Blogroll: CloudLinux

I read blogs, as well as write one. The 'blogroll' on this site reproduces some posts from some of the people I enjoy reading. There are currently 93 posts from the blog 'CloudLinux.'

Disclaimer: Reproducing an article here need not necessarily imply agreement or endorsement!

Subscribe to CloudLinux feed
All blog entries from https://www.cloudlinux.com/
Updated: 36 min 15 sec ago

Issues caused by the latest Imunify360 3.7.3 Beta update

4 hours 39 min ago

We’ve received reports that our latest Imunify360 3.7.3 Beta update can cause issues on sites running WordPress. We’ve evaluated the issues and are investigating the cause to prevent it happening in future releases.

Accept our apologies and, please do not update to the latest Imunify360 3.7.3 Beta until we post additional information on the cause of this issue.

Categories: Technology

Imunify360 3.7.3 Beta is here

Thu, 18/10/2018 - 19:41

We are pleased to announce that a new updated Imunify360 Beta version 3.7.3 is now available.

Tasks

  • DEF-6097: updated Proactive Defense plugin to version 0.5-6.

To install the new Imunify360 Beta version 3.7.3 please follow the instructions in the documentation.

The upgrading is available since Imunify360 version 2.0-19.

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall --enablerepo=imunify360-testing

To upgrade Imunify360 on Ubuntu systems, rut the command:

apt-get update apt-get install --only-upgrade imunify360-firewall

More information on Imunify360 can be found here.

Categories: Technology

Alt-PHP updated

Thu, 18/10/2018 - 18:48

New updated Alt-PHP packages are now available for download from our production repository.

Changelog:

alt-php71-7.1.23-1

  • ALTPHP-581: updated alt-php71 to version 7.1.23. Please find the detailed changelog here.

alt-php72-7.2.11-1

  • ALTPHP-581: updated alt-php72 to version 7.2.11. Please find the detailed changelog here.

Update command:

yum groupupdate alt-php
Categories: Technology

Beta: LVE Manager updated

Thu, 18/10/2018 - 17:45

A new updated LVE Manager package is now available for download from our updates-testing repository.

Changelog:

lvemanager 4.0-25.15

  • WEB-1183: fixed empty domain while creating a new Node.js application in cPanel plugin.

To update run:

yum update lvemanager --enablerepo=cloudlinux-updates-testing
Categories: Technology

Don't let one bad apple spoil the whole box, Part 2 now published

Thu, 18/10/2018 - 16:36

Web hosters running multi-site servers are a favourite target for today’s economy-minded hacker who uses one weak site to gain access to a whole box of others on the same server.

In this Part 1 of his article “Avoid Multi-site Hacking”, the new lead of Imunify360, Greg Zemskov, explains exactly what the threat is and how to mitigate it, covering the specific risks of PHP-based CMSes, the distinction between technical and organization protection strategies, and the benefits of site isolation.

In this Part 2, Greg consolidates the two distinctions, giving concrete tips for improving multi-site server security, and laying out the real-world consequences of not following them.

Read Part 1 | Read Part 2

 

Categories: Technology

Beta: CloudLinux 7 and CloudLinux 6 Hybrid kernel updated

Thu, 18/10/2018 - 16:34

CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.24.2 is now available for download from our updates-testing repository.

Changelog:

  • Datacycle: disabled by default;
  • CLKRN-365: fixed protected hardlinks issue.

To update a kernel, please use the following command.

CloudLinux 7:

yum install kernel-3.10.0-962.3.2.lve1.5.24.2.el7 --enablerepo=cloudlinux-updates-testing

CloudLinux 6 Hybrid:

yum install kernel-3.10.0-962.3.2.lve1.5.24.2.el6h --enablerepo=cloudlinux-hybrid-testing
Categories: Technology

Beta: EasyApache 4 updated

Wed, 17/10/2018 - 15:06

New updated EasyApache 4 packages are now available for download from our updates-testing repository.

Changelog:

ea-php71

  • Version 7.1.23;
  • EA-7904: updated EasyApache 4 PHP to version 7.1.

ea-php72

  • Version 7.2.11;
  • EA-7908: updated EasyApache 4 PHP to version 7.2.

