KernelCare free patch > Unknown kernel

I updated to EA4 and in the Security Advisor says:

Code:

(x) Kernel does not support the prevention of symlink ownership attacks.
(!) The system cannot update the kernel: Cannot update this system’s kernel.

So I followed the instructions on how to instal KernelCare

curl -s https://repo.cloudlinux.com/kernelcare/kernelcare_install.sh | bash

What happened:

==========================================================
 Package          Arch         Version         Repository                  Size
==========================================================
Installing:
 kernelcare       x86_64       2.14-4          /kernelcare-latest-6       217 k

Transaction Summary
==========================================================
Install       1 Package(s)

Total size: 217 k
Installed size: 217 k
Downloading Packages:
Running rpm_check_debug
Running Transaction Test
Transaction Test Succeeded
Running Transaction
  Installing : kernelcare-2.14-4.x86_64                                     1/1
pyOpenSSL module is not found. To be able to validate SSL certificates of hosts with SNI support please, install pyOpenSSL >= 0.13
Unknown Kernel (CentOS 2.6.18-028stab118.1)
  Verifying  : kernelcare-2.14-4.x86_64                                     1/1

Installed:
  kernelcare.x86_64 0:2.14-4

Complete!

As you can see I get the "Unknown Kernel" line.
And just in case I ran: kcarectl --set-patch-type extra

And gave me the same "Unknown Kernel" line.

What should I do? Explain me like a child, because I have little to no experience with command line, I always use WHM. Thank you.

 

So...what would be the suggestion?

 

In the Security Advisor I have this message too:

Apache vhosts are not segmented or chroot()ed.Enable “Jail Apache” in the “Tweak Settings” area, and change users to jailshell in the “Manage Shell Access” area. Consider a more robust solution by using “CageFS on CloudLinux”

I go to Tweak Settings and I have all my clients accounts configured with Disabled Shell, I only have the main account (mine) with Normal Shell. Would this configuration help with the symlink issue?

 

Ok, I did that and still got the same warning and a new one:

(x) Kernel does not support the prevention of symlink ownership attacks.You do not appear to have any symlink protection enabled through a properly patched kernel on this server, which provides additional protections beyond those solutions employed in userland. Please review the documentation to learn how to apply this protection.

(!) Apache Symlink Protection: the Bluehost provided Apache patch is in effectIt appears that the Bluehost provided Apache patch is being used to provide symlink protection. This is less than optimal. Please review Symlink Race Condition Protection.

Thank you!