Florian Heigl

My feedback

  1. 19 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    An error occurred while saving the comment
    Florian Heigl commented  · 

    Also very interested in this.
    Disclaimer, I only support hosting customers on the side.
    I'm puzzled and amazed how they're willingly accepting CentOS even though CentOS doesn't come with CVE data and in the past twice had delays between 1 and 6 months where security patches (and everything else) just didn't come out.
    I can't convince myself that everyone supporting CentOS just doesn't give a damn about providing security to their users, but I fall short on ideas.
    I know the CentOS continuous release repo exists, I wrote long and friendly howtos about it. It somewhat solves security issues except:
    - they still don't sign the CVE data so you can't even tell you're missing an update
    - PLESK DOESN'T TEST AGAINST THE CR REPO AND EVERYTHING GOES TO HELL
    - Combined you also force people to turn off basic security measures like SELinux, you're putting users at high unneeded risk.

    So, put very directly:
    THEN it would be helpful to at least support the *free* other RHEL clone that has the security business down well.

    IF you encounter any issues supporting it, that would be due to bugs and issues in your own build chain and then it's darn time to clean it up. You're producing business software and you will make your own life a lot easier if it's better tested & portable.
    Not to mention you will save, given the large user base, literally hundreds of thousands of hours per year to others. (You have whole knowledge base articles explaining which packages to exclude during updates because otherwise your software breaks. That is a red flag to anyone with experience, but you CAN fix it!)

    So, if you can, go ahead and make your life easier.

    Florian Heigl supported this idea  · 

Feedback and Knowledge Base