Results 1 to 6 of 6

Thread: upgrade of zimbra httpd

  1. #1
    noel.dechavez is offline Junior Member
    Join Date
    Sep 2013
    Posts
    5
    Rep Power
    1

    Default upgrade of zimbra httpd

    Hi all,

    I'm new in zimbra and i'm trying to upgrade the version of its httpd from 2.4.4 to 2.4.6. How can I safely upgrade it by also upgrading other modules like php and others. I'm using zimbra 8 now. Please help.

    Noel

  2. #2
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,491
    Rep Power
    56

    Default

    You can't upgrade individual components in ZCS nor should you try, you will break your server.

    Sent from my HTC Desire using Tapatalk 4
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    noel.dechavez is offline Junior Member
    Join Date
    Sep 2013
    Posts
    5
    Rep Power
    1

    Default

    Quote Originally Posted by phoenix View Post
    You can't upgrade individual components in ZCS nor should you try, you will break your server.

    Sent from my HTC Desire using Tapatalk 4

    Thanks for this. But my reason for upgrading the httpd component is to eliminate vulnerability seen by VA scanner on the included modules mod_dav.so and mod_session.so

  4. #4
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,491
    Rep Power
    56

    Default

    Quote Originally Posted by noel.dechavez View Post
    Thanks for this. But my reason for upgrading the httpd component is to eliminate vulnerability seen by VA scanner on the included modules mod_dav.so and mod_session.so
    The same answer would apply, I'm afraid. Which vulnerability are you talking about? Have you looked in bugzilla or filed a report?
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  5. #5
    noel.dechavez is offline Junior Member
    Join Date
    Sep 2013
    Posts
    5
    Rep Power
    1

    Default

    Quote Originally Posted by phoenix View Post
    The same answer would apply, I'm afraid. Which vulnerability are you talking about? Have you looked in bugzilla or filed a report?
    I'm using nessus for scanning the server and has resulted to the ff. vulnerabilities:

    CVE-2013-1896
    CVE-2013-2249

  6. #6
    quanah is offline Zimbra Employee
    Join Date
    May 2007
    Location
    Zimbra
    Posts
    1,265
    Rep Power
    10

    Default

    Sounds like your vulnerability scanner is retarded. Zimbra doesn't load either of those modules...

    --Quanah
    Quanah Gibson-Mount
    Server Architect
    Zimbra, Inc
    --------------------
    Zimbra :: the leader in open source messaging and collaboration

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 1
    Last Post: 05-13-2013, 10:35 AM
  2. Replies: 0
    Last Post: 05-11-2013, 10:06 AM
  3. reuse zimbra httpd for another homepage
    By gregor in forum Administrators
    Replies: 3
    Last Post: 11-02-2009, 04:00 AM
  4. centos5 + httpd + zimbra timezone troubles
    By gregor in forum Installation
    Replies: 0
    Last Post: 09-02-2009, 03:20 PM
  5. zimbra & apache(httpd) problem.
    By nishith in forum Administrators
    Replies: 0
    Last Post: 06-25-2008, 03:51 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •