update

Had the below email from Woocommerce last night: We’re reaching out to let you know that a critical vulnerability was identified in WooCommerce (versions 3.3 to 5.5) and the WooCommerce Blocks feature plugin (versions 2.5 to 5.5). What actions should I take with my store? Stores hosted on...

CentOS 7.9 is now available, so there will be a lot of updates available going from 7.8 to 7.9 All my managed customers will see these updates being applied, and may get alerts from LFD stating multiple packages have failed their MD5 comparison checks. This is to be expected.

In order to continue to improve the services I offer, and provide additional layer of security to your sites, I'm testing Imunify360 on CP2 https://www.imunify360.com/imunify360 This provides several additional layers of security: If this goes well over the next 30 days, I will be rolling...

Hi All, PHP7.4 is now available on the shared hosting servers. You need to ensure your site is capable of running this version (such as the latest version of XenForo / Worpdress), however, you can easy choose this now from within cPanel and the MultiPHP Manager

https://community.centminmod.com/threads/nginx-1-17-3-security-update-for-http-2-vulnerabilities.18157/ I've kicked off the updates for all my managed customers who are using centminmod to upgrade nginx to 1.17.3

Thanks to easiii for the heads up phpMyAdmin Releases Critical Software Update — Patch Your Sites Now! If you are running phpmyadmin on your servers, please ensure you update you local install.

Litespeed have released a new version yesterday, which updates the QUIC spec to 43 that the latest Chrome builds support again. So any sites running via HTTPS from cp1.mattwservices.uk will now work via QUIC on Chrome. The update also bring in support for TLS1.3 I've tested one of the...

After the issues last night with Cloudflare, I've been working on a new DNS setup for the shared hosting platform. The current setup is a cluster of 4 VPS servers joined to the shared hosting server, located in 4 different DC's with 4 different VPS providers. This can be slow for DNS...

I've moved this site back to Digital Ocean, so it's now split from the billing software. ipv6 is also enabled and working (my phone with EE used ipv6 and I've tested and it's working correctly). As it's also a new VPS that is running, it's installed with nginx 1.15.0 which is a new release...

There is a new update available for Litespeed, to update to version 5.2 I've not upgraded on the shared hosting servers yet, as I'm waiting for a couple of stable versions to be released prior to rolling it out here. LiteSpeed - LiteSpeed Web Server I'll post an update before I update on here.

I'm going to be away on Holiday Monday 24th April to Friday 28th April, and Friday 2nd June to Saturday 10th June. During this time, no additional work will be accepted or scheduled, and only emergency outages on the shared hosting platform will be worked on.

For my managed customers running Litespeed, I've already upgraded your Litespeed to the new release.

All shared hosting servers have been upgraded to MariaDB 10.1 this morning Currently running supported MySQL version 10.1.19-MariaDB

In the coming week, I'm going to need to start migrating the shared hosting servers over to EasyApache4. The build will be exactly the same (running PHP5.6), however, it will require a small amount of downtime on the servers while it rebuilds, and I get Memcached working again. I'm going to be...

https://blog.sucuri.net/2016/05/imagemagick-remote-command-execution-vulnerability.html As per the thread, last night thanks to the heads up from eva2000 , I've already applied the patch to the policy.xml files for all servers that I manage for people where you have ImageMagick installed. eg...

Yesterday, there was a DDOS on one of the sites hosted on cpanel.mattwservices.uk between 13:45 UTC and 13:47 UTC. This caused MySQL to lock up, as the dynamic content was going to MySQL, and used up all 300 available connections. As a future preventative measure, I've implemented IP address...

Critical glibc Vulnerability Puts All Linux Machines at Risk Where automatic updated aren't applied, I'm manually running a yum update to get the latest patched versions. Once this is done, I need to reboot the servers / VPS to bring the new versions in, as this is used by a LOT of services.

If you are running Wordpress, it's highly recommended you upgrade ASAP as the new release addresses 2 security issues Full details can be found here WordPress 4.4.2 Security Release - Why you need to update immediately - Wordfence

I've renewed the certificate for the cPanel services (SFTP/cPanel/SMTP/EXIM) The new certificate is valid for the next 3 years

OK, so I've rolled out the new theme for the site and now set it to the default selection. I do really like the UI.X theme, but fancied a change, and I've been using an Artodia theme for another of my sites, and really like what you can do with it, and how fast and optimized it seems to be...

Changes with nginx 1.9.6 27 Oct 2015 *) Bugfix: a segmentation fault might occur in a worker process when using HTTP/2. Thanks to Piotr Sikora and Denis Andzakovic. *) Bugfix: the $server_protocol variable was empty when using HTTP/2. *) Bugfix: backend SSL connections in the stream module...

All, IPV6 has been enabled on all the shared hosting accounts. You all have an unique IPV6 address assigned to your site, and I've set up a reverse DNS entry for each of them.

Elasticsearch 1.7.0 | Elastic Just upgraded my versions to it.

XenForo 1.5.0 Beta 2 is now available to all customers with active licenses. This release primarily focuses on fixing bugs, conflicts, and usability issues discovered since the release of XenForo 1.5.0 Beta 1. We recommend that all customers running a previous 1.5.0 beta upgrade when possible...

Changes with nginx 1.9.3 14 Jul 2015 *) Change: duplicate "http", "mail", and "stream" blocks are now disallowed. *) Feature: connection limiting in the stream module. *) Feature: data rate limiting in the stream module. *) Bugfix: the "zone" directive inside the "upstream" block did not...

I've just finished updating the site to XenForo 1.5 Beta 1. Any issues with the style, please let me know. I've had to merge a few templates, but it looks good so far.

LiteSpeed Web Server 4.2.24 and 5.0.2 have just been released! Both versions have updated OpenSSL to address CVE-2015-1793. All LSWS users are recommended to upgrade ASAP. New release also improved mod_security engin to work better with OWASP core rule set and improved compatibility with Plesk...

Matt submitted a new Article: Updating WHM/cPanel from the command line Read more about this article here...

Changes with nginx 1.9.2 16 Jun 2015 *) Feature: the "backlog" parameter of the "listen" directives of the mail proxy and stream modules. *) Feature: the "allow" and "deny" directives in the stream module. *) Feature: the "proxy_bind" directive in the stream module. *) Feature: the...

Changes with nginx 1.7.12 07 Apr 2015 *) Feature: now the "tcp_nodelay" directive works with backend SSL connections. *) Feature: now thread pools can be used to read cache file headers. *) Bugfix: in the "proxy_request_buffering" directive. *) Bugfix: a segmentation fault might occur in a...