Ike.ninja

The post Getting the Best WordPress Hosting Performance Today appeared first on Plesk.

The post Moving from HTTP to HTTPS 2: SSL Certificates and their suitability appeared first on Plesk.

Case 93317 Summary Limited SQL injection vulnerability in LeechProtect. Security Rating cPanel has assigned a Security Level of Minor to this vulnerability. Description The LeechProtect subsystem built into cPanel & WHM systems allows a website owner to disable HTTP logins for accounts that log in from too many distinct IP …

(Jul 7) A buffer overflow has been identified in nginx, a small, powerful, scalable web/proxy server, when processing certain chunked transfer encoding requests if proxy_pass to untrusted upstream HTTP servers is used. An attacker may use this flaw to perform denial of service [More…]

(Jan 8) Yury Dyachenko discovered that Zend Framework uses the PHP XML parser in an insecure way, allowing attackers to open files and trigger HTTP requests, potentially accessing restricted information. [More…]

(Oct 23) gpernot discovered that Tinyproxy, a HTTP proxy, is vulnerable to a denial of service by remote attackers by sending crafted request headers. [More…]

Following bugs have been fixed:
– PHP module disabled after installation vps-optimized template to VPS
– Renaming of FTP user changes location of cgi-bin directory in domain’s config of HTTP server
– Wrong parsing of IMAP folders with spaces in their names during daily maintenance script execution
– ServerAlias directive disappears from domain’s HTTP server config after virtual host re-configuration
– Applications which that cannot be installed in Plesk hides from reseller’s service plans
– The vhost.conf files are not being backed up/restored using the pleskbackup and pleskrestore utilities
– psa-pc-remote crashed with segfault under highload
– /usr/local/psa/admin/sbin/statistics generates SQL error
– Subdomains can’t be restored because of domains limit in license