CloudLinux - Igor Seletskiy - CloudLinux Blog - Page 49
Bloggers

CloudLinux is on a mission to make Linux secure, stable, and profitable, and Igor Seletskiy is at the helm of this undertaking. He is the CEO and founder of the company, and an innovator responsible for the strategic direction of the company and all products within the CloudLinux brand.

Igor is an accomplished technology guru focusing on Linux, kernel development, and the hosting industry. He is a frequent speaker at industry events, and has a successful track record of more than 15 years of delivering innovative products to market.

PHP updated

PHP updated

PHP updated
New updated PHP packages are available from our production repository.Changelog:CL5:php53-5.3.3-26.el5_11.cloudlinux.1fixed bug #65481 (shutdown segfault due to serialize);fixed bug #70219 (Use after free vulnerability in session deserializer) (CVE-2015-6835) php-5.1.6-45.el5_11.cloudlinux.3fixed bug #45706 (Unserialization of classes derived ...
Continue reading
  694 Hits
  0 Comments

Introducing SecureLinks for Apache

Due to static pages being retrieved by apache user (or nobody, depending on your install) -- it was very hard to protect against.Some hosts used SymLinksIfOwnerMatch directive instead -- but that din't really work, as race condition (when symlink is made to point to hacker's file, and then to good user's file) makes it very simple to exploit.As par...
Continue reading
  3774 Hits
  0 Comments
Beta: CageFS updated
Tags:

Beta: CageFS updated

Beta: CageFS updated
New version of CageFS is available from our updates-testing repository.Changelog:cagefs-5.5-6.9CAG-444: filtered out -C and -D options of sendmail and exim;CAG-414: created wrapper for exim to permit safe parameters only.To update run the command:yum update cagefs --enablerepo=cloudlinux-updates-testing
  342 Hits
  0 Comments
Tags:

CageFS 3 Beta 4

New beta version of CageFS 3 available. New version has following fixes and improvements following issues:Fixes race condition that would cause serving wrong /etc/passwd or /etc/group fileAbility for sendmail to send mail when eximmailtrap is enabledWhite listed user/groups that can see additional users in password and group filesFixed permissions ...
Continue reading
  1756 Hits
  0 Comments
Tags:

Local Privileged Escalation CVE-2012-0056 -- Not Vulnerable

I had multiple people asking when we will release new kernel to fix this vulnerability: http://blog.zx2c4.com/749 .I am happy to say that NONE of our kernels are vulnerable. We have tested, verified and made sure that they are all safe and are not exploitable via that vulnerability
  1866 Hits
  0 Comments
Tags:

CageFS 2.0 second beta

We have made several improvements and bug fixes for CageFS:exim.cfg: removed /var/log/exim_mainlog, /var/log/exim_paniclog, /var/log/exim_rejectlogcpanel.cfg: added templates for "suspended account" pagecpanel.cfg: added symlink /usr/lib/php.ini (fixing the bug of when no php.ini was loaded)cpanel.cfg: added /usr/local/safe-binadded users nobody, m...
Continue reading
  283 Hits
  0 Comments
Beta: MySQL and MariaDB for MySQL Governor updated

Beta: MySQL and MariaDB for MySQL Governor updated

Beta: MySQL and MariaDB for MySQL Governor updated
New cl-MariaDB and MySQL packages for MySQL Governor are available from our updates-testing repository.Changelog:cl-MariaDB101-10.1.18-1added LimitNOFILE=65536 to MySQL service for CloudLinux 7;updated up to 10.1.18.cl-MariaDB100-10.0.27-2added LimitNOFILE=65536 to MySQL service for CloudLinux 7.cl-MariaDB55-5.5.52-2added LimitNOFILE=65536 to MySQL...
Continue reading
  243 Hits
  0 Comments

Using top to pinpoint issues in seconds.

  1107 Hits
  0 Comments

GLIBC GHOST remote vulnerability - CVE-2015-0235

Hello Everyone,There is a new remote vulnerability in glibc under CVE-2015-0235. The bug is in __nss_hostname_digits_dots() function, which is used by the gethostbyname(). It is a buffer overflow vulnerability, that allows attacker to execute arbitrary code.Updated packages had been relesed for CL6 & CL5. Please, make sure to update.Updated CL5 GLI...
Continue reading
Recent Comments
Guest — Tommy K
Is a reboot needed?
Tuesday, 27 January 2015 18:30
Guest — Leith Campbell
How can we confirm the update is installed? One server updated while another said "No Packages marked for Update". ldd --version d... Read More
Tuesday, 27 January 2015 18:56
Guest — Igor Seletskiy
no reboot needed.
Tuesday, 27 January 2015 19:31
  122 Hits
  8 Comments
Tags:

CageFS 3.0 Beta 2

Second version of CageFS 3.0 beta was related. This version:Adds automatic detection for LiteSpeed webserver (stand-alone ony)Fixes caching bug in CageFS-FUSE etcfsImproves stability and performance of CageFS-FUSEFixes various bugs related to mounting/unmounting of filesystemsCorrect handing of umaskTo update:# yum update cagefs cagefs-fuse lve lib...
Continue reading
  1990 Hits
  0 Comments