We have successfully updated to the latest production versions of a number of services including the dovecot system that form part of our eMail services.The good news is that it would appear that I was, once again, able to maintain the legacy (and less secure) protocols and cyphers for the benefit of customers using older software.I urge any users ... Read More »
Kernel was updated to version 2.6.32-896.16.1.lve1.4.53.el6.x86_64This is a re-base of the kernel to the latest version. The kernel will continue to be updated every 4 hours with the latest patches and fixes by our KernelCare service that provides reboot-less kernel patching.Changelog since kernel-2.6.32-896.16.1.lve1.4.52: CLKRN-219: fixed ... Read More »
This is the full disclosure of the Targeted Security Release that was installed yesterday.SEC-338 Summary Arbitrary file chmod during legacy incremental backups. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 7.5 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N Description It was possible for a user to prepare their ... Read More »
cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 3.8 to 8.2. Information on ... Read More »
We have been informed that the next round of upgrades and updates has tentatively been scheduled for the week starting the 26th February 2018This round of updates could make the older security protocols and cyphers obsolete, and the eMail system might not accept them as an option.I urge any users that have not upgraded to a contemporary operating ... Read More »
We have successfully updated to the latest production versions of a number of services including the exim and dovecot systems that provide our eMail services.The good news is that it would appear that I was able to maintain the legacy (and less secure) protocols and cyphers for the benefit of customers using older software.The bad news is that the ... Read More »
The next set of upgrades to the email services that may affect users ability to connect with older or legacy software that do not support the stricter modern security protocols and ciphers, have been published to production. It may be only a matter of hours now before they are automatically installed on our systems.I urge any users that have not ... Read More »
cPanel have just released their next version to the production testing stage which, from past experience, can last anything from a couple of days to several weeks.
I think the upgrades will be released to production much sooner rather than later, so please be ready for the new security settings to go into effect.
We are expecting to have the next round of system and security upgrades released for installation as early as next week (29th Jan 2018) and probably before the middle of February.At this point, we shall be returning all our security settings to the current industry standard recommendations which, almost certainly, will prevent older software from ... Read More »
As part of my on-going campaign to supply customers with up-to-date, industry standard security, I have withdrawn from the Softaculous software installer all the scripts that have not been updated by their publisher for more than 2 years.This does not preclude users from obtaining those scripts directly from their software writers and deploying ... Read More »