I think there isn't a single DA script which includes a header indicating the license under which these scripts are released. This makes it impossible to re-use things like daemons or utility scripts in other projects.
Could we please either have a general statement that everything is released...
Setting up cert for WWW server...
chown: root: illegal group name
Setting up cert for FTP server...
chown: root: illegal group name
The script should either add exceptions or automatically get the group from a known good source.
Get the code to test locally, but we really, really need DA and Custombuild to let us compile any version of PHP and let customers pick the one they want to use.
Lots of project run very well on 7.0 already and the performance boost is non-negligible...
The path for session.save_path is hardcoded into a PHP ini file, but some of us prefer to use a memcache solution for performance and security reasons, so it would be great if we would specify that path in options.conf or have that ini file in config, so that we can create a customised version...
https://mail-archives.apache.org/mod_mbox/www-announce/201507.mbox/%[email protected]%3E
Apache HTTP Server 2.4.16 is available for download from:
http://httpd.apache.org/download.cgi
This is in custombuild/configure/fpm/conf/php-fpm.conf.55
;php_admin_value[open_basedir] = /tmp:/var/tmp:/var/www/html:/usr/local/php55/lib/php
This is in build
APP_TMP=/var/www/tmp
Apps which need to upload files via PHP will fail if one just uncomments that open_basedir line in...
The current method used by Directadmin to calculate email quota leads to wrong results on compressed filesystems such as ZFS.
A mailbox may contain messages totalling 100MB according to Dovecot which uses the message size to calculate it, but they will only take 60MB of disk space.
I suggest...
MANY SECURITY FIXES
Available from the usual places
4.2.12.0 (2014-11-20)
- bug #4574 Blank/white page when JavaScript disabled
- bug #4577 Multi row actions cause full page reloads
- bug ReferenceError: targeurl is not defined
- bug Incorrect text/icon display in Tracking report
- bug #4404...
4.2.11.0 (2014-10-31)
- bug ReferenceError: Table_onover is not defined
- bug #4552 Incorrect routines display for database due to case insensitive checks
- bug #4259 reCaptcha sound session expired problem
- bug #4557 PHP fatal error, undefined function __()
- bug #4568 Date displayed...
If you're like me, you've made some modifications to disable unwanted features or to patch some apps so that they behave the way you want to. You probably also has lots of custom config files.
Tracking changes in CB is a pain, if not impossible. We learn about new features if we track this...
When trying to install PHP I get
Downloading icu4c-0-src.tgz...
This is because of this
if [ "${OS}" = "FreeBSD" ]; then
if [ ${MAINVER} -ge 10 ]; then
if [ ! -e /usr/local/lib/libicui18n.so ]; then
removeLockfile;
doICU;
fi
else
if [ ! -d /usr/local/icu/lib ]...
I think the template diff idea is great, but it doesn't work properly
http://www.directadmin.com/features.php?id=1669
Only the first 2 links or correct, any link after that is using the 2nd URL.
Description
With a crafted database or table name it is possible to trigger an XSS in SQL debug output when enabled and in server monitor page when viewing and analysing executed queries.
http://www.phpmyadmin.net/home_page/security/PMASA-2014-12.php
http://googleonlinesecurity.blogspot.nl/2014/10/this-poodle-bites-exploiting-ssl-30.html
SSLv3 has to be disabled today from the web server and that's easy enough to do.
Next steps are to get rid of it completely asap.
It's easy to get rid of SSLv3 on FreeBSD, compiling OpenSSL ourselves, not...