Our Sponsors

Die ISPConfig Entwicklung wird unterstützt von der projektfarm GmbH Lüneburg.

ISPConfig 3.2 Veröffentlicht

Donnerstag, Oktober 15, 2020

ISPConfig 3.2 ist die nächste Generation unseres Hosting Control Panels. Heute veröffentlichen wir die endgültige Version von ISPConfig 3.2.

Was gibt es Neues?

Die neue Version kommt mit vielen neuen Funktionen und Fehlerbehebungen. Hier sind ein paar Highlights:

– Unterstützung für CentOS 8 und Ubuntu 20.04 hinzugefügt
– Wichtig: Wir werden die Unterstützung für Courier in Zukunft einstellen. Bitte konvertieren Sie Ihr Setup nach Dovecot.

Global:
– TLSv1- und TLSv1.1-Unterstützung beendet
– Unterstützung für die Beantragung eines Let’s Encrypt-Zertifikats für das Panel, Postfix, Dovecot und Pure-FTPd bei Installation/Upgrade
– Dropdowns für Domains werden nicht mehr vorausgefüllt
– Der Client-Schutz (auch als Admin-Schutz bekannt) kann jetzt unter System -> Hauptkonfiguration deaktiviert werden
– Fast alle Zeichenketten können jetzt übersetzt werden
– Es wurden viele Übersetzungen von mehreren Mitwirkenden hinzugefügt.
– Einige visuelle Probleme behoben

Sites:
– Da das APS-Projekt tot ist, haben wir die APS aus unserem Gremium entfernt.
– HTTP/2 wird für alle Websites aktiviert, wenn Ihre Software dies unterstützt.
– Wenn ein Richtlinien-Snippet unter System -> Richtlinien-Snippets geändert wird, werden alle Sites, die das Snippet verwenden, aktualisiert.
– Sie können die abhängigen Alias- / Subdomains für eine Website anzeigen
– Viele neue Sicherungsfunktionen:
– Neue Sicherungsformate für Web-Dateien und Datenbank: TAR, RAR, 7z, Zip
– Sicherungen können verschlüsselt werden
– Sie können eine Sicherung manuell über die Schnittstelle
– Anmerkung: wir haben einige wichtige Dinge in der vhost.conf.master geändert. Wenn Sie eine benutzerdefinierte Datei verwenden, aktualisieren Sie sie bitte.
– Unterstützung für GoAccess hinzugefügt
– Verbesserte Handhabung von Benutzern mit chroot-Unterstützung
– Bestehende Gefängnisse automatisch per Cronjob aktualisieren

E-Mail:
– Die Start- und Stoppdaten der Autoresponder sind jetzt optional.
– Sie können eine Bereinigung für E-Mails in den Junk- und Papierkorb-Ordnern konfigurieren, die älter als X Tage sind
– Das Verschieben von Spam-E-Mails in den Junk-Bereich ist jetzt standardmäßig für neue Postfächer aktiviert
– Viele Funktionen aus den Mailbox-Einstellungen sind jetzt auch für Mail-Benutzer verfügbar

DNS:
– Algorithmus 13 ist der neue Standard für das Signieren von Zonen. Um Ihre bestehenden signierten Zonen zu migrieren, siehe: https://www.faqforge.com/linux/controlpanels/ispconfig3/how-to-change-dnssec-algorithm-in-ispconfig-3/
– Die Registerkarte „Datensätze“ ist jetzt die erste Registerkarte
– Sie können jetzt @ und * als Hostnamen für DNS-Einträge verwenden
– Umbenennung des CAA-Eintrags für Comodo in „Sectigo / Comodo CA“.
– Neue Satzarten: SSHFP und DNAME
– CAA-, SSHFP- und DNAME-Einträge können jetzt über die API hinzugefügt werden.
– Eine Funktion zum Ausblenden der BIND-Version für externe Benutzer wurde hinzugefügt

Monitor:
– Das Protokoll von Let’s Encrypt wurde in der Schnittstelle unter Monitor -> Let’s Encrypt log zur Verfügung gestellt

Werkzeuge:
– Wir haben die Register „Passwort und Sprache“ und „Schnittstelle“ zusammengeführt

System:
– Das Layout des Spracheditors wurde korrigiert.
– SSL-Unterstützung für den virtuellen Host der Anwendungen hinzugefügt

Sicherheitsprobleme behoben:
– Eingeschränkte Verwendung von Symlinks für den Besitzer des Webroots (für Nginx-Benutzer)
– Deaktivierte automatische Indexierung für Apache-Sites
– Ein Problem wurde behoben, bei dem Wiederverkäufer Kunden mit mehr Rechten als sie selbst erstellen konnten.
– Blockierte eine Funktion, die zur Umgehung der Verkehrsquote verwendet werden konnte

Plus viele kleinere Änderungen und Verbesserungen unter der Haube.

