1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

rkhunter - security warnings FC2 Plesk8

Discussion in 'Plesk for Linux - 8.x and Older' started by aernative, May 20, 2006.

  1. aernative

    aernative Guest

    0
     
    System - FC2 - Plesk 8

    First off i ran the scanner and got warnings about alow root login and some packages being out of date or un patched.

    So far i have got round the root login warning by switching to SSH2 only and switching the permit root to "no" then adding a user for SSH out of the root group using RSH keys to login... that seems to satisfy the scanner...

    I am still stuck on how to deal with the following application version warnings -

    * Application version scan
    - GnuPG 1.2.4 [ Old or patched version ]
    - Apache 2.0.51 [ Old or patched version ]
    - Bind DNS 9.2.3 [ OK ]
    - OpenSSL 0.9.7a [ Old or patched version ]
    - PHP 4.3.10 [ Old or patched version ]
    - Procmail MTA 3.22 [ OK ]
    - ProFTPd 1.2.10 [ OK ]
    - OpenSSH 3.6.1p2 [ Old or patched version ]

    I have seen posts about the "atomic" packages, however I am not sure what is the best practice to sort this scenero out - do i need to update to FC3/4 (or even 5 now...).
     
  2. poke

    poke Guest

    0
     
Loading...