. Getting tasks fixed.
• Fix. File. Returning saving variables result fixed.
• Fix. Install. Installing cron tasks fixed.
• Fix. Cron. Cron file. Add a global sign to the variable by defaults.
• New. Scanner. Automatic start in background implemented.
• Code. Tabs to spaces.
• New. Scanner. Background scanner log layout implemented.
• Fix. Stages results collection.
• Update. Stop background scan if manual scan is run.
• Mod. Do not update cron on background scan end.
• Fix. Update cron on save settings.
• Fix. Cron. Cron file. Delete global sign to the variable by defaults,…
• New. Invalid key check implemented during settings save.
• Upd. Settings. Checkboxes label tag is clickable now.
• Upd. Settings. Scanner results. Path column text is column-wide now.
• Fix. Validation. Update access key status on first dashaboard entetring.

3.9.0

• Fix. PHP 8+ Compatibility.
• Fix. Settings. Disable autocomplete on the acces key field for firefox browsers.
• New. Warn user if get_key_auto fails on expire.
• Mod. WAF and FW tests now runs on good networks.
• Ref. get_api_key. Additional HTML transfering implemented.
• New. Remote calls. private_record_add/private_record_delete implemented
• Fix. Rename func __()
• Upd. Install screen updates.
• Upd. Settings. Brute-force description and examples.
• Upd. Scanner speed up. Send OK files to db via bulk SQL request.
• New. Scanner. Added estimated and elapsed time to the scan process layout.
• Install. Additional changes.
• Fix. Remote calls. $pass_cooldown feature removed.
• Fix. Scanner stages. Forgotten statement uncommented.
• Fix. Signatures base64 decoding
• Fix. Installation. Getting key during installation fixed.
• Fix. Nginx support fixed.
• Fix. Integrations. Refactoring bitrix auth method.

3.8.0

• New. Skip status 99 for included networks.
• New. Changing admin password logic implemented.
• Mod. Scanner. Work with signatures body via base64 to prevent third-party malware scanners warns.
• Mod. Trusted networks has the highest priority on FW check.
• Mod. Installing. Updating latest version is duplicated from cron to the installing process.
• Mod. ScannerController.php -> action__scanner__signature_analysis. Moved signatures object creation out from cycle.
• Fix. Bad code viewing fixed.
• Fix. WAF signatures check fixed.
• Fix. FW logs files array statement check.
• Fix. Scanner. Large file size checking.
• Fix. FW update. Skip ivp6 networks.
• Fix. Helper. HTTP request. Try to connect via HTTP 2.0 if 1.0 has been failed.
• Fix. Show error if key is not valid.
• Fix. Cron tasks init on install fixed.
• Fix. Get hashes of approved files. Fix URL and version.
• Fix. Firewall. Add missing statuses. 15.12.2022 18:05
• Fix. FW check. Trusted networks now gain highest priority, more thatn personal records.
• Fix. Duplicated script adding.
• Fix. Empty page on main during BFP work.
• Fix. Scanner. View bad code (modal dialog)
• Fix. SecFW. Updater fixed - preventing several update process running.
• Fix. Server variables getting from $_SERVER instead of filter_input.
• Fix. SecFW. Writing fs stats sleep implemented.
• Fix. Amazon URLs.
• Fix. WAF. Now correctly extract and handle WAF rules.
• Fix. Signatures get. Show alert if can not connect signatures source.
• Fix. FW and BFP logs sending. Timestamp fix. Fix. FW and BFP logs sending. Formatting of log file to log data for API call refactored.
• Fix. usp_settings__plugin_state. Version comparison exception.
• Fix. ScannerController.php -> action__scanner__signature_analysis. Output the error if can't get signatures list.
• Fix: Fixed notice about undefined in Cron::class

