The ConfigServer shutdown scheduled for August 31, 2025, marks a major change for cPanel server administrators. Way to the Web Ltd., the company behind ConfigServer, will permanently close, ending support and downloads for all its commercial and free software tools. This shutdown impacts widely used products such as ConfigServer Exploit Scanner (CXS), Outgoing Spam Monitor (OSM), MailScanner Front-End (MSFE), and ConfigServer Security & Firewall (CSF).
It is crucial for server administrators and web hosting managers to prepare their cPanel servers now to avoid downtime, data loss, or loss of support.
What the ConfigServer Shutdown Means
The shutdown affects both commercial and free ConfigServer tools differently:
- Commercial tools (CXS, OSM, MSFE) must be updated to the latest version before August 31, 2025. Failure to update will result in these tools ceasing to function permanently. They also cannot be reinstalled or moved to a new server after this date.
- Free scripts such as CSF, ConfigServer Mail Queues (CMQ), ConfigServer Mail Manage (CMM), ConfigServer ModSecurity Control (CMC), and ConfigServer Explorer (CSE) will continue to operate after August 31, but they will no longer receive updates or be available for new installations.
This makes it imperative to back up installers and ensure commercial licenses are activated before the shutdown to maintain functionality.
Immediate Actions to Take
Administrators should follow these steps immediately:
- Review the official ConfigServer announcement and FAQs to understand all changes.
- Check which ConfigServer software is installed on your cPanel server.
- Update all products to the latest versions before August 31.
- Back up installers for free scripts to allow future reinstallation if necessary.
- Activate any unused commercial licenses to ensure continued usability.
How to Identify ConfigServer Products on Your Server
You can identify installed ConfigServer software using either WHM or SSH:
Option A: Using WHM
- Log in as root.
- Navigate to Plugins.
- Look for installed products, such as:
- ConfigServer Security & Firewall (CSF)
- ConfigServer Mail Queues (CMQ)
- ConfigServer Mail Manage (CMM)
- ConfigServer ModSecurity Control (CMC)
- ConfigServer Explorer (CSE)
- MailScanner Front-End (MSFE)
- ConfigServer Exploit Scanner (CXS)
- Outgoing Spam Monitor (OSM)
💡 Tip: Use the WHM search box and type “configserver” or the product short name for quick access.
Option B: Using SSH
- For CSF:
ls /etc/csf - For free scripts:
ls -1 /usr/local/cpanel/whostmgr/docroot/cgi/configserver - For commercial scripts: Check installation locations in documentation or verify via WHM UI entries.
Checking ConfigServer Versions
It is essential to verify that your installed versions are up to date. Current versions as of August 2025 include:
- CSF – 14.24:
cat /etc/csf/version.txt - CMQ – 3.05:
cat /etc/cmq/cmqversion.txt - CMM – 2.08:
cat /usr/local/cpanel/whostmgr/docroot/cgi/configserver/cmm/cmmversion.txt - CMC – 3.03:
cat /usr/local/cpanel/whostmgr/docroot/cgi/configserver/cmc/cmcversion.txt - CSE – 2.05:
cat /usr/local/cpanel/whostmgr/docroot/cgi/configserver/cse/cseversion.txt - CXS – 14.02:
cxs --version - MSFE – 10.00 (check WHM UI or documentation)
- OSM – 3.00 (check WHM UI or documentation)
If the latest version is installed, no further action is required. Otherwise, proceed with updates.
Updating ConfigServer Products
All updates must be completed before August 31, 2025, using the following commands:
ConfigServer Exploit Scanner (CXS):
cxs -U
Outgoing Spam Monitor (OSM):
wget --no-check-certificate https://download.configserver.com/osminstaller.tgz
tar -xzf osminstaller.tgz
perl osminstaller.pl
MailScanner Front-End (MSFE):
wget --no-check-certificate https://download.configserver.com/msfeinstaller.tgz
tar -xzf msfeinstaller.tgz
perl msfeinstaller.pl
/usr/mscpanel/mscheck.pl
ConfigServer Explorer (CSE):
wget --no-check-certificate https://download.configserver.com/cse.tgz
tar -xzf cse.tgz
cd cse
sh install.sh
ConfigServer ModSecurity Control (CMC):
wget --no-check-certificate https://download.configserver.com/cmc.tgz
tar -xzf cmc.tgz
cd cmc
sh install.sh
ConfigServer Mail Manage (CMM):
wget --no-check-certificate https://download.configserver.com/cmm.tgz
tar -xzf cmm.tgz
cd cmm
sh install.sh
ConfigServer Mail Queues (CMQ):
wget --no-check-certificate https://download.configserver.com/cmq.tgz
tar -xzf cmq.tgz
cd cmq
sh install.sh
ConfigServer Security & Firewall (CSF):
csf -u
💡 Tip: If you have multiple commercial scripts, run the all-in-one updater:
curl -s https://download.configserver.com/csupdate | perl
Backup Recommendations
Before August 31, it is critical to download and back up installers for all free scripts. This ensures that you can reinstall them on new servers if necessary, even after ConfigServer shuts down. Keep backups in secure, redundant locations to avoid future operational issues.
Conclusion
The ConfigServer shutdown is a significant event for cPanel server administrators. Proper planning, immediate updates, and comprehensive backups are essential to maintain security, performance, and compliance. By following the steps outlined above, you can ensure your cPanel server remains fully operational and protected even after ConfigServer ceases operations.
