Search results

Is Plesk 8 even vulnerable to this issue? As far as I can tell, it isn't. Plesk 8 did not offer the option of running php as a fastcgi, so there is no cgi_wrapper on Plesk 8 to begin with, and no trace of "cgi_wrapper" in the suexec binary. Additionally; have the Plesk update servers not...

Please let us know where we can download the source code for the Parallels version of suexec that was included in Plesk 8. As Jan pointed out, Parallels is legally bound by the apache license to publish this information.

This error can occur if /tmp fills up since even when using rsync to migrate, Plesk stupidly doesn't check how large /tmp is before deciding to extract tar files there; such as database dumps. You may need to temporarily unmount /tmp and use the root filesystem to give it enough space to complete.

You tell me what it is, it worked for at least eight months and was given to me by someone from Parallels; so I guess it's just another instance of Parallels giving out one thing that's "right" at the time and then telling me I'm wrong later on when I actually expect the information I was given...

Why wasn't a notice of this update being made available sent to customers via email, posted on the release notes for updates page (http://download1.parallels.com/Plesk/PP11/parallels-plesk-panel-11-linux-updates-release-notes.html), posted on the RSS feed which is now seven months out of date...

The advisory was released four days ago, and Parallels notified six days ago, and still no update? http://www.kb.cert.org/vuls/id/310500 and anyone know if this affects earlier versions as well?

Starting just a few days ago, Plesk 11 migrating sites from Plesk 8 has begun generating errors changing subscription owners, the same as what's described in this Plesk 10 thread from a year ago: http://forum.parallels.com/showthread.php?245946-10-4-4-Fatal-Error-Changing-subscription-owners...

That's all over the place, I just surveyed, but we do have a big block of servers that show it having changed in the March 11th to 14th span. That sounds about when the problems began. Bunch more on 21st to 23rd, which makes me think those are the ones that have taken on #48. Catting the...

No, that's not what occurred. A week or so ago, all of our 10.4.4 servers sent out a notice that "Plesk was successfully updated" during their nightly check-in, the following morning we began getting support tickets about php sessions failing. The ownership on /var/lib/php/session/ changed...

Can someone from Parallels clarify what was included in Micro Update #48? http://download1.parallels.com/Plesk/PP10/parallels-plesk-panel-10-linux-updates-release-notes.html#104448 Parallels Plesk Panel 10.4.4 MU #48 [21-Mar-2013] [-] Upgrade php component breaks permissions on php...

I'd recommend moving to Postfix. We've been using qmail for more than a decade and it's really starting to show its age. You're unfortunately going to lose the contents of your mail queue but other than that, the autoinstaller actually makes it very easy to do the switch between the two if...

Thanks; that's basically what I ended up doing. I'm guessing since the kb article didn't exist until 12 hours ago this is a known (now) bug.

Server is completely up to date, trying to use autoinstaller produces this: 5 packages excluded due to repository priority protections Attempt to remove 'plesk-mail-qc-driver' to resolve conflict has succeeded No package matched to remove...

The command that was given includes the full path; you'd run it as root while logged into the server via SSH. Keep in mind that it has the limitations I pointed out previously; it is only going to be useful if your customers are set to have a shell of 'Forbidden' and is completely useless if...

Is there a log somewhere within the psa directory structure, or in mysql, on why Plesk would be restarting Apache? We have a server where Apache keeps gracefully restarting, and something is telling it to do that, so it can only be Plesk but we have no idea why it might be doing that.

It appears that two and a half years later this has not been fixed. Current Plesk 11 installs do not add the permit_sasl_authenticated to the smtpd_client_restrictions line at all, so a customer who is on a blacklist at their remote location cannot send outbound messages even if they have the...

Good tip Faris, thanks. So yes, it seems this is a bug in Plesk's generation of the main.cf file. Here is the default (with the two RBL's we chose to use added via the web interface): smtpd_client_restrictions = permit_mynetworks, reject_rbl_client bl.spamcop.net, reject_rbl_client...

How can I remove the facebook code from the left menu area of the panel? I consider it a privacy issue forcing my browser to make facebook aware of every time I access a hosting control panel, and a security issue. Putting it there makes absolutely no sense to me considering Plesk 11 is...

We've found we need the following to get it to pass security scans: SSLProtocol all -SSLv2 SSLHonorCipherOrder On SSLCipherSuite RC4-SHA:HIGH:!ADH:!DH:!MD5:!aNULL:!eNULL:!SSLv2:!LOW

In Plesk 10 on CentOS using Apache, the SSL cipher configuration was set in /etc/httpd/conf.d/ssl.conf via the SSLProtocol and SSLCipherSuite directives. In Plesk 11 on CentOS with Apache, that entire section of the config file is commented out. I can't find anything related to ciphers in the...