The latest security buzz this month is about the SSLv3 POODLE vulnerability, and how SSL version 3.0 is now officially designated as insecure, joining its predecessors versions 1.0 (unreleased) and 2.0. This effectively concludes the life cycle of the SSL protocol in favor of TLS. This post will give you a brief overview of what POODLE…
Read more
In 2010, we released our first cPanel cheat sheet for version 11.25. Admittedly, we haven’t been keeping up with the times. A lot has changed with cPanel over the last few years and an update is well overdue. Though labeled for version 11.42, the new cheat sheet is verified to be accurate for the following…
Read more
I love waking up in on a nice Saturday morning to find out that one of my servers was rooted. A two-year-old kernel issue in Redhat distributions has surfaced in the form of a nasty exploit byAc1db1tch3z. Basically, a 32-bit binary is compiled and loaded to the server, and when run by any users (even…
Read more
I’m excited to announce that this year I will be speaking at the cPanel conference, so if you haven’t yet registered, make sure you do it soon! The conference will be held in cPanel’s hometown of Houston, TX at the Westin Oaks Hotel between Oct 4-6,2010. My topic specifically will be covering full server automation…
Read more
It was announced by cPanel on April 14, 2010 that cPanel 11.25.1 will include a new database mapping feature that’s been long requested: the removal of cPanel username prefixes from the database names. This is a non-reversible, opt-in feature that some hosts may find very valuable. But is it a feature that you need? Who…
Read more
Cpanel confirmed via email and on their site that SpamAssassin has a bug: “The Quality Assurance team discovered a bug within the SpamAssassin ruleset that will mark messages sent in the year 2010 (that's today) and beyond with a higher spam score than expected. This bug can result in legitimate Girlfriend In A Week mail…
Read more
