sehh

  • Total activity 126
  • Last activity
  • Member since
  • Following 0 users
  • Followed by 0 users
  • Votes 0
  • Subscriptions 32

Posts

Recent activity by sehh Recent activity Votes

  • TLS 1.2 - Questions

    1. Community
    2. Security

    As of December 2015, there is a major push to disable EVERY SINGLE encryption that is less than TLS 1.2 (that includes TLS 1.1, TLS 1.0, all SSL versions). We've been contacted by our PCI represen...

    • sehh
    • 3 followers
    • 4 comments
    • 0 votes

  • ModSecurity blocks google analytics script tag

    1. Community
    2. Security

    My application allows the user to use his own google-analytics script tag, which is stored in the application SQL database and used at the footer of the application/site. Unfortunately, I discover...

    • sehh
    • 2 followers
    • 2 comments
    • 0 votes

  • [Case 192121] Certificate bundle verification failed

    1. Community
    2. Security

    I'm trying to install a wildcard certificate issued by CACERT.org, for all WHM/cpanel services (cPanel/WHM/Dovecot/Exim). I copy paste the CRT file, the KEY file and the Class 3 bundle. I see all ...

    • sehh
    • 4 followers
    • 6 comments
    • 0 votes

  • upgrade to 5.6 - percona conflict

    1. Community
    2. Databases

    I have a new CentOS 6.6 server, with the latest cpanel/whm installed. I tried to upgrade to MySQL 5.6 from WHM's option "MySQL/MariaDB Upgrade", but this procedure fails because the new rpms confl...

    • sehh
    • 3 followers
    • 3 comments
    • 0 votes

  • Manage Service SSL Certificates Issue

    1. Community
    2. Security

    I found an interesting bug. If I try to upload/install a wildcard domain certificate (*.domain.com) then the "Manage Service SSL Certificates" dies and can no longer be accessed. It produces the fo...

    • sehh
    • 1 follower
    • 1 comment
    • 0 votes

  • Apache logs & reverse IP address lookup

    1. Community
    2. Web Servers & Applications

    Hello, A few days ago, I noticed that my apache logs had domain names instead of IP addresses, for example: msnbot-157-55-39-11.search.msn.com - - [08/Apr/2015:01:07:39 +0100] "GET /file.html HT...

    • sehh
    • 2 followers
    • 2 comments
    • 0 votes

  • requests with bash/curl in the browser signature

    1. Community
    2. Security

    I see an increase in these types of attacks, requests with a bash execution of curl, which executes a remote piece of code. My question is, which application is vulnerable to this attack? somethin...

    • sehh
    • 2 followers
    • 2 comments
    • 0 votes

  • LibXML.xs:1493: error

    1. Community
    2. Installation & Updates

    Last week, after a typical daily update, upcp started failing with: [20141012.235520] [5834] LibXML.xs:1493: error: syntax error before "reader" [20141012.235520] [5834] LibXML.xs: In f...

    • sehh
    • 2 followers
    • 8 comments
    • 0 votes

  • CVE-2014-2532 and CVE-2014-2653

    1. Community
    2. Security

    Hello, I'm failing PCI validation due to these vulnerabilities: CVE-2014-2532 and CVE-2014-2653 I looked at the rpm changelog of openssh-server but can't find any mention of them. Do these vulne...

    • sehh
    • 1 follower
    • 1 comment
    • 0 votes

  • Rare case of SA that fails to scan properly

    1. Community
    2. Email

    In a few rare cases, I've seen SpamAssassin allow some spam to go through with the following headers: X-Spam-Status: No, score= X-Spam-Score: X-Spam-Bar: X-Ham-Report: X-Spam-Flag: NO Anyone...

    • sehh
    • 1 follower
    • 1 comment
    • 0 votes