Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 23rd April 2010, 12:29
hairydog2 hairydog2 is offline
Senior Member
 
Join Date: Oct 2005
Posts: 196
Thanks: 9
Thanked 3 Times in 2 Posts
Default New ISPConfig 2 version coming?

There hasn't been a new version released since last year, but there has been at least one ISPConfig 3 release since then.

Is ISPConfig 2 still being updated? I'd really like to get the system up to date, particularly as PCI compliance checks are highlighting out-of-date software versions.

Iain
Reply With Quote
Sponsored Links
  #2  
Old 24th April 2010, 23:14
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,704
Thanks: 819
Thanked 5,321 Times in 4,174 Posts
Default

Quote:
Is ISPConfig 2 still being updated?
Yes. A mature and stable software like ispconfig 2 does not need that many updates as a new software then ispconfig 3, so it makes just no sense that you compare the release cycles.

There will be updates available until we announce the end of the updates. So please do not ask every few months until when we release updates.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 24th April 2010, 23:42
hairydog2 hairydog2 is offline
Senior Member
 
Join Date: Oct 2005
Posts: 196
Thanks: 9
Thanked 3 Times in 2 Posts
Default

In that case, my question is a little different.

When I ran a PCI Compliance check against a site hosted on the server, the scan tool (McAfee) said that some to the software is out of date. It mentioned the versions of Apache and PHP as well as some other software. Aptitude update / safe-upgrade does not bring newer versions, and I am left wondering why not.
Reply With Quote
  #4  
Old 24th April 2010, 23:47
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,704
Thanks: 819
Thanked 5,321 Times in 4,174 Posts
Default

Thats really easy to answer and not related to ispconfig at all. The software of your webserver is from debian or Ubuntu, the linux distributions patch software without increasing the version numbers for compatibility reasons. So Tools like McAffee can not work on Linux. Just install all Debian updates and your system is safe.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #5  
Old 25th April 2010, 00:27
hairydog2 hairydog2 is offline
Senior Member
 
Join Date: Oct 2005
Posts: 196
Thanks: 9
Thanked 3 Times in 2 Posts
Default PCI Compliance difficulties

Quote:
Originally Posted by till View Post
Just install all Debian updates and your system is safe.
You know that, and I think that, but how to convince the banks of that? McAfee claims to offer a free PCI scanning service. They seem to think that because the latest apache is 2.2.15, any system running 2.2.9 is at risk.

Without a certificate saying that the system is PCI compliant, the banks make things very difficult for online merchants. After all, they may lose thousands of millions of pounds and need helping out by the taxpayers - oh, no, that's the banks!

Seriously, I do believe that my system is secure and up-to-date, but I want to make sure I'm on solid ground before arguing with the bankers.
Reply With Quote
  #6  
Old 25th April 2010, 09:42
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,704
Thanks: 819
Thanked 5,321 Times in 4,174 Posts
 
Default

Please see here:

http://www.ducea.com/2006/06/16/apac...-x-powered-by/

to disable version information in PHP and then add the following directives in the apache httpd.conf file:

Code:
ServerSignature Off
ServerTokens Prod
to disable version information there too.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
The Following User Says Thank You to till For This Useful Post:
hairydog2 (25th April 2010)
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Loads of mysql connections to dbispconfig StrikerNL General 2 5th March 2009 14:31
ISPconfig install error - "PHP Binary coming with ISPConfig does not work ..." mleblanc Server Operation 5 24th June 2008 17:40
ISPConfig 2.3.2-dev released till General 9 4th June 2007 10:46
ISPConfig install error: The PHP binary coming with ISPConfig does not work... mlanglois Installation/Configuration 9 13th July 2006 14:56
Problems installing NForce4 sound drivers Wraithfire Installation/Configuration 21 16th April 2006 17:30


All times are GMT +2. The time now is 04:46.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.