Never knew this.
@sparek how would I identify if a new release contained a security update?
You just have to read the changelog or find the thread on these forums that talk about any new DirectAdmin release.
Of note:
Hi everyone! We are happy to announce the release of DirectAdmin v1.63.5. This release includes a new ClamAV scan feature, native auto-update support, series of security fixes and a lot of smaller improvements. Release Change log can can be found here: DirectAdmin 1.63.5 The update should be...
forum.directadmin.com
This was when 1.63.5 was released that fixed a lot of security issues, but if you were on stable you were left stuck with 1.63.3 which did not get the security fixes. (There's a lot of other discussion about this in that thread)
This is what soured me on using stable - seemed to have missed the point that it was meaning to cover.
Personally, for me, I prefer to keep a system as stable as possible and avoid having to deal with changes with updates. We run production servers, with customers that pay us. We also customize a lot of stuff on our servers. So there is an investment in time and resources of having to rearrange those customizations every time a new control panel version is released. And most of our users couldn't care less if the text and icons are shiny.
The problem with all of these "hotfixes" is that we may spend hours and other resources making sure the recent update didn't break any of our customizations. Then a new hotfix is released so we have to repeat that. Then another hotfix, repeat... hotfix, repeat... So we just wait a week or so for the "current" channel to stabilize and then update.
It's things like this that really give me pause as to where DirectAdmin stands in the hierarchy of control panels. To me, it still has the feel of being a control panel for web hosting hobbyists and not so much web hosting consumer oriented. If you have one server hosting your own website or a few friends websites - or I suppose even a small web hosting consumer product, then this may not be as big of a deal. If you stay tuned into this forum and can afford to constantly be making tweaks, then the hotfixes and unstable product releases probably don't affect you as much. But if you are running an actual business where tech resources are spread out over many, multiple servers and other systems, then time spent dealing with these changes in DirectAdmin can be costly.
This is not a knock against DirectAdmin or anything. It's certainly an overall solid product. And there's a transparency factor that in some ways makes it easier to customize. Before the other control panel fiasco, I do think DirectAdmin was more of a hobbyists control panel. Then there was an influx of people coming over from that other control panel and the DirectAdmin developers have had to shift from being hobbyist oriented to more consumer oriented and they just haven't gotten all of that ironed out yet.
I don't know what or if there is a real solution to this. The same issue plagues that other control panel as well. Too few people really stress test the beta or pre-production release of the products. Maybe DirectAdmin should consider splitting the product into a hobbyist-grade and a consumer-grade product. With hobbyist-grade getting rapid releases and where those users are constantly finding issues before it gets released into the consume-grade product. Kind of like what RedHat did with Fedora vs. RedHat Enterprise, when they dropped the free RedHat distribution. Fedora was free, but was basically an arm to test systems before they got put into the licensed RedHat Enterprise. (Not sure if this still holds true now since IBM bought RedHat and Fedora, RHEL, and CentOS all fit under one umbrella now)
.