Update command:

yum update ea-php7* --enablerepo=cl-ea4-testing
Categories: Technology

Imunify360 3.6.6 is here

Wed, 17/10/2018 - 10:43

We are pleased to announce that a new updated Imunify360 version 3.6.6 is now available. This latest version embodies further improvements of the product as well as bugfixes.

Tasks

  • DEF-6162: AI-BOLIT vulnerabilities are now marked as suspicious.

Fixes

  • DEF-6170: blacklisted IP is no longer put into Gray List by sensor alert.;
  • DEF-6205: do not fail if /etc/virtual/domainowners has wrong UTF-8 data;
  • DEF-6220: fixed CLNError() is not JSON serializable;
  • DEF-6221: fixed SEND_ADDITIONAL_DATA.enable label in settings in UI.

To install the new Imunify360 version 3.6.6 please follow the instructions in the documentation.

The upgrading is available since Imunify360 version 2.0-19.

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall

To upgrade Imunify360 on Ubuntu systems, rut the command:

apt-get update apt-get install --only-upgrade imunify360-firewall

More information on Imunify360 can be found here.

Categories: Technology

LVE-Stats 2 updated

Tue, 16/10/2018 - 16:28

Our team has released a fix for the security vulnerability discovered by Patrick William from Rack911 Lab. It is available from our production repository and is recommended for the update.

Changelog:

lve-stats-2.9-4.2

  • LVES-923: fixed lve-stats .lock vulnerability.

To install run:

yum install lve-stats

To update run:

yum update lve-stats

To downgrade:

yum downgrade lve-stats
Categories: Technology

Imunify360 3.7.2 Beta is here

Tue, 16/10/2018 - 16:15

We are pleased to announce that a new updated Imunify360 Beta version 3.7.2 is now available. This latest version embodies further improvements of the product as well as bugfixes.

Tasks

  • DEF-6162: AI-BOLIT vulnerabilities are now marked as suspicious.

Fixes

  • DEF-6170: blacklisted IP is no longer put into Gray List by sensor alert;
  • DEF-6205: do not fail if /etc/virtual/domainowners has wrong UTF-8 data;
  • DEF-6221: fixed SEND_ADDITIONAL_DATA.enable label in settings in UI.

To install the new Imunify360 version 3.7.2 please follow the instructions in the documentation.

The upgrading is available since Imunify360 version 2.0-19.

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall --enablerepo=imunify360-testing

To upgrade Imunify360 on Ubuntu systems, rut the command:

apt-get update apt-get install --only-upgrade imunify360-firewall

More information on Imunify360 can be found here.

Categories: Technology

Beta: LVE Manager updated

Tue, 16/10/2018 - 15:49

A new updated LVE Manager package is now available for download from our updates-testing repository.

Changelog:

lvemanager-4.0-25.14

  • LVEMAN-1334: don't set 0,0 limits to package users if the package has no limits during synchronization.

Release Notes:

  • A new option cl_quota_limits_autosync is added for the config file /etc/sysconfig/cloudlinux.
    To disable automatic quotas synchronization set cl_quota_limits_autosync=no. Please find details in cl-quota documentation.

To update run:

yum update lvemanager --enablerepo=cloudlinux-updates-testing
Categories: Technology

Beta: MySQL for MySQL Governor updated

Tue, 16/10/2018 - 14:23

A new updated MySQL 5.7 package for MySQL Governor is now available for download from our updates-testing repository.

Changelog:

cl-MySQL 5.7.23-2

  • MYSQLG-284: changed LVE patch.

To update MySQL 5.7 run:

# yum update cl-MySQL-meta-client cl-MySQL-meta-devel cl-MySQL-meta cl-MySQL* --enablerepo=cloudlinux-updates-testing # service mysql restart # service db_governor restart

To install MySQL 5.7.23-2 on a new server run:

# yum install governor-mysql # /usr/share/lve/dbgovernor/mysqlgovernor.py --mysql-version=mysql57 # /usr/share/lve/dbgovernor/mysqlgovernor.py --install-beta
Categories: Technology

Beta: Alt-PHP updated

Tue, 16/10/2018 - 11:20

New updated Alt-PHP packages are now available for download from our updates-testing repository.