3.7.0

• New: Variables\SuperGlobalVariables::sanitize - Runs sanitizing process for input parameter.
• New: Variables\SuperGlobalVariables::validation - Runs validation for input parameter.
• New: Variables\SuperVariables::get(). Implementation of validation and sanitizing.
• Mod: spbc_scanner_file_*() validating input parameters.
• New: Sanitizing filters.
• New: Applying new sanitizing filters.
• Fix: Sanitizing filters.
• Fix. Code. DS constant defining fixed.
• Mod: Added checking of strings and regular expressions in WAF
• Fixed empty auth_ip in BFP::class
• Added datetime_gmt to FW, changed datetime
• Added datetime_gmt to BFP, changed datetime
• Fixed different format datetime in BFP
• Fix: FireWall. Updating fixed.
• Datetime gmt in logs aa
• Fixed bfp->logs_sent_time and bfp->logs_sent_amount
• Mod: Added checking of strings and regular expressions in WAF

3.6.0

New: Scanner.Search regexp signatures.

• Scanner\Helper::file__get_string_number_with_needle() - modified
• Scanner\Scanner::file__scan__for_signatures() - modified
  New: Firewall update.
• Using multi curl to download files
• Storing temporary firewall *.csv.zg files locally
• Helper class extended
  Fix: if real ip is not defined.
  Fix: notice send logs if ip is empty.
  Fix: Firewall. Brute force protection module.
  Fix: From test. Typo in settings.
  Fix: From test. Malware signatures downloading and processing.
  Fix: Send file for analysis.
• Empty dangerous code.
• PHP Warning.
  Fix: Actions with files.
• Resetting actions and view handlers after an action performed.
• Hiding spinner after an action performed.
  Fix: Common\Storage::get(). PHP Warning: fgetcsv().
  Fix: Helper::http__request(). File downloading.

3.5.0

Mod: Security Firewall. Exclusions for test domains.
Mod: Security Firewall. Result handling.
Mod: Stable BTree with unique keys.
Mod: Btree improvements.
Mod: BTreeLeaf. Nodes always have left link now.
Mod: BTreeLeafNode. New constructor.
New: FileDB, BTree, BTreeLeaf classes now are working with multiple values in BTree result. (non-unique keys)
Fix: File/Storage::put result.
Fix: File/Storage::getDataFromBufferToOutput empty start variable.
Fix: BTreeLeaf::unserialize() possible wrong offset.
Fix: BTree and BtreeLeaf classes.
Fix: Helper UA.
Fix: FileDB::setWhat().
Upd: FileDB meta data structure.
Del: FileStorage class.
Del: StorageRow class.

3.4.0

New: Apache rule to access index.php.
Mod: Firewall. Update delay for fast servers.
Mod: Scanner. Heuristic class updated to 2.1
Mod: Updater. Improvements. No useless requests.
Fix: Firewall. Multiple database results for IPs
Fix: PHP Warnings.
Fix: File::copy() fixed.
Fix: Security. Issue with non HTTPS resources download.
Fix: Check file descriptor before actions with file.
Fix: BFP. Logic error in the IP checking logic.
Fix: FileStorage class. get_rows_range__to_buffer() and get_rows__to_buffer() buffer check.
Fix: Cleantalk\USP\File\BTree::getElementFromTree() strict argument type.
Fix: Conflict with DB::query() method inheritance. Method renamed to DB::q() and replaced in most places with DB::execute().
Fix: Firewall\BFP. PHP Notice.
Fix: remove notice Undefined offset: 3 in Updater.php on line 53
Fix: new email template with settings after install plugin
Fix: Error class.
Fix: Updater. PHP Notice.
Fix: Bruteforce module error.
Fix: Setting. PHP Notice.
Fix: DB compatible with new PDO version.
Fix: BTree and BtreeLeaf classes.
Fix: Helper UA.
Added a file access rights check when installing the plugin, as well as a corresponding notification
Review: Added a file access rights check when installing the plugin, as well as a corresponding notification.
Create function is_login_page, add field for name of login form for custom CMS
Update logic of is_login_page() - add pass markers

Version 2.1.0

Fix: Test IP only we have local DB.
Fix: Regular expression for detecting HTML docs.
Fix: Security issue.
Fix: Scanner results table layout.
New: Brute force protection for login form.
Mod: Updating firewall via scheduled task using remote call.
Plenty of minor fixes and improvements.