Article ID: 114558, created on Aug 13, 2012, last review on Aug 12, 2014

Symptoms

Outdated system packages.

Resolution

Install Parallels H-sphere 3.6 SPU 52 to update third-party packages to the following versions:

  •          PHP 5.3 to 5.3.15;
  •          mod_hostinglimits to 1.0-5;
  •          ClamAV to 0.97.5;
  •          Horde to 3.3.13;
  •          IMP to h3-4.3.11;
  •          mod_security to 2.6.7;
  •          phpMyAdmin to 3.4.11;
  •          ionCube PHP Loader to 4.2.2;
  •          Control Panel Apache to 2.2.22;
  •          ProFTPd to 1.3.4b;
  •          BIND to 9.6-ESV-R7-P2.

Parallels H-Sphere 3.6 SPU 52 provides the following improvements:

  •           Added support of Control Panel role on RHEL 6 and CentOS 6;
  •          Added mysql password hash length selection to 'mysql change user password', 'create mysql user' forms;
  •          Added hsphere.properties config option MYSQL_OLD_PASSWORD;
  •          'phpize' binary is provided by the new package hsphere-php53-devel;
  •          Added PHP PEAR package for PHP 5.3;
  •          PHP5 is enabled by default on new physical servers;
  •          Removed old-passwords option from the default MySQL configuration file;
  •        Zend Guard Loader and ionCube are supported for all configurations except PHP 5.3 in libphp mode with Apache 2
  •        STARTTLS plaintext command injection vulnerability fixed for IMAP and SMTP protocols; for POP please refer to https://kb.odin.com/en/114581

SPU notes

1.       MySQL password hash length is set to short by default. To make the hash length long by default, add the following line to hsphere.properties: MYSQL_DEFAULT_LONG_PASSWORD_HASH = TRUE. MYSQL_DEFAULT_LONG_PASSWORD_HASH setting defines which option is chosen on the web form by default, when the web page is loaded. User can select any hash length then;

2.       3. mnogosearch PHP extension is not available on PHP 5.3 for FreeBSD OS

3.       phpMyAdmin 3.4.11 requires at least PHP 5.2 to be enabled on the corresponding physical box by default in libphp mode. If you don’t want to upgrade your phpMyAdmin, add a string “hsphere-phpmyadmin-” to the end of the ”/hsphere/shared/etc/excludepkglist” file on the corresponding physical boxes.

Installation instructions

Use the instructions below to perform update.

Note: it is recommended to download a fresh copy of the installation script available at http://download.hsphere.parallels.com/shiv/HS/releases/U36.0/U36.0/U36.0.

  1. Update Apache 2 on your Control Panel server:
    # sh U36.0 cpupdate private
    1. Verify that Apache 2 was updated successfully.
      On Linux:
      #
      rpm -qa | grep hsphere-cpanel-apache2
      On FreeBSD:
      # pkg_info | grep hsphere-cpanel-apache2
      The output should contain the new version only:
      On Linux:

      hsphere-cpanel-apache2-2.2.22-1
      On FreeBSD:
      hsphere-cpanel-apache2-2.2.22_1
  2. Update common packages on your Control Panel server:

# sh U36.0 hspackages private ips=<IP of Control Panel server>

  1. Decide what physical servers you will update. You might want to update only a few servers at first and test them in production, and update the rest after testing is successful.
  2. (Necessary only if you don't have profile with the same settings) Create a new physical server profile, as described at http://hsphere.parallels.com/docs/3.6.0/admin/html/pserver_profiles.html
    When creating the profile:

a.       Select Unix as a base for the profile.

b.      Select the Private update (for testing purposes) (-P) checkbox.

c.       You may leave the other settings unchanged.

  1. Assign the created (or existing) “private” physical server profile to the servers you want to update as described at http://hsphere.parallels.com/docs/3.6.0/admin/html/pserver_profiles.html.
  2. Update the servers as described at http://hsphere.parallels.com/docs/3.6.0/admin/html/updating_box_from_cp.html
  3. When the update is finished, verify that the servers were updated successfully:
    1. At the E.Manager -> Update -> Update Boxes screen, for each updated server, click the server name and read the updater log. Verify that the new versions of the following packages were installed:

Package

Linux Version

FreeBSD Version

hsphere-info

1-25

1_25

hsphere-scripts

3.6-1580

3.6_1580

hsphere-perl

1-16

1_16

hsphere-apache-shared-h3.1

1-35

1_35

hsphere-php53-*

5.3.15-8

5.3.15_9

hsphere-apache-h3.1

1.3.42-5

1.3.42_5

hsphere-apache2-h3.1

2.2.22-7

2.2.22_7

hsphere-config-mysql

1.1-12

1.1_12

hsphere-phpmyadmin

3.4.11-2

3.4.11_2

hsphere-ftp

1.3.4-1

1.3.4_1

hsphere-mail-service

5-22

5_22

hsphere-imap-h2.5

4.2.0-2

4.2.0_2

hsphere-webmails-h2.5

2-41

2_41

hsphere-cpanel-apache2

2.2.22-1

2.2.22_1

hsphere-core

3.6-1580

3.6_1580

hsphere-bind

9.6-6

9.6_6

hsphere-mrtg-rrd

1-11

1_11

hsphere-cpanel-javart

3.6-1580

3.6_1580

  1. Check the overall update status at the end of the log.
  2.  (optional) Additionally, you may log in to the updated servers over SSH and issue the following command:
    On Linux servers:

    # rpm -qa | grep <package-name>
    On FreeBSD servers:
    # pkg_info | grep <package-name>
    The output should contain the new versions only.

 

 

2e39a5e5b1423cc126cf735bac076008 6311ae17c1ee52b36e68aaf4ad066387 f213b9fa8759d57bee5d547445806fe7

Email subscription for changes to this article
Save as PDF