Aktuell ist der Update Zyklus von I-MSCP sehr gering, daher berichten wir nicht über jedes I-MSCP Update welches veröffentlicht wird, sofern keine sicherheitsrelevanten Patches durchgeführt werden. Die Entwickler sind aktuell dabei zahlreiche Änderungen an I-MSCP zu entwickeln wodurch sich der Updatezyklus für die I-MSCP Versionen stark verkürzt. Da viele Updates nur kleinere Bugfixes zum Beispiel im Installer beinhalten, berichten wir nicht über jedes I-MSCP Update. Seit unserem letzten Blogpost zur Veröffentlichung der I-MSCP Version 1.3.9 wurden folgende Änderungen durchgeführt und Bugs in I-MSCP behoben:

I-MSCP Update 1.3.12 – aktuellste Version

BACKEND

• Fixed: Could not write log files for the Modules::Htaccess module due to possible slash in names
• Fixed: Several encoding issues (wide characters)
• Fixed: Unless otherwise stated, config object must die when accessing a non-existent parameter (iMSCP::Config)

INSTALLER

• Fixed: Failure when there are wide characters outputted to a filehandle for which utf8 layer is not set

SERVERS

• Fixed: Usage of rewrite engine for setting up FCGI handlers leads to many troubles (apache2_php_fpm server)
• Review: Remove any comment and empty lines in production configuration files (Http server impl.)

I-MSCP Update 1.3.11

FRONTEND

• Fixed: Users cannot make new login attempts after a blocking timeout (BruteForce core plugin)
• Fixed: Waiting time between login attempts is never put off, even when expected to be (BruteForce core plugin)
• Fixed: Wrong parameter passed-in to authentication result (Authentication service class)

INSTALLER

• Added: `IMSCP_SETUP‘ environment variable to make any sub-process aware of i-MSCP setup process
• Fixed: Installation fail on first attempt due to dpkg(1) post-invoke-tasks that are run too early

PACKAGES

• Fixed: Blowfish secret is too short (Package::PhpMyAdmin::Installer)

SERVERS

• Fixed: PHP scripts are outputted without even being interpreted when the rewrite engine is disabled in .htaccess files (apache2_php_fpm server impl.)

I-MSCP Update 1.3.10

BACKEND

• Fixed: Bad cipher used in `imscp_common_methods.pl‘ for decrypting database password, breaking software installer

FRONTEND

• Added: Minified version of imscp.js file
• Fixed: Could not assign/un-assign htgroup (Protected area feature)
• Fixed: When creating/editing a htuser, credentials are not written in .htpasswd file (Protected area feature)
• Fixed: When deleting htuser, credentials are not removed from the .htpasswd file (Protected area feature)
• Fixed: Wrong SQL statement leading to 400 error page (Protected area feature)

PLUGINS

• Fixed: Do not register listeners provided by a plugin that is not yet known by the plugin manager

SERVERS

• Fixed: Rewrite rules put in .htaccess files are never applied in some contexts (apache2_php_fpm server impl.)

YOUTRACK

• #IP-1678 Protected area feature – Several issues with htusers/htgroups

Laut errata gibt es zwischen 1.3.9 und 1.3.12 nichts weiter zu beachten.