KernelCare Blog

CloudLinux CLN downtime Monday, January 22nd, starting at 1:00 am EST
Tags:
cln

CloudLinux CLN downtime Monday, January 22nd, starting at 1:00 am EST

CloudLinux CLN downtime Monday, January 22nd, starting at 1:00 am EST
We will be performing planned CLN hardware upgrade from 1:00 am EST (6:00 am GMT) to 4:00 am EST (9:00 am GMT) on Monday, January 22nd, 2018. During that time you might experience issues with accessing CLN, registering new servers, converting servers to CloudLinux, registering new IP-based licenses using partner API, as well us updating servers. It...
Continue reading
  1562 Hits
  0 Comments
Intel CPU Bug - Meltdown and Spectre - KernelCare and CloudLinux

Intel CPU Bug - Meltdown and Spectre - KernelCare and CloudLinux

Intel CPU Bug - Meltdown and Spectre - KernelCare and CloudLinux
Update [May 29, 2018 12:25am PT] Meltdown fixes for Ubuntu 16.04 are now on test. To deploy them: edit /etc/sysconfig/kcare/kcare.conf Add: PREFIX=test Run: kcarectl --update TAGNAME: update-2018-05-29-test-1 ubuntu-xenial:   CVE-2017-5754: Systems with microprocessors utilizing speculative execution and     indirect branch predictio...
Continue reading
Recent Comments
Igor Seletskiy
sorry, corrected the upgrade instructions.
Thursday, 04 January 2018 23:38
Igor Seletskiy
Do you have it configured for CloudLinux hybrid kernel? https://docs.cloudlinux.com/index.html?hybrid_kernel.html... Read More
Thursday, 04 January 2018 23:33
Igor Seletskiy
Our version (same as redhat) doesn't have any of these dmesg messages. so - pti_enabled is the official way to check a patch appl... Read More
Friday, 05 January 2018 18:30
  84268 Hits
  148 Comments
KernelCare crashes on CloudLinux 7 & CloudLinux 6 Hybrid

KernelCare crashes on CloudLinux 7 & CloudLinux 6 Hybrid

KernelCare crashes on CloudLinux 7 & CloudLinux 6 Hybrid
Updated: Dec 7, 2017, 8AM PT Our previous patch provided the fix of ext4 bug with KernelCare included a bug in unpatch. The bug was triggered by latest patch, and caused some number of servers to crash. The effect of the bug is that servers that use ext4 will crash. If they didn't crash - they will not crash now. Note that the new patch that trigge...
Continue reading
Recent Comments
Inessa Atmachian
Hi Ryan, We expect a solution on our patch server that allows customers with older CloudLinux 7 and CloudLinux 6 Hybrid kernels t... Read More
Friday, 15 December 2017 16:35
Inessa Atmachian
Hi Ryan, Sorry for the delay in replying. We apologize but it is not fixed yet. Currently, the release that should fix this probl... Read More
Thursday, 04 January 2018 10:07
  2340 Hits
  8 Comments
We are making better marketing materials - please help us prioritize with this SURVEY!
Tags:

We are making better marketing materials - please help us prioritize with this SURVEY!

We are making better marketing materials - please help us prioritize with this SURVEY!
We at CloudLinux always try to gather actionable insights from the hosting community and our customers, in order to improve and expand our products, and to deliver better services to you. Today, we’d like to ask you to participate in our marketing survey . We would appreciate feedback from our customers (as well as non-customers). It will help Clou...
Continue reading
  1728 Hits
  0 Comments
Updates for a blog post "The Symlink Protection patchset"

Updates for a blog post "The Symlink Protection patchset"

Updates for a blog post "The Symlink Protection patchset"
Please note that we have updated a blog post The Symlink Protection patchset . We have eliminated errors and implemented changes. Now you can confidently use these instructions to get the patches. We apologize for the inconveniences.
  1114 Hits
  0 Comments
The Symlink Protection patchset is available for free for CentOS 6 & 7, even if you are not running KernelCare
Tags:

The Symlink Protection patchset is available for free for CentOS 6 & 7, even if you are not running KernelCare

The Symlink Protection patchset is available for free for CentOS 6 & 7, even if you are not running KernelCare
A few weeks ago we released the KernelCare "Extra" Patchset with the security fixes and the symlink protection available to all KernelCare customers running CentOS kernels. Today we are pleased to share that you can get the Symlink Protection Patchset for CentOS 6 and 7 at no cost, even if you don’t have licenses of KernelCare. We’ve been discussin...
Continue reading
Recent Comments
Igor Seletskiy
sorry, it should have been: kcarectl --set-patch-type free
Thursday, 05 October 2017 00:49
Igor Seletskiy
I am sorry, I don't know what you mean.
Thursday, 05 October 2017 21:35
Igor Seletskiy
CloudLinux kernel has it built in out of the box / it is not needed on CloudLinux servers.
Friday, 06 October 2017 14:18
  18078 Hits
  106 Comments
Pagely deployed KernelCare to improve server security and reduce downtime

Pagely deployed KernelCare to improve server security and reduce downtime

Pagely deployed KernelCare to improve server security and reduce downtime
REBOOT-BE-GONE WITH KERNELCARE & PAGELY! We are excited to share that Pagely, the enterprise managed WordPress hosting provider, has deployed KernelCare for their WordPress hosted customers. KernelCare keeps Linux servers secure, allowing Pagely to apply the latest security patches to their server's kernel quickly and without the requirement fo...
Continue reading
  1682 Hits
  0 Comments
The KernelCare "Extra" Patchset for CentOS 6 & 7 with symlink protection is here

The KernelCare "Extra" Patchset for CentOS 6 & 7 with symlink protection is here

The KernelCare "Extra" Patchset for CentOS 6 & 7 with symlink protection is here
The KernelCare extra patchset includes all the security fixes from KernelCare for CentOS 6 and CentOS 7, as well as the symlink protection against a symlink race. A symlink race attack is often used against shared hosting servers. It allows a malicious user to serve files that belong to other users by creating a symbolic link to those files. It is ...
Continue reading
Recent Comments
Igor Seletskiy
Make sure you have the latest version of kernelcare. Do yum update kernelcare --> it should help.
Wednesday, 23 August 2017 02:07
Igor Seletskiy
It is only for CentOS. CloudLinux OS doesn't need that patch, as it is already included into native kernel.
Wednesday, 23 August 2017 02:08
Igor Seletskiy
kcarectl --set-patch-type default
Wednesday, 23 August 2017 12:12
  9708 Hits
  17 Comments
New privilege escalation vulnerability found in Linux kernel

New privilege escalation vulnerability found in Linux kernel

New privilege escalation vulnerability found in Linux kernel
A race condition in Linux kernel was disclosed today, August 3rd, 2017 (see CVE-2017-7533 ). It can be exploited to allows an unprivileged local user to gain root access to the server. Currently, there is an existing working exploit allowing privileges escalation for 32 bit kernels. It is unclear whether such exploit exists for 64 bit kernels, but ...
Continue reading
  4476 Hits
  0 Comments
LibCare, a toolset for livepatching of user space software, is now available as Open Source on GitHub
Tags:

LibCare, a toolset for livepatching of user space software, is now available as Open Source on GitHub

LibCare, a toolset for livepatching of user space software, is now available as Open Source on GitHub
I am super thrilled to let you know that we have published a toolset for livepathing of user space software , called LibCare, to GitHub. It is released under the GPL2 license and allows software developers to develop and apply patches to their running software without the need to restart it. Similar to our commercially available KernelCare service,...
Continue reading
  2985 Hits
  1 Comment