Security Advisor says there are EasyApache updates?

NestMan

Active Member
May 10, 2016
25
0
1
Utah
cPanel Access Level
Root Administrator
However, when I click on the link it shows that I have 3.34.0, which is the most recent version. Why is the Security Advisor not smart enough to know that I'm already up-to-date?

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
However, when I click on the link it shows that I have 3.34.0, which is the most recent version. Why is the Security Advisor not smart enough to know that I'm already up-to-date?
Hello,

To clarify, have you initiated a new build of Apache/PHP through EasyApache 3.34.0 since that version was made available?

Note for anyone interested, here's the relevant code from Security Advisor that's generating the "EasyApache3 has updates available" message:

Code:
sub _check_for_easyapache_build {
    my $self                 = shift;
    my $security_advisor_obj = $self->{'security_advisor_obj'};

    my $cpsources          = Cpanel::Config::Sources::loadcpsources();
    my $ea_update_server   = defined $cpsources->{'EASOURCES'} ? $cpsources->{'EASOURCES'} : $cpsources->{'HTTPUPDATE'};
    my $httprequest_obj    = Cpanel::HttpRequest->new( 'hideOutput' => 1 );
    my $latest_ea3_version = '';
    eval { $latest_ea3_version = $httprequest_obj->request( 'host' => $ea_update_server, 'url' => '/cpanelsync/easy/version_easy', 'protocol' => 0, ); };
    chomp($latest_ea3_version);

    my $installed_version = Cpanel::SafeRun::Errors::saferunallerrors( _get_httpd_path(), '-v' );
    $installed_version = $installed_version =~ /Cpanel::Easy::Apache v([\d.]+)/s ? $1 : '';

    if ( $latest_ea3_version && $installed_version && $latest_ea3_version ne $installed_version ) {
        $security_advisor_obj->add_advice(
            {
                'type'       => $Cpanel::Security::Advisor::ADVISE_WARN,
                'text'       => ['EasyApache3 has updates available.'],
                'suggestion' => [
                    '[output,url,_1,EasyApache3,_2,_3] needs to be run periodically to update Apache, PHP and other public server functionality to the latest versions. Updates to EasyApache3 often fix security vulnernabilities in this software.',
                    $self->base_path('cgi/easyapache.pl?action=_pre_cpanel_sync_screen'),
                    'target',
                    '_blank'
                ],
            }
        );
    }
    return 1;
}

Thank you.
 

NestMan

Active Member
May 10, 2016
25
0
1
Utah
cPanel Access Level
Root Administrator
No, I did not initiate a new build. I was not aware that I had to recompile Apache each time EasyApache came out with an update. Is this something I should be doing?

Thank you!
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463

NestMan

Active Member
May 10, 2016
25
0
1
Utah
cPanel Access Level
Root Administrator
Hello,
However, that said, this is less of an issue once you begin using EasyApache 4 due to the integration with YUM. Thank you.
I am new to WHM and Apache. I have never used YUM before. Do you advise that I follow the directions and migrate over to EasyApache 4 or stay with my current version for now?

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
I am new to WHM and Apache. I have never used YUM before. Do you advise that I follow the directions and migrate over to EasyApache 4 or stay with my current version for now?

Thank you.
Hello,

I recommend migrating to EasyApache 4.

The update process is outlined at How to Install or Uninstall EasyApache 4, however you can choose to wait for cPanel version 58's new [URL='https://documentation.cpanel.net/display/EA4/How+to+Migrate+and+Revert']EasyApache 4 Migration[/URL] interface in Web Host Manager if you'd rather migrate through WHM.https://documentation.cpanel.net/display/EA4/Introduction+to+EasyApache+4

We're happy to answer any questions you have about the migration process.

Thanks!
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
Is it common for cPanel to skip major build numbers? For example, I was expecting that the next version would be 57, not 58.
Yes, this is by design. Here's a quote from cPanel & WHM Product Versions and the Release Process that details how major and minor values are incremented:

  • Major values represent sets of new features, and are often the most useful value in the product version number.
  • Minor values represent sets of bug fixes and changes that stabilize the features that we released in a major value version.
      • Initial builds of a production release of cPanel & WHM use a minor value of 0 (for example, 40.0).
      • Subsequent publications of the production release will increment the build value (for example, 30.0.1)
  • Build values represent a unique build of cPanel & WHM.
Thanks!
 

NestMan

Active Member
May 10, 2016
25
0
1
Utah
cPanel Access Level
Root Administrator
cPanel 58 is tentatively scheduled for publication to the Current release tier early next week.
I found this on your blog, "Due to problems in the security and usability, the following features have been removed from cPanel & WHM version 58, and are now targeted for v60: EasyApache 4 conversion interface".

Since I am a newbie when it comes to WHM, do you suggest that I wait until version 60? Or should I upgrade via the command line somehow?

Thanks!