We have successfully updated to the latest production versions of a number of services including the exim and dovecot systems that provide our eMail services.The good news is that it would appear that I was able to maintain the legacy (and less secure) protocols and cyphers for the benefit of customers using older software.The bad news is that the ... Leer Más »
The next set of upgrades to the email services that may affect users ability to connect with older or legacy software that do not support the stricter modern security protocols and ciphers, have been published to production. It may be only a matter of hours now before they are automatically installed on our systems.I urge any users that have not ... Leer Más »
cPanel have just released their next version to the production testing stage which, from past experience, can last anything from a couple of days to several weeks.
I think the upgrades will be released to production much sooner rather than later, so please be ready for the new security settings to go into effect.
We are expecting to have the next round of system and security upgrades released for installation as early as next week (29th Jan 2018) and probably before the middle of February.At this point, we shall be returning all our security settings to the current industry standard recommendations which, almost certainly, will prevent older software from ... Leer Más »
As part of my on-going campaign to supply customers with up-to-date, industry standard security, I have withdrawn from the Softaculous software installer all the scripts that have not been updated by their publisher for more than 2 years.This does not preclude users from obtaining those scripts directly from their software writers and deploying ... Leer Más »
Following reports from a user that they were unable to send eMail from their Apple Mail after our recent upgrades to the eMail security, we have been temporarily obliged to significantly lower the levels of the eMail security and Ciphers.After extensive testing, and with the support of one of the cPanel senior engineers, we have established that ... Leer Más »
In keeping with best industry standards, we have now removed support for the following email SSL and security protocols: sslv2 sslv3 tlsv1 tlsv1_1 Our apologies to anyone that may need to reset their eMail configuration or install an up-to-date eMail client software package, but we are constantly and conscientiously updating all our ... Leer Más »
The PHP versions 4.4, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, 7.0, 7.1 and 7.2 have all been updated to include the latest security patches, bug fixs and legacy version hardening, and the brotli compression option has been added.
Kernel was updated to version 2.6.32-896.16.1.lve1.4.51.el6.x86_64This kernel is a rework of the 2.6.32-896.16.1.lve1.4.50.el6.x86_64 kernel that we had to withdraw as it re-introduced some of the problems that which made it vulnerable to Spectre variant 1 attack. This is a re-base of the kernel to the latest version. The kernel will continue to ... Leer Más »
Kernel was updated to version 2.6.32-896.16.1.lve1.4.50.el6.x86_64This kernel address some instability that was being experienced by disk quotas on a few platforms.Whilst we were not affected by this issue, we feel that it is best to keep the kernels and updates right up-to-date during this time of trying to mitigate the Meltdown and Spectre ... Leer Más »