Today, Intel released a statement regarding L1 Terminal Fault (L1TF), a severe security vulnerability that affects many multi-tenant environments running virtual machines, including SnapBlox. This vulnerability exposes data to any guest running on the same processor core. In SnapBlox environment, this means an attacker could theoretically use one Virtual Machine to view another Virtual Machine’s…
The Death of SquirrelMail
As of cPanel & WHM version 74, we will begin to depreciate our support of SquirrelMail, one of our bundled webmail applications. We expect to stop shipping SquirrelMail for new installations of cPanel & WHM in version 76 and will remove our support with version 78. As this change will disrupt many users, we are taking…
Removal of PHP 5.4 and PHP 5.5 in EasyApache Profiles
The week of June 18th we will be removing PHP version 5.4 and 5.5 from all cPanel-provided EasyApache 4 profiles. To help users understand what to do, and how to react when that change occurs, we’ve put together a quick list of questions that we think will frequently be asked. What exactly will happen? The…
How To Protect Your Server Against the Meltdown and Spectre Vulnerabilities
What are Meltdown and Spectre? On January 4, 2018, multiple vulnerabilities in the design of modern CPUs were disclosed. Taking advantage of certain processor performance optimizations, these vulnerabilities—named Meltdown and Spectre—make it possible for attackers to coerce applications into revealing the contents of system and application memory when manipulated correctly. These attacks work because the…