Changelog:

alt-php71-7.1.23-1

  • ALTPHP-581: updated alt-php71 to version 7.1.23. Please find the detailed changelog here.

alt-php72-7.2.11-1

  • ALTPHP-581: updated alt-php72 to version 7.2.11. Please find the detailed changelog here.

Update command:

yum groupupdate alt-php --enablerepo=cloudlinux-updates-testing
Categories: Technology

Alt-Ruby updated

Tue, 16/10/2018 - 08:50

New updated Alt-Ruby packages are now available for download from our production repository.

Changelog:

alt-ruby18-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby18/lib64/ruby/gems/1.8/gems/ruby-lsapi-4.4/lib folder.

alt-ruby20-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby20/lib64/ruby/gems/2.0.0/gems/ruby-lsapi-4.4/lib folder.

alt-ruby21-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby21/lib64/ruby/gems/2.1.0/gems/ruby-lsapi-4.4/lib folder.

alt-ruby22-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby22/lib64/ruby/gems/2.2.0/gems/ruby-lsapi-4.4/lib folder.

alt-ruby23-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby23/lib64/ruby/gems/2.3.0/gems/ruby-lsapi-4.4/lib folder.

alt-ruby24-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby24/lib64/ruby/gems/2.4.0/gems/ruby-lsapi-4.4/lib folder.

alt-ruby25-rubygem-lsapi-4.4-2

  • ALR-114: fixed permissions to /opt/alt/ruby25/lib64/ruby/gems/2.5.0/gems/ruby-lsapi-4.4/lib folder.

Update command:

yum update alt-ruby*-rubygem-lsapi
Categories: Technology

EasyApache 4 updated

Tue, 16/10/2018 - 08:35

New updated EasyApache 4 packages are now available for download from our production repository.

Changelog:

ea-libcurl-7.61.1-1.cloudlinux

ea-ruby24-rubygem-passenger-5.3.4-1.cloudlinux

  • EA-7381: updated up to version 5.3.4.

ea-apache24-2.4.35-1.cloudlinux

  • EA-7871: updated to version 2.4.35;
  • removed Patch500: 0017-Apply-mod_ratelimit-fix-from-trunk.patch as it was implemented upstream.

ea-apache24-config-1.0-137.cloudlinux

  • EA-7373: fixed ServerAdmin in the template.

ea-apache24-mod_cpanel-1.5-1.cloudlinux

  • EA-7386: warning is eliminated when suspended account directory does not exist.

ea-apache24-mod_ruid2-0.9.8-16.cloudlinux

  • EA-6667: Apache vhost tweak is now disabled upon uninstall.

Update command:

yum update ea-libcurl ea-ruby24-rubygem-passenger ea-apache24 ea-apache24-config ea-apache24-mod_cpanel ea-apache24-mod_ruid2
Categories: Technology

Don't let one bad apple spoil the whole box

Fri, 12/10/2018 - 16:36

Web hosters running multi-site servers are a favourite target for today’s economy-minded hacker who uses one weak site to gain access to a whole box of others on the same server.

In this Part 1 of his article “Avoid Multi-site Hacking”, the new lead of Imunify360, Greg Zemskov, explains exactly what the threat is and how to mitigate it, covering the specific risks of PHP-based CMSes, the distinction between technical and organization protection strategies, and the benefits of site isolation.

Read the Part 1 here

In the upcoming Part 2, Greg will consolidate the two distinctions, giving concrete tips for improving multi-site server security, and laying out the real-world consequences of not following them.

Categories: Technology

CloudLinux Statistics — Now in Production

Thu, 11/10/2018 - 15:17

Today, we are releasing LVE Manager, lve-stats, lve-utils, and alt-python27-cllib packages to Production. As well as bug fixes (see changelog below) and additional improvements to the product, we’re adding a major feature announced earlier — CloudLinux Statistics.

