SSL - Security Hole - POODLE attack
Hello ; A new security hole has been found in the SSL layer. More information can be found here: http://blog.rimuhosting.com/20…-securing-against-poodle/...
View Article[NOT i-MSCP RELATED] PhpMyAdmin vuls (Prior 4.2.12/4.1.14.7/4.0.10.6)
Hello; Our PhpMyAdmin addon has been updated accordingly. See i-MSCP PhpMyAdmin Addon updated to version (4.0.10.6/4.2.12.0)
View ArticleOpenSSL (oh wait, Déjà vu?)
OpenSSL Security Advisory [08 Jan 2015]======================================= DTLS segmentation fault in dtls1_get_record (CVE-2014-3571)===========================================================...
View Articleglibc GHOST vulnerability
I think this can be interesting for some "admins":http://www.cyberciti.biz/faq/c…fedora-centos-rhel-linux/ GreetsChris
View ArticleOpenSSL - Several vulnerabilities
CVE-2015-0291: [High severity] 19th March 2015 ClientHello sigalgs DoS. If a client connects to an OpenSSL 1.0.2 server and renegotiates with an invalid signature algorithms extension a NULL pointer...
View Article[NOT i-MSCP RELATED] ProFTPD Unauthenticated copying of files via SITE...
For Debian Wheezy is an update available. GreetsChris
View ArticleClik here to view.
Password sent in emails
I just thought of one more senario, let's say you are getting the email with your password in it and someone standing behind you, he can see your password email and possibly username (this is called...
View ArticleSecurity vulnerability in BIND
https://kb.isc.org/article/AA-01272 Patches are available. Please update your system.
View ArticleClik here to view.
Múltiples vulnerabilidades en phpMyAdmin
Fuentehttps://www.incibe.es/security…n_20160623?origen=boletin HTML Múltiples vulnerabilidades en phpMyAdmin Importancia: 5 - Crítica Fecha de publicación: 23/06/2016 Recursos afectados Las...
View ArticleHTTproxy (Drupal+PHP+
To all noobs Please don't try to solve this issue without more thinking. If you don't know what you are doing, stay away... Specially the part about solving that issue by modifying Apache configuration...
View Article[NOT i-MSCP RELATED] ProFTPd 1.3.5 with TLS enable = Slow directory display
First Customers tould us that now the speed is fine after the posted Upgrade. It seems all work fine with I-MSCP after this out of os upgrade.
View ArticleStoring raw passwords in mysql
This is no problem, as the algorithm and salt are saved together with the hash inside the database.
View ArticleRoundcube - Important Security Issue
@fulltilt Your current value smtp.admin.host1.globe.lu is ok too.
View ArticleScary security issue with Intel processor chips
I know old Topic but just to know - the most problems are software side fixed by kernel side. We release in several time all new kernels from kernel.org at http://mirror.ip-projects.de/kernel/ - there...
View ArticlephpMyAdmin 4.7.4 SQL injection vulnerability
phpMyAdmin 5.1.0 is released 2021-02-24 We at the phpMyAdmin project are pleased to publish phpMyAdmin 5.1.0. There are many new features and bug fixes; a few highlights include: Improve virtuality...
View ArticleMariaDB - remote code execution CVE-2021-27928
MariaDB - CVE-2021-27928 stretch (security) upgrade available > 10.1.48-0+deb9u2 https://security-tracker.debian.org/tracker/CVE-2021-27928
View Articlepackages.sury.org - New Signing Key
in step 2 - trying to artiffically implant file with trusted key into apt might not work better use apt-key add: Code wget -c -t0 https://packages.sury.org/php/apt.gpg cat apt.pgp | apt-key add - it...
View ArticleApache Log4j Vulnerability
Good evening,I can confirm that i-MSCP isn't affected in any way by the Log4J CVE.https://cve.mitre.org/cgi-bin/…e.cgi?name=CVE-2021-44228
View Article
