1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

question about security and how to make sure apache etc is up to date

Discussion in 'Plesk for Linux - 8.x and Older' started by ppc, Dec 24, 2006.

  1. ppc

    ppc Guest

    0
     
    I have been reading all over of all kinds of security vulnerabilities with everything from apache to proftp.

    Does the Plesk Updater update Plesk with all of the updates for apache, php etc. ?

    If not, how do I make sure that i'm running the latest versions of everything? Is there a way that its automatic?

    Would a new version of apache for example, conflict with plesk?

    Thanks for your help.

    ppc123
     
  2. ppc

    ppc Guest

    0
     
    anyone?

    Any help is greatly appreciated.

    thanks

    ppc123
     
  3. blank_page

    blank_page Regular Pleskian

    24
    53%
    Joined:
    Dec 17, 2006
    Messages:
    229
    Likes Received:
    0
    Hello,

    You can run:

    yum update

    from a konsole for example.

    Then you need to check if everything is ok. (in the upgrade process anything can go wrong or nothing, so you can proceed at your own risk.)

    You can approach the upgrade differently:

    Check the packages that you think that are vulnerable and update only those.

    Plesk renews only its own packages.
     
  4. breun

    breun Golden Pleskian

    29
     
    Joined:
    Jun 28, 2005
    Messages:
    1,647
    Likes Received:
    0
    Plesk Updater will not update components like apache, PHP and your kernel. You'll need to run your distribution's package manager to keep your system completely up to date. What OS are you running?
     
  5. ppc

    ppc Guest

    0
     
    I'm using linux centos.

    How does one make sure that an update wont conflict with plesk.
     
  6. atomicturtle

    atomicturtle Golden Pleskian

    29
     
    Joined:
    Nov 20, 2002
    Messages:
    2,110
    Likes Received:
    7
    Location:
    Washington, DC
    There should never be any legitimate conflicts, if it does then contact sw-soft for support since that is a bug. PSA was intended to rely on the the vendor for updates wherever possible.
     
  7. ppc

    ppc Guest

    0
     
    So how should I update php, apache etc?
     
  8. atomicturtle

    atomicturtle Golden Pleskian

    29
     
    Joined:
    Nov 20, 2002
    Messages:
    2,110
    Likes Received:
    7
    Location:
    Washington, DC
    "yum update" or "up2date -u"
     
  9. breun

    breun Golden Pleskian

    29
     
    Joined:
    Jun 28, 2005
    Messages:
    1,647
    Likes Received:
    0
  10. ppc

    ppc Guest

    0
     
    k thnx. Just ran up2date. It think it worked fine though at the end it said this:

    The following Packages were marked to be skipped by your configuration:

    Name Version Rel Reason
    -------------------------------------------------------------------------------
    kernel 2.6.9 42.0.3.ELPkg name/pattern
    kernel-smp 2.6.9 42.0.3.ELPkg name/pattern

    what does that mean?


    Also, breun(or anyone else), is there a reason i should use YUM instead of up2date?
     
  11. ppc

    ppc Guest

    0
     
    anyone?
     
  12. breun

    breun Golden Pleskian

    29
     
    Joined:
    Jun 28, 2005
    Messages:
    1,647
    Likes Received:
    0
    yum is the 'default' CentOS software manager, so I'd use that, but either should do the job.

    And to your question what that means: well, it literally says those kernel packages were skipped because up2date is configured that way. There's probably some kind of exclude statement for kernels in your config. You can always change that behavior of course.
     
Loading...