"Official" VHCS 2.4.8 security update?

[karlmikaze]

Quote:Please, post your script and a few lines of discription in this forum.
Maybe this could be integrated/modified into/for ispCP.

Ok. As soon as our developer who's working on the script is back, we'll do some slight cleanup in the script (take out all our specific stuff, the hardcoded passwords, replace them by variables/maybe read from a config file, etc.), put it up in our external svn repos and post the URL here. Or even better in a new thread

Quote:Interesting! Maybe we can use it also for ispCP after some changes ?

It will need some tweaking to be 100% compatible with ispCP's directory layout etc. without any manual post-processing - but that's what it's capable of doing for VHCS, already. At least on debian etch, at the moment.

I'll keep you updated.

Cheers
Chris

---

Here's a final info in order to get this thread closed:
I got feedback from Moll New Media (thank you!). The current 2.4.8 update is a collection of former fixes and updates in a new "one package that contains all known bugfixes up to date".

In short:
2.4.8 does not include a fix for a new security issue, but several functional bugfixes and the fix for the old "admin intrusion" problem that was already fixed in version 2.4.7.1. So, 2.4.7.1 is as secure as 2.4.8, but lacks some other bugfixes.

hth
Chris