Blogroll: CloudLinux

I read blogs, as well as write one. The 'blogroll' on this site reproduces some posts from some of the people I enjoy reading. There are currently 65 posts from the blog 'CloudLinux.'

Disclaimer: Reproducing an article here need not necessarily imply agreement or endorsement!

Subscribe to CloudLinux feed
All blog entries from https://www.cloudlinux.com/
Updated: 1 hour 25 min ago

Beta: Alt-PHP updated

Fri, 17/02/2017 - 15:03

The new updated Alt-PHP packages are available from our updates-testing repository.

Changelog:

alt-php70-7.0.16-1

  • (core) 73916: zend_print_flat_zval_r doesn't consider reference;
  • (core) 73876: Crash when exporting **= in expansion of assign op;
  • (core) 73969: segfault in debug_print_backtrace;
  • (core) 73973: assertion error in debug_zval_dump;
  • (dom) 54382: getAttributeNodeNS doesn't get xmlns* attributes;
  • (dtrace) 73965: DTrace reported as enabled when disabled;
  • (fpm) 67583: double fastcgi_end_request on max_children limit;
  • (fpm) 69865: php-fpm does not close stderr when using syslog;
  • (gd) 73968: Premature failing of XBM reading;
  • (gmp) 69993: test for gmp.h needs to test machine includes;
  • (intl) 73956: Link use CC instead of CXX;
  • (ldap) 73933: error/segfault with ldap_mod_replace and opcache;
  • (mysqli) 73949: leak in mysqli_fetch_object;
  • (mysqlnd) 69899: segfault on close() after free_result() with mysqlnd;
  • (opcache) 73983: crash on finish work with phar in cli + opcache;
  • (openssl) 71519: add serial hex to return value array;
  • (pdo_firebird) 72583: All data are fetched as strings;
  • (pdo_pgsql) 73959: lastInsertId fails to throw an exception for wrong sequence name;
  • (phar) 70417: PharData::compress() doesn't close temp file;
  • (posix) 71219: configure script incorrectly checks for ttyname_r;
  • (session) 69582: session not readable by root in CLI;
  • (spl) 73896: spl_autoload() crashes when calls magic _call();
  • (standard) 69442: closing of fd incorrect when PTS enabled;
  • (standard) 47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked";
  • (standard) 72974: imap is undefined service on AIX;
  • (standard) 72979: money_format stores wrong length AIX;
  • (zip) 70103: ZipArchive::addGlob ignores remove_all_path option.

alt-php71-7.1.2-1

  • (core): Improved GENERATOR_CREATE opcode handler;
  • (core) 73877: readlink() returns garbage for UTF-8 paths;
  • (core) 73876: Crash when exporting **= in expansion of assign op;
  • (core) 73962: bug with symlink related to cyrillic directory;
  • (core) 73969: segfault in debug_print_backtrace;
  • (core) 73994: arginfo incorrect for unpack;
  • (core) 73973: assertion error in debug_zval_dump;
  • (dom) 54382: getAttributeNodeNS doesn't get xmlns* attributes;
  • (dtrace) 73965: DTrace reported as enabled when disabled;
  • (fcgi) 73904: php-cgi fails to load -c specified php.ini file;
  • (fcgi) 72898: PHP_FCGI_CHILDREN is not included in phpinfo();
  • (fpm) 69865: php-fpm does not close stderr when using syslog;
  • (gd) 73968: Premature failing of XBM reading;
  • (gmp) 69993: test for gmp.h needs to test machine includes;
  • (hash): Added hash_hkdf() function;
  • (hash) 73961: environmental build dependency in hash sha3 source;
  • (intl): Fix bug #73956 (Link use CC instead of CXX);
  • (ldap) 73933: error/segfault with ldap_mod_replace and opcache;
  • (mysqli) 73949: leak in mysqli_fetch_object;
  • (mysqlnd) 69899: segfault on close() after free_result() with mysqlnd;
  • (opcache) 73983: crash on finish work with phar in cli + opcache;
  • (openssl) 71519: add serial hex to return value array;
  • (openssl) 73692: Compile ext/openssl with openssl 1.1.0 on Win;
  • (openssl) 73978: openssl_decrypt triggers bug in PDO;
  • (pdo_firebird) 72583: All data are fetched as strings;
  • (pdo_pgsql) 73959: lastInsertId fails to throw an exception for wrong sequence name;
  • (phar) 70417: PharData::compress() doesn't close temp file;
  • (posix) 71219: configure script incorrectly checks for ttyname_r;
  • (session) 69582: session not readable by root in CLI;
  • (spl) 73896: spl_autoload() crashes when calls magic _call();
  • (standard) 69442: closing of fd incorrect when PTS enabled;
  • (standard) 47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked";
  • (standard) 72974: imap is undefined service on AIX;
  • (standard) 72979: money_format stores wrong length AIX;
  • (standard) 73374: intval() with base 0 should detect binary;
  • (standard) 69061: mail.log = syslog contains double information;
  • (zip) 70103: ZipArchive::addGlob ignores remove_all_path option.