We respect all laws and regulations, so, statistics collection does not fall under the GDPR. Please see our EULAs, website Terms of Use and Privacy Policy.
You can find a complete list of metrics collected by CloudLinux here. We’d love to know what you think about it — you can send any feedback regarding CloudLinux Statistics or the GDPR to This email address is being protected from spambots. You need JavaScript enabled to view it. document.getElementById('cloakdbb6f6ec645ab08da2e288dbf15c6225').innerHTML = ''; var prefix = 'ma' + 'il' + 'to'; var path = 'hr' + 'ef' + '='; var addydbb6f6ec645ab08da2e288dbf15c6225 = 'gdpr-questions' + '@'; addydbb6f6ec645ab08da2e288dbf15c6225 = addydbb6f6ec645ab08da2e288dbf15c6225 + 'cloudlinux' + '.' + 'com'; var addy_textdbb6f6ec645ab08da2e288dbf15c6225 = 'gdpr-questions' + '@' + 'cloudlinux' + '.' + 'com';document.getElementById('cloakdbb6f6ec645ab08da2e288dbf15c6225').innerHTML += ''+addy_textdbb6f6ec645ab08da2e288dbf15c6225+'<\/a>'; .

These statistics are the first step towards the CloudLinux Dashboard, a new feature coming soon. In the CloudLinux Dashboard, we will combine all statistics into one useful and effective dashboard, to simplify and facilitate administrators’ life, because “Who owns the information, rules the world”. Indeed!

If you do not want to share data at all, you as an administrator can deactivate the collection of CloudLinux usage statistics. Please find detailed opt-out instructions here.

To update, run the following command in a console:

yum update lvemanager lve-utils lve-stats alt-python27-cllib

Changelog:

lve-utils 3.0-21.15

  • LU-910, LU-907, LU-904, LU-858, LU-868, LU-881, LU-861, LU-879, LU-887, LU-886, LU-883, LU-857, LU-862, LU-893, LU-924, LU-926, LU-942, LU-935, LU-955: tasks related to statistics collection implementation;
  • LU-758: reseller with active limits but without custom config file for a notifier now inherits options from admin's config correctly;
  • removed unneeded CageFS build requirements;
  • LU-864: added mailman to clsupergid group and configured proc_super_gid option for cPanel servers;
  • LU-954: fixed setup_supergids error while cldeploy execution on CentOS6;
  • LU-934: added an ability for administrator to switch CloudLinux usage statistics on/off. Please find the detailed instructions here.

lvemanager 4.0-25.12

  • LVEMAN-1364, LU-862, LU-866, LU-867, LU-883, LU-922: tasks related to statistics collection implementation;
  • WEB-996: options Notify Customers and Notify Reseller's customers are now independent.

alt-python27-cllib 1.4-14.1

  • LU-863: statistics collection implementation;
  • LU-866: added drop_privileges context manager to allow drop privileges temporarily;
  • PTCLLIB-131: removed get_governor_version error messages from stdout;
  • LU-853: made an exclude for /var/cpanel/users/system.

lve-stats 2.9-4.1

  • LU-879, LU-863, LU-868: tasks related to statistics collection implementation;
  • LVES-814: added sorting by field when doing by fault;
  • LVES-892: created the documentation for the cloudlinux-statistics and cloudlinux-top utilities;
  • PTCLLIB-119: when MySQL Governor config is malformed, human-readable exception is displayed;
  • LVES-901: added an ability to generate MySQL Governor statistic in script "generate_lvestats2db.py" (refactored, added dbgov support);
  • LVES-899: fixed false resources exceeded alerts;
  • LVES-902: investigated and fixed an issue when reseller $PID exists in /proc/lve/resellers, but is absent in ve.cfg;
  • moved mail_helper from lve-stats 2 to python-cllib;
  • LVES-904: lveinfo now displays reseller history of its LVEs;
  • LVES-896: added support for html user_notify template in statsnotifier;
  • LVES-909: fixed queries for MySQL Governor database statistics when working with central database for multiple servers;
  • LVES-869: fixed missing values validation in statsnotifier config;
  • LVES-887: fixed issues for stats-notifier when the actual behavior doesn't match its settings;
  • LVES-880: fixed an issue with Username = N/A for a Reseller with disabled Reseller Limits feature on the Statistics tab;
  • LVES-885: hide DirectAdmin admin accounts in cloudlinux-top|statistics;
  • LVES-891: fixed the parsing details info from the LiteSpeed;
  • LVES-867: fixed the warnings from sqlalchemy (part-2);
  • LVES-754: fixed a stats2 and LiteSpeed issue + memory leak;
  • LVES-870: changed the service loading order on Cloud Linux 6: start after MySQL;
  • LVES-879: optimized tests;
  • LVES-874: improved prospector rules. Iteration #5;
  • LVES-859: admin no longer gets notifications about reseller_with_limits_on's users;
  • LVES-851: rewrote service restart method using lock files;
  • LVES-750: fixed a service crash in the case of LiteSpeed bad config.

