CloudLinux - Igor Seletskiy - CloudLinux Blog - Page 49
Bloggers

CloudLinux is on a mission to make Linux secure, stable, and profitable, and Igor Seletskiy is at the helm of this undertaking. He is the CEO and founder of the company, and an innovator responsible for the strategic direction of the company and all products within the CloudLinux brand.

Igor is an accomplished technology guru focusing on Linux, kernel development, and the hosting industry. He is a frequent speaker at industry events, and has a successful track record of more than 15 years of delivering innovative products to market.

Introducing SecureLinks for Apache

Due to static pages being retrieved by apache user (or nobody , depending on your install) -- it was very hard to protect against. Some hosts used SymLinksIfOwnerMatch directive instead -- but that din't really work, as race condition (when symlink is made to point to hacker's file, and then to good user's file) makes it very simple to exploit. As ...
Continue reading
  2808 Hits
  0 Comments
Beta: CageFS updated
Tags:

Beta: CageFS updated

Beta: CageFS updated
New version of CageFS is available from our updates-testing repository. Changelog: cagefs-5.5-6.9 CAG-444: filtered out -C and -D options of sendmail and exim; CAG-414: created wrapper for exim to permit safe parameters only. To update run the command: yum update cagefs --enablerepo=cloudlinux-updates-testing
  342 Hits
  0 Comments
Tags:

CageFS 3 Beta 4

New beta version of CageFS 3 available. New version has following fixes and improvements following issues: Fixes race condition that would cause serving wrong /etc/passwd or /etc/group file Ability for sendmail to send mail when eximmailtrap is enabled White listed user/groups that can see additional users in password and group files Fixed permissi...
Continue reading
  1247 Hits
  0 Comments
Tags:

Local Privileged Escalation CVE-2012-0056 -- Not Vulnerable

I had multiple people asking when we will release new kernel to fix this vulnerability: http://blog.zx2c4.com/749 .I am happy to say that NONE of our kernels are vulnerable. We have tested, verified and made sure that they are all safe and are not exploitable via that vulnerability
  1444 Hits
  0 Comments
Tags:

CageFS 2.0 second beta

We have made several improvements and bug fixes for CageFS: exim.cfg: removed /var/log/exim_mainlog, /var/log/exim_paniclog, /var/log/exim_rejectlog cpanel.cfg: added templates for "suspended account" page cpanel.cfg: added symlink /usr/lib/php.ini (fixing the bug of when no php.ini was loaded) cpanel.cfg: added /usr/local/safe-bin added users nobo...
Continue reading
  283 Hits
  0 Comments
Beta: MySQL and MariaDB for MySQL Governor updated

Beta: MySQL and MariaDB for MySQL Governor updated

Beta: MySQL and MariaDB for MySQL Governor updated
New cl-MariaDB and MySQL packages for MySQL Governor are available from our updates-testing repository. Changelog: cl-MariaDB101-10.1.18-1 added LimitNOFILE=65536 to MySQL service for CloudLinux 7; updated up to 10.1.18. cl-MariaDB100-10.0.27-2 added LimitNOFILE=65536 to MySQL service for CloudLinux 7. cl-MariaDB55-5.5.52-2 added LimitNOFILE=65536 ...
Continue reading
  243 Hits
  0 Comments

Using top to pinpoint issues in seconds.

  785 Hits
  0 Comments

GLIBC GHOST remote vulnerability - CVE-2015-0235

Hello Everyone, There is a new remote vulnerability in glibc under CVE-2015-0235. The bug is in __nss_hostname_digits_dots() function, which is used by the gethostbyname(). It is a buffer overflow vulnerability, that allows attacker to execute arbitrary code. Updated packages had been relesed for CL6 & CL5. Please, make sure to update. Updated CL5 ...
Continue reading
  122 Hits
  8 Comments
Tags:

CageFS 3.0 Beta 2

Second version of CageFS 3.0 beta was related. This version: Adds automatic detection for LiteSpeed webserver (stand-alone ony) Fixes caching bug in CageFS-FUSE etcfs Improves stability and performance of CageFS-FUSE Fixes various bugs related to mounting/unmounting of filesystems Correct handing of umask To update: # yum update cagefs cagefs-fuse ...
Continue reading
  1353 Hits
  0 Comments
Beta: CageFS updated
Tags:

Beta: CageFS updated

Beta: CageFS updated
New updated version of CageFS is available from our updates-testing repository. cagefs-5.5-6.33 Release notes: Added /usr/local/cpanel/var read-write mount to enable /usr/local/cpanel/bin/process_ssl_pending_queue command functioning inside CageFS. Changelog: CAG-560: added /usr/local/cpanel/var read-write mount to CageFS. To update run the command...
Continue reading
  244 Hits
  1 Comment