When: See below
Window: 1:00am - 6:00am (EDT)
Duration: 5 - 60 minutes (per server)
[DONE] 08/02/2003 - MQS0001, MQS0002, MQS0003, MQS0004(**M40x)
[DONE] 08/03/2003 - RASMUS, ENIGMA, HC01
[DONE] 08/04/2003 - ASTRO, SCOOTER
[DONE] 08/05/2003 - QBERT, ZOOMER, SONIC
[DONE] 08/06/2003 - TAZ, SIX, NINE, SEVEN
[DONE] 08/07/2003 - PHOENIX, DEXTER, DEEDEE, LOLA
[DONE] 08/08/2003 - ESCHER, HUGO, UNITY, HANNA
=== Apache ===
Apache is being upgraded to version 1.3.28:
- new code to help prevent recursive loops on internal subrequests
- eliminate leaking of file descriptors from Apache children that spawned CGI scripts
With Apache 1.3.28, we have dropped the old db1 and ndbm hash library bindings, in favor of the newer db2 library... This is a security update to squelch an unfortunate privacy leakage issue where db1 did not properly zero out its working memory area before building its hash structures... No changes will need to be made by site owners using DB style password hashes, as it should be a transparent upgrade with db2 having the ability to read db1 hashes...
Also joining the Apache 1.3.28 lineup is a new custom Apache module entitled FQ-SRC (Spider Rate Control)... FQ-SRC provides much finer grained clamping of abusive spiders and more detailed (internal) stats that should be easier to drill through with realtime alerting capability... FQ-SRC joins our proprietary ZenForce™ Family of server and network management controls, after many months of development and testing... Prior to this new module, FQ-Guardian performed this duty and will now be modified to provide an additional level of defense against server overloads by working side-by-side with FQ-SRC...
=== PHP ===
We are pleased to announce the upgrade of all servers to the new PHP 4.3.2 version
You can view the full changelog here:
Of particular, carefully check the changes from 4.2.3 to 4.3.2 to see if it will impact your sites operation...
New additions to the PHP 4.3.2 release:
=== Secure_Mode ===
- Fixed the two Secure_Mode™ issues that postponed the last deployment
- mbstring (Compiled with: --enable-mbstring=all, --enable-mbregex)
- GD v2 library with GIF enabled
- Add exif support
- DBA with db2 hash library
- FreeType 2 library (runs parallel with FreeType 1)
Secure_Mode™ is a FutureQuest proprietary subsystem that allows site owners to enjoy the freedom of having safe_mode off, while still retaining all of the positive security benefits that it provided. Please view this thread
for the original Secure_Mode™ announcement.
Servers which are already running PHP Secure_Mode™
ASTRO, RASMUS, QBERT, ZOOMER, SONIC, ENIGMA, SCOOTER, HC01
Servers which will be upgraded to the new PHP Secure_Mode™ system
TAZ, SIX, NINE, SEVEN, PHOENIX, DEXTER, DEEDEE, LOLA, ESCHER, HUGO, UNITY, HANNA
Overall, a lot of effort has gone into this non-trivial
release, and we are pleased that this new Apache/PHP/Secure_Mode™ combination has been shored up and now ready for full production deployment...
<EDIT: added a link to the PHP changelog>
<EDIT: remove the FreeType1 deprecation notice>
<EDIT: add 'exif' support to PHP>