CSF update 5.30


Status
Not open for further replies.

idstudio

Apprentice 1.0
5.30 - Fixed a SECURITY BUG that can be exploited remotely via log file spoofing resulting in root privilege escalation. Our thanks to Jeff Petersen for reporting this issue All csf users should upgrade to this release immediately
 

idstudio

Apprentice 1.0
Ini email dari mereka :

Security Bugs in CXS and CSF
Dear ConfigServer eXploit Scanner Customer,

Due to exceptional circumstances we have taken the decision to email all customers of our cxs application. We will only take this step in such circumstances and would not normally send emails to our customers.

We have recently discovered several security vulnerabilities in the cxs quarantine procedure and would like to encourage everybody to upgrade to the latest version of cxs immediately. You can do this via the WHM interface (Upgrade button will appear at the bottom of the page) or by running the following command at the root shell:

cxs -U

More information about new cxs releases can be found here: http://blog.configserver.com/

We would strongly recommend that you subscribe to the blog via RSS to ensure you remain informed about any updates to cxs.

If you also have the csf firewall installed on your server, you should also upgrade immediately to the latest version of that application which was also found to have a security vulnerability. This can also be done from the WHM interface or at the root shell with the following command:

csf -u

If you have received this email in error, please accept our apologies and reply to this mailing and we will remove you from any future contact.

Regards, Sarah Michaelson
 
Last edited:

Wien Dk

Apprentice 1.0
oh iya kemarin coba update, klo di vps ada sedikit error di IPtable, sudah di coba beberapa vps jg sama, namun di dedi gak masalah.. :)
ada yg bisa menambahkan?
 
Status
Not open for further replies.

Top