CXS Integration
ConfigServer eXploit Scanner (CXS) has different types of malware scanning, which affects Imunify360 Malware Scanner functionality. Below we describe how to make Imunify360 Malware Scanner work properly. These functionalities can be configured on the Malware Scanner settings page, but CXS itself must be configured as follows:
-
Automatically scan all modified files
CXS Watch daemon must be disabled.
-
Automatically scan any files uploaded using web
CXS ModSecurity vendor should be disabled.
-
Automatically scan any file uploaded using ftp
Imunify360 supports only Pure-FTPd. For Pure-FTPd CXS launches pure-uploadscript for the scan. Any pure-uploadscript used by CXS must be disabled. You can use the following commands to do that:
systemctl stop pure-uploadscript.service
systemctl disable pure-uploadscript.service
systemctl restart imunify360
-
On-Demand scanning
This type of scanning can be always run by Imunify360 and CXS separately. No special actions required.
Note
Imunify360 doesn’t make any imports from CXS.