/ Register

Welcome to Centmin Mod Community
Register Now

PHP-FPM suhosin7 - dead?

Discussion in 'Nginx, PHP-FPM & MariaDB MySQL' started by Oxide, Sep 11, 2016.

Previous Thread Next Thread
Loading...
  1. Sep 11, 2016 #1
    Oxide

    Oxide Active Member

    534
    29
    28
    Mar 19, 2015
    Ratings:
    +59
    Local Time:
    3:04 PM
  2. Sep 11, 2016 #2
    buik

    buik “The best traveler is one without a camera.”

    2,027
    524
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,675
    Local Time:
    6:04 AM
    Perhaps it is not a good idea to depend on suhosin.

    Just like the development timeframe for suhosin7. The same goes exactly for suhosin.
    From 2010 to 2012 and 2012 - 2014, both (nearly) 2 years without releases or updates.

    From the suhosin FAQ:

    If you are using centminmod you do have your own server with its own managed code by yourself as admin.
    So there is no need to use suhosin if you ask me.
    If you are running websites for 3th party's, you could check Cloudlinux for that job.
     
    Last edited: Sep 11, 2016
  3. Sep 12, 2016 #3
    Oxide

    Oxide Active Member

    534
    29
    28
    Mar 19, 2015
    Ratings:
    +59
    Local Time:
    3:04 PM
    I trust my code of course.

    CloudLinux has security features like that for PHP?... Unheard.

    I believe CloudLinux is not supported by centminmod though.
     
  4. Sep 12, 2016 #4
    eva2000

    eva2000 Administrator Staff Member

    54,857
    12,238
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,809
    Local Time:
    3:04 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    yeah Cloudlinux isn't supported by Centmin Mod though maybe way into the future when Centmin Mod Premium membership numbers grow, I might look at Cloudlinux support so can get their CageFS working for fully isolated site, user/vhost sites for Centmin Mod :)

    But you'd need to pay for it too CloudLinux - Main | New template

    Code (Text):
    NUMBER OF LICENSES    MONTHLY PRICE
(ANNUAL PRICING AVAILABLE)     YOU SAVE
1    $14    0%
2-4    $12    14%
5+    $10    29%

    you +1 agree

    Unfortunately, like all open source code, you're at the mercy of the developers' timeline and priorities for working on their codes :)
     
  5. Sep 12, 2016 #5
    Oxide

    Oxide Active Member

    534
    29
    28
    Mar 19, 2015
    Ratings:
    +59
    Local Time:
    3:04 PM
    surely agree, but you also use xenforo - you never know when the next exploit comes to xenforo.. suhoshin could actually help and prevent a lot.
     
  6. Sep 12, 2016 #6
    eva2000

    eva2000 Administrator Staff Member

    54,857
    12,238
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,809
    Local Time:
    3:04 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    then need to wait for suhosin php 7 support :)
     
  7. Sep 12, 2016 #7
    buik

    buik “The best traveler is one without a camera.”

    2,027
    524
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,675
    Local Time:
    6:04 AM
    The PHP development cycle is a lot faster these days, in short they quicker release new versions behind each other and shedding old versions even faster. Given the break which the suhosin team regularly takes of 2 years or more it is not likely that suhosin7 will have a long existence.

    You could use CSF with several blacklists. A lot of known bad servers are then blocked.
    A lot quieter with those lists. The blacklists are automatically updated.

    Any bad servers that transfers to white (new owner or so) can visit the forum as it should be.
    (For example) The day after it is removed from the upstream blacklist.
     
Previous Thread Next Thread
Loading...

.