Patches & Updates Apache 1.3.33-9 Update



19 Oct 2005

H-Sphere versions:   All

Apache 1.3.33-9 is webbox security update. It fixes a buffer overflow problem in PHP by installing imap-2004g.

This update also eliminates a security hole by making corrections to httpd.conf.

Requirements

Make sure to have the following packages installed before you start the upgrade:

- hsphere-webmails-1-6 for H-Sphere 2.4.1 and up (or else mail servers will be skipped)
- The latest OpenSSL for all versions of H-Sphere. Install it as per OpenSSL documentation
- The latest zlib update which eliminates potential security vulnerabilities in previous versions.

Custom PHP: If you have custom php modules installed on H-Sphere WEB boxes, don't forget to back them up before upgrading the software. After the upgrade, set them back up and restart the service.

If you are using Zend Optimizer or other optimizers, you will need to upgrade them to new version after upgrading PHP.

Procedure

  1. Log into your control panel server as root:

    su -

  2. Download the update script from the psoft site:
    Linux:

    wget http://www.psoft.net/shiv/HS/u-apache-1.3.33-9.tgz

    FreeBSD:

    fetch http://www.psoft.net/shiv/HS/u-apache-1.3.33-9.tgz

  3. Unpack the archive:

    tar -zxf u-apache-1.3.33-9.tgz

  4. Enter the unpacked directory:

    cd u-apache-1.3.33-9

  5. Stop H-Sphere:
    Linux:

    /etc/rc.d/init.d/httpdcp stop

    FreeBSD:

    /usr/local/etc/rc.d/apachecp.sh stop

    To stop SiteStudio, stop Imaker by running:

    kill -9 `ps -axw|grep imaker.sh |grep -v grep|awk '{print $1}'`
    kill -9 `ps -axw|grep ImageMaker|grep -v grep|awk '{print $1}'`

  6. Run the update:

    sh update.sh | tee update.sh.log

  7. Start H-Sphere:
    Linux:

    /etc/rc.d/init.d/httpdcp start

    FreeBSD:

    /usr/local/etc/rc.d/apachecp.sh start

  8. Start ImageMaker:
    Linux:

    # /hsphere/shared/SiteStudio/imaker.sh start >& /hsphere/shared/SiteStudio/var/error_log 2>&1 &

    FreeBSD:

    # /hsphere/shared/SiteStudio/imaker.sh start >& /hsphere/shared/SiteStudio/var/error_log &

  9. View Update screen:

    less update.sh.log



Copyright 1998-2008. Positive Software Corporation.
All rights reserved.