To install run the command:

yum groupinstall alt-php --enablerepo=cloudlinux-updates-testing

 

Categories: Technology

tuned-profile-cloudlinux updated

Fri, 17/02/2017 - 12:18

The new updated tuned-profiles-cloudlinux-0.1-3.el7 is available from our production repository (for CloudLinux 7 only).

The package contains cloudlinux-default profile which does the following:

  • Changes CPU governor to performance.
  • Applies the following kernel options:
  • vm.force_scan_thresh=100;
  • ubc.dirty_ratio=100;
  • ubc.dirty_background_ratio=75.
  • Detects used disk types and changes elevator to 'deadline' for HDD and to 'noop' for SSD in /sys/block/[blockname]/queue/scheduler.
  • Changes the maximal I/O queue size 1024 with /sys/block/[blockname]/queue/nr_requests.
  • Disables HugePages.
  • Provides adjustment group file for OOM-Killer to kill overrun php, lsphp and Phusion Passenger workers first.

To install and use the cloudlinux-default profile:

yum install tuned-profiles-cloudlinux systemctl enable tuned tuned-adm profile cloudlinux-default

Please find detailed information on tuned-profiles-cloudlinux in our documentation.

Categories: Technology

Imunify360/Imunify Sensor 1.1.2 released

Wed, 15/02/2017 - 11:34

We are pleased to announce that new Imunify360 / Imunify Sensor 1.1.2 is now available. This version includes a collection of important updates including the two features our customers have asked for:

  • We have switched to the usage of Google reCaptcha instead of the standard captcha image. This should drastically improve usability for blocked users while making it harder for bots to bypass.
  • We are now allowing to block IPs by Geolocation. This version adds the ability to block connections from different countries. It is an invaluable feature for customers who know that their servers should not be accessed by particular countries and/or regions.

Additionally, this version includes improvements based on customer requests as well as known bug fixes. Should you encounter any problems with the product, or have any questions, comments, or suggestions, please contact our support team at helpdesk.cloudlinux.com: Imunify360 department. We’d be more than happy to help you.

Improvements

  • DEF-881: Autoclean incidents feature added to the agent in this version. Cleanup process triggering on a certain item number in incidents list.
  • DEF-692: Now available blacklisting by country.
  • WEB-392: Changes in Command line Interface for white/black lists for country add/delete/list actions.
  • DEF-808: Added OSSEC rule for avoiding low priority incidents from Apache SpamAssassin.
  • WEB-290, WEB-351: Added ability to Install/remove Alt-PHP from Imunify360 plugin page.
  • WEB-342, DEF-784: Added ability to Install/remove KernelCare from Imunify360 plugin page.
  • DEF-868: Improved indexes in agent DB.
  • WEB-309: Implemented new page for attribution.

