by Visakh S | Oct 17, 2014 | Apache, Nginx, Plesk
UPDATE 17th Oct – Some browsers like Firefox and IE 6 are reporting issues when SSLv3 is disabled. Fortunately, SSLv3 fix is available from OpenSSL, and major distros would soon be putting it to their repos. SSLv3 disabling can soon be done in a phased manner....
by Visakh S | Oct 16, 2014 | Apache, cPanel, FTP, Nginx
UPDATE 17th Oct – Some browsers like Firefox and IE 6 are reporting issues when SSLv3 is disabled. Fortunately, SSLv3 fix is available from OpenSSL, and major distros would soon be putting it to their repos. SSLv3 disabling can soon be done in a phased manner....
by Visakh S | Sep 26, 2014 | Server Administration
[UPDATE 1st Oct] – More vulnerabilities were reported since this post was originally written on Sep 26th. See the notes at the bottom. Highly critical Bash code injection vulnerability CVE-2014-6217 was declared on 24th Sep, and a patch is now available for all...
by Hamish Oscar Lawrence | Dec 14, 2010 | cPanel, Server Administration
Hot on the heals of the vulnerability announced a few days ago, cPanel have reported another vulnerability in Exim. New RPMs with the patched version of Exim are already available. So even if you ran /scripts/eximup or /scripts/upcp a few days ago, you’ll have...
by Hamish Oscar Lawrence | Dec 10, 2010 | cPanel, Server Administration
On 8th December Sergey Kononenko, discovered a vulnerability in the Exim mail server, that could allow hackers to gain control of the host server. Though initially thought to effect only packages for Debian, it appears to be present in all versions. Exim is the...