Security & bug fix releases PHP 5.6.35, 7.0.29, 7.1.16, 7.2.4

Security & bug fix releases

http://fi2.php.net/ChangeLog-5.php#5.6.35

http://fi2.php.net/ChangeLog-7.php#7.0.29

http://fi2.php.net/ChangeLog-7.php#7.1.16

http://fi2.php.net/ChangeLog-7.php#7.2.4

The PHP development team announces the immediate availability of PHP 7.2.4. This is a security release with also contains several minor bug fixes.

All PHP 7.2 users are encouraged to upgrade to this version.

For source downloads of PHP 7.2.4 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

Continue reading “Security & bug fix releases PHP 5.6.35, 7.0.29, 7.1.16, 7.2.4”

Dotdeb packages the public key is not available

WARNING: The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY E9C74FEEA2098A6E

Waiting for a dotdeb-keyring package, you just have to get the key and add it to your trusted keys’ keyring :

gpg --keyserver keys.gnupg.net --recv-key E9C74FEEA2098A6E
gpg -a --export E9C74FEEA2098A6E | apt-key add -

I hope you’ll enjoy it.

Using Fail2Ban to block WordPress login attacks

Introduction

WordPress is a very robust content-management system (CMS) that is free and open source. Because anyone can comment, create an account, and post on WordPress, many malicious actors have created networks of bots and servers that compromise and spam WordPress sites through brute-force attacks.

Fail2Ban is an intrusion prevention software framework that protects computer servers from brute-force attacks. Written in the Python programming language, it is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally.

Note: In this guide, we will be using version 0.9.6 of Fail2ban on an Debian 9.4 server, but most of it should apply to other distributions as well.

Continue reading “Using Fail2Ban to block WordPress login attacks”

How to Activate HTTP/2 Support on DirectAdmin (Debian)

HTTP/2 is the newest version of the HTTP protocol, based off SPDY. Its development was initiated by Google and HTTP/2 is largely based on the codebase and concepts of SPDY.

SPDY has now been deprecated and worldwide adoption for HTTP/2 is in progress. Many hosting companies have already provided support for HTTP/2 due to its added speed.

At the time of writing, DirectAdmin does not provide a one-click way to enable HTTP/2. However, there are multiple ways to achieve HTTP/2 support. The method outlined below has proven to be the most robust and stable approach.

Continue reading “How to Activate HTTP/2 Support on DirectAdmin (Debian)”