Fixes

  • WEB-385: Fixed page number displaying in Imunify360.
  • WEB-305, WEB-381: Added ability to write a comment when adding an IP to white or black list in UI.
  • DEF-842: Fixed cPanel rule for the successful login.
  • DEF-901: Fixed error when after adding IP to the white/black list, this IP is displayed on "Incidents" tab as the one which wasn't added to any list.
  • DEF-897: Fixed error with Uncategorised arguments --console-log-level.
  • DEF-869: Fixed the issue for lazy_init that should not stop checking firewall rules after iptables error case.
  • DEF-867: Fixed duplicating alerts on Imunify360.
  • DEF-858 ZAE-308-42834: Fixed recovery Imunify360 iptables rules if it is removed by APF firewall.
  • DEF-851, DEF-853: Shows error if a domain is not found.
  • DEF-832: Fixed OperationalError: no such table on PROD.
  • DEF-829: Fixed duplicates in synclist.
  • DEF-821: Fixed ValueError: Cookie value to long.
  • DEF-798: Fixed issue when the agent does not get synclist at the start .
  • DEF-718: Fixed error with message: Name or service not known <...>.
  • DEF-860: Fixed problem when the output from rpm post scripts is lost.
  • DEF-697: Fixed Agent registering problems.
  • WEB-332: Fixed arbitrary command execution for sendRequest.cgi.

To install new Imunify360/Imunify Sensor version 1.1.2 please follow the instructions in the documentation.

To upgrade Imunify360/Imunify Sensor run the command:

yum update imunify360-firewall

More information on Imunify360 can be found here.

Categories: Technology

CloudLinux 7 kernel updated

Tue, 14/02/2017 - 16:33

The new updated CloudLinux 7 kernel (version 3.10.0-427.36.1.lve1.4.37) is available from our production repository.

Changelog since 3.10.0-427.18.2.lve1.4.27:

  • KMODLVE-55: fixed memory leak related to LVE deletion;
  • CLKRN-80: added missing IO PREPARE to limit I/O operations;
  • CLKRN-81: xfs fixes for "no ops on block" error;
  • CLKRN-82: backported fix for the “Kernel panic” problem https://access.redhat.com/solutions/2647381;
  • added ability to ignore root-owned links while checking symlink ownership.

To install new kernel please run the following command:

CloudLinux 7:

yum install kernel-3.10.0-427.36.1.lve1.4.37.el7 kmod-lve-1.4-37.el7

CloudLinux 6 Hybrid:

yum install kernel-3.10.0-427.36.1.lve1.4.37.el6h kmod-lve-1.4-37.el6h
Categories: Technology

Join the fireside chat with Hosting Experts, live on February 22nd, at 11 a.m. EST

Mon, 13/02/2017 - 20:52

Learn about an alternative to VPS that will keep your shared hosting customer happy

Customer growth is a good thing, right? Of course! However, in the world of shared hosting, a growing client may also mean a customer that is gobbling up resources. Under these circumstances, it's not uncommon for a host to migrate this type of customer to their own virtual private environment. But is this always the best solution?

While VPS allows for added resources and greater customization, a customer whose blog has just gone viral may not be equipped or ready to deal with the technicalities or the added costs that go with an unmanaged or managed VPS, respectively.

Luckily, an alternative solution exists and some hosting providers are already taking advantage of it and increasing their margins in the process. Elastic Sites seek to create a remedy for the customers that need more than what’s offered in a traditional shared environment but aren’t quite a fit for VPS hosting.

Join us on February 22, at 11 am EST for an online fireside chat with three of the world’s leading experts on hosting as they discuss Elastic Sites. Learn what can be done to increase revenue, decrease upgrade headaches, and keep customers happy and without investing in new tools. Come with questions or just be a fly on the wall in this casual online affair you won’t want to miss.

Panelists:

  • Wouter de Vries, CEO and Founder of Antagonist
  • Aaron Phillips, Chief Business Officer at cPanel
  • Igor Seletskiy, CEO and Founder of CloudLinux

Moderated by JR Miller, cPanel

RSVP here

If you cannot attend, register anyway, and we'll send you the recording a few days after the event. 

 

Categories: Technology

Beta: LVE Manager, CageFS, alt-python-cllib, lve-utils and lve-stats updated

Mon, 13/02/2017 - 19:39

The new updated LVE Manager, CageFS, alt-python-cllib, lve-utils and lve-stats packages are available for download from our updates-testing repository.`

lvemanager-2.0-11

Release notes:

  • Readable numbers in packages and users.
  • Fixed cursor behavior when editing fields in cPanel users\packages tab.
  • Timer in Current usage tab stops when pending network request.
  • Displaying Inodes column in cPanel Packages tab.
  • Handling Internal server error as a respond for a web request.
  • Does not show selector content if selector unavailable.
  • Fixed encoding crash issue when sorting data in DirectAdmin.
  • Numerous styles improvements for SPA.
  • Added tooltips for SPA.
  • Readable memory and IO usage in History and Statistics tabs.
  • Enabled editing package with no provider.
  • Handling name_modifier parameter in LVE Manager Selector tab.

