The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Exim Security Update

Discussion in 'Security' started by srprasad, May 11, 2004.

  1. srprasad

    srprasad Registered

    Joined:
    Mar 4, 2004
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    India
    Hi,

    Iam new to WHM and while i logged in today i could see the
    following Security Msg in the WHM.
    ------
    Security A Security hole has been discovered in the exim mail server, if you are using EDGE or CURRENT, you can update to a new build (9.3.0 build 1 or later) which has a fix by clicking here.
    -------

    My Current build is 9.2.0
    How do i check if iam using EDGE or CURRENT, after i click on the update is there anything i need to do manually.
    Iam asking this to be on the safer side.

    Any help will be appreciated.

    Regards
    Ratna
     
  2. Funkworkz

    Funkworkz Active Member

    Joined:
    Apr 2, 2004
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Wanamingo, MN
    Your current cPanel build is in the upper right corner of WHM. I reccommend upgrading to the latest CURRENT build, I just have.
     
  3. netlook

    netlook Well-Known Member
    PartnerNOC

    Joined:
    Mar 25, 2004
    Messages:
    335
    Likes Received:
    0
    Trophy Points:
    16
    Latest CURRENT - is it stable and safe ? I'm currently running RELASE version, but this red bar makes me affraid :eek:
     
  4. Funkworkz

    Funkworkz Active Member

    Joined:
    Apr 2, 2004
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Wanamingo, MN
    RELEASE will be avaliable soon, according to the Change Log, so I upgraded from STABLE.
     
  5. netdias

    netdias Member

    Joined:
    Dec 13, 2003
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Portugal
    I went for stable too... :D
     
  6. kris1351

    kris1351 Well-Known Member

    Joined:
    Apr 18, 2003
    Messages:
    963
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Lewisville, Tx
    Just did several currents and several edge updates. They seem to be working well, took awhile for the exim to stop showing failed though. About 30 minutes each after restarts. One thing I don't like is there is now Exim, Exim26 and Eximstats in the Service Status.
     
  7. AlexF

    AlexF Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    148
    Likes Received:
    0
    Trophy Points:
    16
    What's with this? Can someone elaborate on this..
     
  8. Jedia

    Jedia Well-Known Member

    Joined:
    Mar 18, 2004
    Messages:
    200
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    CN
    hello, my WHM is
    WHM 9.2.0 cPanel 9.2.0-S29
    FreeBSD 4.8-RELEASE - WHM X v2.1.2
    may i have to upgrade ? :confused:
     
  9. gundamz

    gundamz Well-Known Member

    Joined:
    Mar 27, 2002
    Messages:
    245
    Likes Received:
    0
    Trophy Points:
    16
    If you see the warning sign, you need to upgrade. You should be upgrade to stable as what you had set for your whm settling.
     
  10. gundamz

    gundamz Well-Known Member

    Joined:
    Mar 27, 2002
    Messages:
    245
    Likes Received:
    0
    Trophy Points:
    16
    correction. i don't think cpanel have release a patch for "Stable" version.
     
  11. BeNE.WS

    BeNE.WS Well-Known Member

    Joined:
    May 14, 2003
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Belgium
    That's correct:
    RELEASE and STABLE will have updates for this problem in the near future

    My Question:
    WHEN is 'the near future' ?
     
  12. Snowman30

    Snowman30 Well-Known Member
    PartnerNOC

    Joined:
    Apr 7, 2002
    Messages:
    681
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    DataCenter Provider
    I did an upgrade on all servers and all bar one are ok. I have one that exim just constaly shows as being down even though it appears to be working.

    Did you do anything to make it start working???
     
  13. netlook

    netlook Well-Known Member
    PartnerNOC

    Joined:
    Mar 25, 2004
    Messages:
    335
    Likes Received:
    0
    Trophy Points:
    16
    Yes, WHEN??? NEAR FUTURE = tomorrow, next week, next year... :mad:
     
  14. xprimer

    xprimer Registered

    Joined:
    Mar 1, 2003
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    Does Mailscanner/Clamav needs to be reinstalled after Exim update?:rolleyes:
     
  15. Jedia

    Jedia Well-Known Member

    Joined:
    Mar 18, 2004
    Messages:
    200
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    CN
    i ran /scripts/upcp, but it said i have already running the newest stable ver.
     
  16. Host4u2

    Host4u2 Well-Known Member

    Joined:
    Mar 24, 2002
    Messages:
    248
    Likes Received:
    0
    Trophy Points:
    16
    If you are running the current "Stable" release, WHM 9.2.0 cPanel 9.2.0-S25, then there is no upgrade available yet to close the Exim security hole. You would have to actually downgrade to the EDGE or CURRENT release.

    I also would like "Near Future" more clearly defined. I stick with the Stable Releases, as I do not wish to beta test Cpanel on production servers :)
     
  17. hostultra

    hostultra Well-Known Member

    Joined:
    Aug 21, 2002
    Messages:
    167
    Likes Received:
    0
    Trophy Points:
    16
    Is there no FreeBSD fix for this??
    I upgraded to CURRENT but i still get the warning in WHM

    Is there no mailing list for cpanel security issues?
    I think it would be a good idea to have one.
     
  18. gundamz

    gundamz Well-Known Member

    Joined:
    Mar 27, 2002
    Messages:
    245
    Likes Received:
    0
    Trophy Points:
    16

    Currently, there's no patch for cpanel server that is on the "stable" version. This fix is release to "edge" and "latest" build server
     
  19. hostultra

    hostultra Well-Known Member

    Joined:
    Aug 21, 2002
    Messages:
    167
    Likes Received:
    0
    Trophy Points:
    16
    Yes i know that.
    There is no "latest" its called "current" which is what i installed.
    Installing "current" on my two redhat servers fixed it but not on freebsd.
     
  20. midnightz

    midnightz Active Member

    Joined:
    Apr 25, 2003
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    0
    You can try on Stable and Release, the following in the /scripts

    ./updatenow
    ./exim4

    run from cmd line
     
Loading...

Share This Page