Das vollständige Changelog können Sie hier einsehen:

https://git.ispconfig.org/ispconfig/ispconfig3/-/milestones/68

Bekannte Probleme

Bitte werfen Sie einen Blick auf den Bugtracker:

https://git.ispconfig.org/ispconfig/ispconfig3/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name[]=Bug

Sie können Fehler unter https://git.ispconfig.org/ispconfig/ispconfig3/issues melden.

Unterstützte Linux-Distributionen
– Debian 9 – 10 und Debian-Testing (empfohlen)
– Ubuntu 16.04 – LTS – 20.04 LTS (empfohlen)
– CentOS 7 – 8

ISPConfig 3.2 herunterladen

http://www.ispconfig.org/downloads/ISPConfig-3.2.tar.gz

Die Installationsanleitung für ISPConfig finden Sie hier:

http://www.ispconfig.org/ispconfig-3/documentation/

Wie kann ich auf die endgültige Version 3.2 aktualisieren?

Sie können auf ISPConfig 3.2 aktualisieren, indem Sie den Befehl ispconfig_update.sh verwenden. Eine detaillierte Anleitung zum Update finden Sie hier:

https://www.howtoforge.com/updating-ispconfig-3-1-to-ispconfig-3-2/

Anweisungen zur manuellen Aktualisierung

Falls Sie das Update manuell ausführen müssen, ohne ispconfig_update.sh zu verwenden, verwenden Sie die manuelle Download-Prozedur unten:

Führen Sie die folgenden Befehle als Root-Benutzer auf Ihrem ISPConfig-Server aus.

cd /tmp
wget https://www.ispconfig.org/downloads/ISPConfig-3.2.tar.gz
tar xvfz ISPConfig-3.2.tar.gz
cd ispconfig3_install/install
php -q update.php

ISPConfig 3.1.14 Released

Montag, Juli 8, 2019

What’s new in ISPConfig 3.1.14

This ISPConfig release adds support for Debian 10 (Buster),  a new datalog viewer, DNS CAA Records, PowerDNS 4.x support, Chroot option for PHP-FPM and several new Remote API functions. And many bugs were fixed. For details, please see the changelog.

Datalog Viewer

The datalog or sys_datalog is the internal configuration transaction system in ISPConfig. The Datalog viewer is a new function which allows you to see what has been changed by a user in ISPConfig in the past 30 days. This helps administrators to find out which exact changes were made to a site, mail account, etc. The Datalog Viewer provides also a undo function.

You can find the Datalog Viewer in the Monitor module, the menu is named „Show Satalo Log History“.

DNS CAA Records

The ISPConfig DNS Manager can now be used to add CAA records to a zone.

DNS CAA Records in ISPConfig

ISPConfig 3.1.14 Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.14.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/milestones/65

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian 8 – 10 and Debian testing
– Ubuntu 16.04 – 18.04
– OpenSuSE 11 – 13.2
– CentOS 6 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

ISPConfig can be updated to version 3.1.14 by running the command:

ispconfig_update.sh

as root user on the shell. Choose ’stable‘ as the update source.

Manual Update

In case you have any issues with updating ISPConfig trough ispconfig_update.sh command, then use the manual update instructions below.

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.14.tar.gz
tar xvfz ISPConfig-3.1.14.tar.gz
cd ispconfig3_install/install
php -q update.php

What’s new in ISPConfig 3.1.13

A security vulnerability has been found in ISPConfig which might allow a client to execute code under the permissions of the ispconfig user.

The following two requirements must be met for this:

– The attacker must have a valid ISPConfig login (Client, Reseller or Admin – username and password).
– The attacker must be able to create a website on the same server where the ISPConfig interface is hosted or he must have any other kind of local file system access that allows him to upload files to the server were the ISPConfig interface is hosted on.

Thank you very much to Rio Sherri – 0x09AL for finding and reporting this issue.

We highly recommend installing this update immediately.

This release contains some other bug fixes and minor feature enhancements besides the security fix. For details, please see the changelog.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.13.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/milestones/64

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 18.04
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.13.tar.gz
tar xvfz ISPConfig-3.1.13.tar.gz
cd ispconfig3_install/install
php -q update.php

What’s new in ISPConfig 3.1.11

In the past weeks, we reviewed the ISPConfig sourcecode for further XSS issues and ISPConfig was tested with professional security test tools. Thank you very much to Fábián Patrik for his efforts in testing ISPConfig. This uncovered more places where ISPConfig was vulnerable to XSS attacks. For all attacks, a valid ISPConfig login was required to exploit the XSS vulnerability. This release fixes the XSS issues that were found. Besides that, it includes several other bugfixes and new features.