Changelog:

  • WEB-369: made numbers in packages and users human readable;
  • WEB-366: fixed cursor behavior during fields editing in cPanel users\packages tab;
  • WEB-357: Auto-Update timer stops on pending network request;
  • WEB-368: displaying Inodes column in Packages tab in cPanel;
  • WEB-354: handling Internal server error as a respond for a web request;
  • WEB-350: does not show selector content if selector unavailable;
  • WEB-349: fixed sorting problem in DirectAdmin;
  • WEB-314: styles improvements for SPA;
  • WEB-348: added tooltips for SPA;
  • WEB-356: made memory and IO usage in History and Statistics tabs human readable;
  • WEB-363: fixed an error with editing package without provider;
  • WEB-345: implemented handling of name_modifier parameter in LVE Manager Selector tab.

alt-python27-cllib-1.2-38

Release notes:

  • Parsing /root/.my.cnf file correctly with “quick” option present.
  • Added ability to obtain reseller’s users list.

Changelog:

  • PTCLLIB-80: correct parsing of /root/.my.cnf when "quick" option is present in that file;
  • LVES-645: added new feature “reseller_users” to CPAPI to obtain reseller’s users list.

lve-utils-1.5-41

Release notes:

  • Added ability to save speed limits without percent sign (%).
  • Fixed error with wrong encoding in the package name.
  • Fix for cloudlinux-limits set --save-all-parameters.
  • Displaying Inodes for the default package.
  • cloudlinux-limits: --default and --unlimited options work correctly when disk quota is disabled.
  • Added --human-readable-numbers option to cloudlinux-packages.
  • Added --human-readable-numbers option to cloudlinux-limits.
  • Detecting Atomia CP.
  • Fixed slow work of lvectl paneluserslimits.

Changelog:

  • LU-340: allows to save speed limits without %;
  • LU-337: fixed error with wrong encoding in package name;
  • LU-327: fix for cloudlinux-limits set --save-all-parameters;
  • LU-330: cloudlinux-packages utility shows Inodes for the default package;
  • LU-319: cloudlinux-limits: --default and --unlimited options work correctly when disk quota is disabled;
  • LU-326: added --human-readable-numbers option to cloudlinux-packages;
  • LU-325: added --human-readable-numbers option to cloudlinux-limits;
  • LU-258: implemented detection of Atomia CP;
  • LU-324: fixed slow work of lvectl paneluserslimits.

cagefs-6.0-31

Release notes:

  • Security fix identified by Patrick Williams from Rack911 (more details to be provided later).

Changelog:

  • CAG-659: security fix.

lve-stats-2.5-10

Release notes:

  • Fixed incorrect filtering of users notifications.
  • Fixed SnapshotSaver plugin crash when requested URL is longer than 125 characters while running with LiteSpeed.
  • Fixed LVE-Stats service crash when installing CloudLinux ISO image.

Changelog:

  • LVES-655: fixed NOTIFY_MIN_FAULTS_USER property;
  • LVES-653: fixed SnapshotSaver crash to create URL snapshot more than 125 characters in LiteSpeed;
  • LVES-632: fixed “OperationalError no such column: history.iops” when installing from ISO.

Note. lve-stats-2.5-10 is not available for CloudLinux 5 regarding CL5 ending of support in the near future.

To update run:

yum update cagefs lvemanager lve-utils lve-stats --enablerepo=cloudlinux-updates-testing
Categories: Technology

CageFS updated - security fix

Mon, 13/02/2017 - 18:44

The new updated CageFS package with important security fix is available for download from our production repository.

Changelog:

cagefs-5.5-6.65

  • CAG-659: security fix identified by Patrick Williams from Rack911 (more details will be provided later).