Additional Release Notes

Modified default statsnotifier settings for Resellers depending on Hoster’s settings:

  • Notify Hoster — has no effect on Resellers;
  • Notify Reseller — corresponds with Resellers’ options Notify Customers and Notify me when I hit my limits;
  • Notify Customers — has no effect on Resellers, affects only Hoster’s users;
  • Notify Reseller's customers — corresponds with Resellers’ option Notify Customers.
Categories: Technology

Beta: CloudLinux 7 and CloudLinux 6 Hybrid kernel updated

Thu, 11/10/2018 - 14:29

CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.24.1 is now available for download from our updates-testing repository.

Changelog:

  • x86/CPU/bugs: fixed reporting PTI mitigation to userspace;
  • KMODLVE-205: created 'immutable' cgroups for UBC to prevent kernel crash on cgroup removal.

To update a kernel, please use the following command.

CloudLinux 7:

yum install kernel-3.10.0-962.3.2.lve1.5.24.1.el7 --enablerepo=cloudlinux-updates-testing

CloudLinux 6 Hybrid:

yum install kernel-3.10.0-962.3.2.lve1.5.24.1.el6h --enablerepo=cloudlinux-hybrid-testing
Categories: Technology

Imunify360 3.6.5 is here

Thu, 11/10/2018 - 14:12

We are pleased to announce that a new updated Imunify360 version 3.6.5 is now available. This is a bugfix release.

Tasks

  • DEF-6101: all incidents coming from ModSecurity are filtered now; saved only our own ruleset incidents;
  • DEF-5962: prepared a new release for Plesk Marketplace.

Fixes

  • DEF-6095: if there are immutable files in /var/log/imunify360 folder, the agent shows an error on start.

To install the new Imunify360 version 3.6.5 please follow the instructions in the documentation.

The upgrading is available starting with Imunify360 version 2.0-19.

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall

To upgrade Imunify360 on Ubuntu systems, rut the command:

apt-get update apt-get install --only-upgrade imunify360-firewall

More information on Imunify360 can be found here.

Categories: Technology

New in Imunify360 Beta: One-click automatic malware cleanup

Wed, 10/10/2018 - 13:11

Today we are releasing the latest beta version of Imunify360. Along with other features mentioned here, it comes with a major new addition: one-click automatic malware cleanup functionality.

We are leveraging the power of our recent acquisition, Revisium’s market-leading malware scanning engine, to find and automatically fix malware-infected files. Now you can rid your websites of infections with a single click.
This is an indispensable feature, especially for servers with many websites, because it eliminates the headaches usually associated with manual cleanups and customer support issues.

And don’t forget that Imunify360’s six-layer security stops almost all attacks. Its new Proactive Defense feature is supremely effective at stopping PHP-based attacks, performing real-time script analysis and providing the ultimate solution against new, zero-day malware.

When all other security defenses fail, when your servers are already infected, Imunify360’s new cleanup feature gives you a fast an easy to rid your systems of malware, and protect them against future re-infection or hacking attempts.

For now, please try out the beta version (here is how) —we’d love to know what you think. You can send any feedback to us at This email address is being protected from spambots. You need JavaScript enabled to view it. document.getElementById('cloak7f17daddbc8929fbca3d361852cb642c').innerHTML = ''; var prefix = 'ma' + 'il' + 'to'; var path = 'hr' + 'ef' + '='; var addy7f17daddbc8929fbca3d361852cb642c = 'feedback' + '@'; addy7f17daddbc8929fbca3d361852cb642c = addy7f17daddbc8929fbca3d361852cb642c + 'imunify360' + '.' + 'com'; var addy_text7f17daddbc8929fbca3d361852cb642c = 'feedback' + '@' + 'imunify360' + '.' + 'com';document.getElementById('cloak7f17daddbc8929fbca3d361852cb642c').innerHTML += ''+addy_text7f17daddbc8929fbca3d361852cb642c+'<\/a>'; .

P.S. We’ll be releasing a stable version in the next few weeks.

 

Categories: Technology

Pages

Additional Terms