The ISPConfig IDS system was extended to have different attack score levels for users and the admin, this drastically reduced the false positive rate and allowed it to enable the IDS by default now. The IDS settings can be found in the file /usr/local/ispconfig/security/security_settings.ini

A new feature has been added to change the document root directory on nginx servers to a sub folder. More: https://git.ispconfig.org/ispconfig/ispconfig3/merge_requests/698

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.11.tar.gz

Changelog

https://git.ispconfig.org/dashboard/issues?milestone_title=3.1.11&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.11.tar.gz
tar xvfz ISPConfig-3.1.11.tar.gz
cd ispconfig3_install/install
php -q update.php

What’s new in ISPConfig 3.1.10

This update fixes several XSS vulnerabilities that were found in ISPConfig. A valid ISPConfig login is required to exploit the XSS vulnerabilities. The release includes other bugfixes and some minor improvements as well. See changelog link below for details.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.10.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.10&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.10.tar.gz
tar xvfz ISPConfig-3.1.10.tar.gz
cd ispconfig3_install/install
php -q update.php

What’s new in ISPConfig 3.1.9

This release contains an important security fix for an authenticated local root vulnerability in the ISPConfig website cron system, the vulnerability has the CVE number CVE-2017-17384 assigned and has been reported to us by Chris Kessler. The update should be installed immediately. All ISPConfig 3 versions before 3.1.9 are affected.

An attacker requires either the correct ISPConfig admin password or a remote user (valid username and password) which has the permissions to create cronjobs or a client login with permission to create cronjobs.

We received reports that the net is currently scanned for ISPConfig installations with weak admin passwords, especially for systems with password ‚admin‘. Ensure that your system uses a strong admin user password to protect your server!

The ISPConfig 3.1.9 release scans your system for potentially malicious cronjobs and will report them during update.

In case that you can not install the update right now, then a possible temporary attack prevention is to disable the cron plugin by removing the symlink like this:

rm -f /usr/local/ispconfig/server/plugins-enabled/cron_plugin.inc.php

It is not possible to create cronjobs from within ISPConfig after you deleted that symlink (cronjobs will show up in ISPConfig UI in that case but will not get added to the Linux cron.d directory). The symlink in plugins-enabled folder to the cron plugin in the plugins-available folder has to be added again to get the cron functionality back.

If you like to scan your system for potentially malicious cronjobs on the shell, use this command (copy / paste it on the shell as root user to execute it):

IFS=$'\n' ;
for F in $(find /etc/cron.d -type f -name "ispc_*") ; do
 USR=${F:17} ;
 if [[ "$USR" = "chrooted_"* ]] ; then
  USR=${USR:9} ;
 fi ;
 USR=${USR%.*} ;
 echo "Checking cron file $F for user $USR";
 for L in $(awk '{print $6}' "$F") ; do
  if [[ "$USR" != "$L" ]] ; then
   echo "WARNING: $F contains cron job for user $L" ;
  fi ;
 done ;
done

The 3.1.9 release contains some other minor bugfixes beside the security fix, please see release notes for details.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.9.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.9&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.9.tar.gz
tar xvfz ISPConfig-3.1.9.tar.gz
cd ispconfig3_install/install
php -q update.php

ISPConfig 3.1.8 Released

Donnerstag, November 9, 2017

What’s new in ISPConfig 3.1.8

This release adds support for Ubuntu 17.10 and fixes several bugs. ISPConfig supports PHP 7.1 as main PHP version now.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.8.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.8&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.8.tar.gz
tar xvfz ISPConfig-3.1.8.tar.gz
cd ispconfig3_install/install
php -q update.php

ISPConfig 3.1.7 Released

Montag, September 25, 2017

What’s new in ISPConfig 3.1.7

This release adds a new search path for the latest Let’s Encrypt certbot program and fixes some minor bugs.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.7.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.7&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.04
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.7.tar.gz
tar xvfz ISPConfig-3.1.7.tar.gz
cd ispconfig3_install/install
php -q update.php

ISPConfig 3.1.6 Released

Donnerstag, Juli 20, 2017

What’s new in ISPConfig 3.1.6

This release adds remote API functions to set values in the global and system configuration and fixes some minor bugs.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.6.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.6&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.04
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.6.tar.gz
tar xvfz ISPConfig-3.1.6.tar.gz
cd ispconfig3_install/install
php -q update.php

ISPConfig 3.1.5 Released

Donnerstag, Juni 29, 2017

What’s new in ISPConfig 3.1.5

This release contains an important security fix. A user that is logged into ISPConfig was able to view contact details of other users due to an insufficient privilege check. Some minor bugs have been fixed in this release as well, see changelog in issue tracker for details.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.5.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.5&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.04
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.5.tar.gz
tar xvfz ISPConfig-3.1.5.tar.gz
cd ispconfig3_install/install
php -q update.php