To update run:

yum update cagefs

 

 

Categories: Technology

MySQL Governor updated

Tue, 07/02/2017 - 06:18

The new updated MySQL Governor is available from our production repository.

Changelog:

governor-mysql 1.1-20

  • MYSQLG-152: using default values for "script" parameters in governor's config in case when script="" - governor reports an error and stops working;
  • MYSQLG-149: avoiding httpd checks during "mysqlgovernor.py --dbupdate";
  • MYSQLG-136: added new behavior for MySQL LVE enter for preventing MySQL crash on LVE destroy;
  • MYSQLG-140: fixed spelling error in mysqlgovernor.py script output.

To update:

$ yum update governor-mysql $ service db_governor restart

To install:

$ yum install governor-mysql $ /usr/share/lve/dbgovernor/mysqlgovernor.py --install
Categories: Technology

Beta: MySQL Governor updated

Tue, 07/02/2017 - 06:13

The new updated MySQL Governor is available for download from our updates-testing repository.

Changelog:

governor-mysql 1.2-14

  • MYSQLG-152: using default values for "script" parameters in governor's config in case when script="" - governor reports an error and stops working;
  • fixed invalid rpmdb checksum in MySQL packages installation.

To update:

$ yum update governor-mysql --enablerepo=cloudlinux-updates-testing $ service db_governor restart

To install:

$ yum install governor-mysql --enablerepo=cloudlinux-updates-testing $ /usr/share/lve/dbgovernor/mysqlgovernor.py --install
Categories: Technology

Beta: mod_lsapi updated

Mon, 06/02/2017 - 16:54

The new updated mod_lsapi version 1.1-3 for CloudLinux 7 is available for download from our updates-testing repository.

mod_lsapi 1.1-3

Changelog:

  • MODLS-344: fixed an issue when Plesk 17.0.17 did not read /usr/local/psa/admin/conf/templates/custom/domain/domainVirtualHost.php;
  • MODLS-311: fixed an issue when the first start of lsphp after reboot took a lot of time (about 7 seconds longer than suphp) (CL7 only);
  • MODLS-339: made global flag for signaling of removing all images for CRIU;
  • MODLS-345: added creation of dump on lsphp stopping;
  • MODLS-359: etc/container/php.handler updates properly;
  • MODLS-364: mod_lsapi with CRIU creates CRIU images in directory which is set by lsapi_criu_imgs_dir_path option.

New features:

1. Global reset flag for cleaning all earlier saved images by CRIU.

Current release allows cleaning all images only with one flag file.

Just create /usr/share/criu/mod_lsapi/lsphp.criu.reset file. Also don't forget to set such permissions [nobody:nobody] (or [apache:apache] for non cPanel) and access mode [700] to the /usr/share/criu/mod_lsapi directory.

On the next requests to all virtual hosts images will be recreated (deleted first and created again later - it depends on lsapi_backend_initial_start value).

Steps to do :

mkdir /usr/share/criu; mkdir /usr/share/criu/mod_lsapi; chown nobody:nobody /usr/share/criu/mod_lsapi; touch /usr/share/criu/mod_lsapi/lsphp.criu.reset

2. Added option to the Apache configuration for cleaning all the images earlier saved by CRIU.

This option allows cleaning all CRIU images on Apache restart.

It can be enabled by writing "lsapi_reset_criu_on_apache_restart On" in lsapi.conf (virtual host and htaccess not allowed to use this option).

Note that this option works only if lsapi_terminate_backends_on_exit is On (default value is On, it is set in lsapi.conf too).

On the next restart of Apache all of the images will be cleaned.

3. If you need to clean CRIU images for one user you can simply add "mod_lsapi_reset_me" file to the user's directory with CRIU images (default /var/run/mod_lsapi/lsapi_ * _criu_imgs). On the next restart of lsphp the images will be cleaned.

