• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Mailing list for security and other critical announcements?

L

LuisN

New Pleskian
Does Parallels have a mailing list one can subscribe to in order to get security and other critical announcements regarding Plesk? For example, I only learned about the ProFTPD vulnerability through a web hoster that was nice enough to alert all its customers but that's not always going to be reliable.

Thanks!
 
It was not Plesk security problem but proftpd service. Plesk use many thir-party components like php, mysql, proftpd, apache, etc and all these components have own security problems and announcements.
 
IgorG: thats true but *YOU* provide the psa-proftpd package and its your responsability to update it if there is a vulnerability. People purchase a one-key solution from you and expect updates if Parallels actually supplied the software.
 
IgorG said:
You can find all necessary information on our site. For example - Did you see it?
http://www.parallels.com/products/plesk/ProFTPD
Click to expand...

That's assuming your customers visit your site daily. Not a good assumption.

Note: I tried to reply to your original response but the moderation system appears to have eaten my response. I'm not sure why since there was nothing questionable in my post. Am I the only one that things its strange that this forum is moderated?
 
My answer to this thread wasn't accepted, too ;-)

At the moment I'm building a site where versions and security issues of third-party software that Plesk uses are listed: http://psa.bi-co.net/.

Who is interested in it can subscribe and will be informed as soon as I receive information concerning security problems. Also it would be great if people inform me when they hear about security problems in the listed software.

So we can build a network and ensure that everybody is informed quickly :)

--
edited on 14 Nov 2010, 01:57 GMT
 
Last edited:
You must log in or register to reply here.

Similar threads

A
Question secure mail.[domainname].xx with SSL
Replies
0
Views
861
Albertje
A
J
Issue mailman3 web-interface: Link missing in mail, 404 when clicking "manage list" in plesk
Replies
8
Views
1K
Jan
J
H
Question SSH user can see other subdomain directories even with chrooted shell?
Replies
3
Views
566
Raul A.
R
E
Question Secure mail protocols while website on other server (A to a different IP)
Replies
4
Views
964
easyware
E
C
Question Strategic questions
Replies
9
Views
3K
mow
M
Back
Top