Note that CRIU can not correctly freeze lsphp with PrivateTmp enabled. For correct work, PrivateTmp should be false in httpd.service file. For example:

# cat httpd.service

[Unit]

Description=Apache web server managed by cPanel EasyApache

ConditionPathExists=!/etc/httpddisable

ConditionPathExists=!/etc/apachedisable

ConditionPathExists=!/etc/httpdisable

 

[Service]

Type=forking

ExecStart=/usr/local/cpanel/scripts/restartsrv_httpd --no-verbose

PIDFile=/var/run/apache2/httpd.pid

PrivateTmp=false

 

[Install]

WantedBy=multi-user.target

 

How to install (cPanel EA3, EA4 and RPM based systems only):

Control panels and configuration that currently support mod_lsapi+CRIU:

  1. RPM based panels (Plesk or clean OS) + alt-php56 or alt-php70

  2. cPanel EasyApache 3 + alt-php56 or alt-php70

  3. cPanel EasyApache 4 + alt-php56 or alt-php70 or ea-php56 or ea-php70

  4. DirectAdmin + alt-php56 or alt-php70

Required Alt-PHP or ea-php versions:

[alt-php56-5.6.30-2+]

[alt-php70-7.0.15-2+]

[ea-php56-php-5.6.30-1.cloudlinux.2+]

[ea-php70-php-7.0.15-1.cloudlinux.2+]

To update alt-php with freezing support (non cPanel and DirectAdmin):

yum groupupdate alt-php --enablerepo=cloudlinux-updates-testing

To install alt-php with freezing support:

yum groupinstall alt-php --enablerepo=cloudlinux-updates-testing

To update ea-php (EasyApache 4) with freezing support:

yum-config-manager --enable cl-ea4-testing yum update ea-php* --enablerepo=cloudlinux-updates-testing yum-config-manager --disable cl-ea4-testing

To install ea-php (EasyApache 4) with freezing support:

yum-config-manager --enable cl-ea4-testing

Install via web-interface or

yum install ea-php* --enablerepo=cloudlinux-updates-testing yum-config-manager --disable cl-ea4-testing

mod_lsapi installation and update:

cPanel EasyApache 3 & RPM Based:

$ yum update liblsapi liblsapi-devel --enablerepo=cloudlinux-updates-testing $ yum update mod_lsapi --enablerepo=cloudlinux-updates-testing $ service httpd restart $ systemctl restart criu

Installation for EasyApache 4:

To update:

$ yum update ea-apache24-mod_lsapi liblsapi liblsapi-devel --enablerepo=cloudlinux-updates-testing --enablerepo=cl-ea4-testing $ service httpd restart $ systemctl restart criu

To install:

yum-config-manager --enable cl-ea4-testing yum update liblsapi liblsapi-devel --enablerepo=cloudlinux-updates-testing

read http://docs.cloudlinux.com/index.html?cpanel_easyapache_4.html

yum-config-manager --disable cl-ea4-testing $ systemctl restart criu

Directadmin:

$ yum update liblsapi liblsapi-devel --enablerepo=cloudlinux-updates-testing $ cd /usr/local/directadmin/custombuild $ ./build set cloudlinux_beta yes $ ./build update $ ./build mod_lsapi $ service httpd restart $ systemctl restart criu

CRIU activating:

systemctl enable criu systemctl start criu

Add to /etc/apache2/conf.d/lsapi.conf or /usr/local/apache/conf/lsapi.conf or /etc/httpd/conf.d/lsapi.conf such strings:

lsapi_criu On lsapi_criu_socket_path /var/run/criu/criu_service.socket lsapi_backend_semtimedwait On lsapi_backend_initial_start 15 lsapi_criu_use_shm Off

And restart Apache.

Categories: Technology

LVE Manager, CageFS, liblve and lve-utils updated

Mon, 06/02/2017 - 16:16

The new updated LVE Manager, CageFS, liblve and lve-utils packages are available from our production repository.

lvemanager-1.0-9.72

Release notes:

  • Complete erasure of all lvemanager_spa data when downgrading to the old LVE Manager version 1.0.
  • Enabled getting LVE statistics via cPanel API.

Changelog:

  • WEB-358: erasing lvemanager_spa when downgrading to previous 1.0 version;
  • LVEMAN-1043: fixed issue with getting LVEinfo via cPanel API.

cagefs-5.5-6.64

Release notes:

  • Fixed BoxTrapper functionality for CageFS.
  • Created /etc/apache2/logs/domlogs symlink inside CageFS.
  • Fixed executing of cagefsctl --create-virt-mp username and cagefsctl --remount-virtmp commands.

Changelog:

  • CAG-649: adjusted CageFS configs to fix BoxTrapper functionality;
  • CAG-644: created /etc/apache2/logs/domlogs symlink inside CageFS;
  • CAG-642: fixed error when executing cagefsctl --create-virt-mp username/cagefsctl --remount-virt-mp username commands.

liblve-1.4-1.15

Release notes:

  • Made CageFS compatible with new restricted procfs feature.

Changelog:

  • CAG-652: made CageFS compatible with new restricted procfs feature.

lve-utils-1.5-2.35

Release notes:

  • Detecting Atomia correctly.

Changelog:

  • LU-258: implemented detection of Atomia CP.

To update run:

yum update cagefs lvemanager lve-utils

 

Categories: Technology

Beta: New CloudLinux 7 kernel released

Mon, 06/02/2017 - 14:39

The new updated CloudLinux 7 kernel (version 3.10.0-427.36.1.lve1.4.37) with the fix for “Kernel panic” issue is available from our updates-testing repository.

Changelog since 3.10.0-427.36.1.lve1.4.35:

  • CLKRN-82: backported fix for the “Kernel panic” issue;
  • added ability to ignore root-owned links while checking symlink ownership.

To install new kernel please run the following command:

yum install kernel-3.10.0-427.36.1.lve1.4.37.el7 kmod-lve-1.4-37.el7 --enablerepo=cloudlinux-updates-testing
Categories: Technology

Beta: PHP for EasyApache 4 updated

Mon, 06/02/2017 - 08:15

The new updated PHP packages for EasyApache 4 are available from EA4 beta repository.

Changelog:

ea-php52-php-5.2.17-7.cloudlinux

ea-php53-php-5.3.29-9.cloudlinux

ea-php54-php-5.4.45-25.cloudlinux.3

ea-php55-php-5.5.38-8.cloudlinux.3

ea-php71-php-7.1.1-1.cloudlinux.1

  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

ea-php56-php-5.6.30-1.cloudlinux.2

  • suppressed warnings about deprecated $HTTP_RAW_POST_DATA;
  • updated CRIU patch to version 7;
  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

ea-php70-php-7.0.15-1.cloudlinux.2

  • updated CRIU patch to version 7;
  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

To upgrade run the command:

yum upgrade ea-php* --enablerepo=cl-ea4-testing
Categories: Technology

Beta: Alt-PHP updated

Mon, 06/02/2017 - 08:07

The new updated Alt-PHP packages are available from our updates-testing repository.

Changelog:

alt-php44-4.4.9-59

alt-php51-5.1.6-68

alt-php52-5.2.17-95

alt-php53-5.3.29-44

alt-php54-5.4.45-28

alt-php55-5.5.38-10

alt-php71-7.1.1-2

  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

alt-php56-5.6.30-2

  • fixed always_populate_raw_post_data;
  • updated CRIU patch to version 7.
  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

alt-php70-7.0.15-2

  • updated CRIU patch to version 7.
  • ALTPHP-306: LSPHP: returning response code and response status line in cgi/fcgi manner.

To install run the command:

yum groupinstall alt-php --enablerepo=cloudlinux-updates-testing

 

Categories: Technology

HardenedPHP for EasyApache 4 updated

Thu, 02/02/2017 - 15:43

The new updated HardenedPHP packages for EasyApache are available for download from the production repository.

Changelog:

ea-php55-5.5.38-8.cloudlinux.2

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

ea-php54-5.4.45-25.cloudlinux.2

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

ea-php53-5.3.29-5.3.29-8.cloudlinux

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

To upgrade run the command:

yum upgrade ea-php*
Categories: Technology

HardenedPHP updated

Thu, 02/02/2017 - 15:35

The new updated HardenedPHP packages are available for download from our production repository.

alt-php55-5.5.38-9

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php54-5.4.45-27

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php53-5.3.29-43

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php52-5.2.17-94

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php51-5.1.6-67

  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php44-4.4.9-58

  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

To install run the command:

yum groupinstall alt-php
Categories: Technology

Live Webinar: Manage CloudLinux OS faster and easier with LVE Manager’s new UI

Thu, 02/02/2017 - 00:47

Tuesday, February 7th at 1:00 p.m. EST, 10 a.m. PST

Join Igor Seletskiy, our CEO, to see the new LVE Manager User Interface. The new interface unifies control over all parts of CloudLinux OS functionality into one place and makes it easy and convenient for administrators to manage it.

You will also learn how to:

  • View and filter users and their usage making it easier for you to identify upsell opportunities and/or ‘abusers’;
  • Change CloudLinux settings;
  • Manage MySQL Governor directly from the Admin UI;
  • Notify customers when they use too many resources.

As always, Q&A session will follow the presentation.

Register here.

If you cannot attend live, register anyway, and we’ll send you the recording a few days after the event.

Categories: Technology

Beta: Alt-PHP updated

Wed, 01/02/2017 - 12:20

The new updated Alt-PHP packages are available for download from our updates-testing repository.

Changelog:

alt-php44-ioncube-loader-6.0.9-1

alt-php51-ioncube-loader-6.0.9-1

alt-php52-ioncube-loader-6.0.9-1

alt-php53-ioncube-loader-6.0.9-1

alt-php54-ioncube-loader-6.0.9-1

alt-php55-ioncube-loader-6.0.9-1

alt-php56-ioncube-loader-6.0.9-1

alt-php70-ioncube-loader-6.0.9-1

  • updated to 6.0.9: fixes an issue for PHP 7.0 where an "Unsupported constant expression" error occured rather than the correct execution of the script.

alt-php54-pecl-ext-1-105

  • mongodb updated from 1.1.9 to 1.2.4;
  • imagick updated from 3.4.3RC1 to 3.4.3RC4;
  • libsodium 1.0.6 extension added.

alt-php55-pecl-ext-1-89

  • mongodb updated from 1.1.9 to 1.2.4;
  • imagick updated from 3.4.3RC1 to 3.4.3RC4;
  • libsodium 1.0.6 extension added.

alt-php56-pecl-ext-1-55

  • mongodb updated from 1.1.9 to 1.2.4;
  • imagick updated from 3.4.3RC1 to 3.4.3RC4;
  • libsodium 1.0.6 extension added.

alt-php70-pecl-ext-1-20

  • mongodb updated from 1.1.9 to 1.2.4;
  • apcu updated from 5.1.7 to 5.1.8;
  • imagick updated from 3.4.3RC1 to 3.4.3RC4.
  • libsodium 1.0.6 extension added.

alt-php71-pecl-ext-1-6

  • mongodb updated from 1.1.9 to 1.2.4;
  • apcu updated from 5.1.7 to 5.1.8;
  • imagick updated from 3.4.3RC1 to 3.4.3RC4;
  • libsodium 1.0.6 extension added.

To install run the command:

yum groupinstall alt-php --enablerepo=cloudlinux-updates-testing

 

Categories: Technology

The new CloudLinux and Imunify360 Forums have arrived

Tue, 31/01/2017 - 19:01

We are excited to announce the updated CloudLinux Forum 2.0 with the new Imunify360 section, just in time to get the conversation started! If you haven’t visited our forums for a while, check it out. This is the place for you to ask questions and get responses from the community as well as the CloudLinux team.

There, you can navigate to the new Imunify360 forum, where you can start conversations about our new Imunify360 and Imunify Sensor betas. The direct link is here: cloudlinux.com/forum/imunify360-imunifysensor.

You can visit our product forums at cloudlinux.com/forum.

Categories: Technology

CloudLinux 5 kernel support is ending on March 31st, 2017

Tue, 31/01/2017 - 18:55

The support for CloudLinux 5 kernel Production Phase is ending on March 31st, 2017. From now on and until the end of March, we will only release security-related fixes for this kernel. This end-of-life for CloudLinux 5 coincides with RHEL 5 end of support.

We encourage you to upgrade from CloudLinux 5 as soon as you can. There is no in-place upgrade procedure - we recommend setting up a new server with CloudLinux 7 and moving customers to the new server. CloudLinux 7 ships all old versions of PHP to make the transition easier.

If you have any questions, please contact our helpdesk.

Categories: Technology

Pages