Recent Posts

Pages: 1 [2] 3 4 ... 10

PHP / Re: When will PHP 8.4 be released in CWP?

« Last post by sETu on April 09, 2026, 02:27:22 AM »

Quote from: cyberspace on March 08, 2026, 07:49:33 PM

@cHAp, I can provide instructions on how to build PHP 8.4 for PHP version switcher. The method is semi-manual: some steps are provided by CWP itself, and some must be done manually.

Let me know if you are interested.

Hello,
Can you please share it for CWP EL9 and CentOS Stream 9?

Updates / Re: Roundcube vulnerability

« Last post by overseer on April 08, 2026, 11:23:15 PM »

Quote from: cyberspace on April 08, 2026, 09:34:54 PM

Anyway, the script doesn't use the function like system() or exec(). Do you run the script from PHP using system() ?

I believe the error happens with the install line, using the default RC install script:

Code: [Select]

yes | "$src_dir/bin/installto.sh" "$INSTALL_DIR"So it's a bit of an outlier, but maybe you need to test for installation success before reporting it with the echo lines that follow, and maybe worth testing the actual installed version and reporting that:

Code: [Select]

grep "Version " /usr/local/cwpsrv/var/services/roundcube/index.php | awk '{print $3}'

Updates / Re: Roundcube vulnerability

« Last post by cyberspace on April 08, 2026, 10:38:27 PM »

Quote from: thenob on March 20, 2026, 06:58:09 AM

I had a problem with it.
Seems CWP is running php-7.2.30 without php-intl extension.
Roundcube needs this extension to detect Spoofing.

Seems "roundcube" running on my system doesn't require intl. Anyway, if your roundcube requires it you can compile the extension from sources:

As root:

Code: [Select]

cd /usr/local/src/
wget https://www.php.net/distributions/php-7.2.30.tar.gz
tar -xvzf php-7.2.30.tar.gz
cd php-7.2.30/ext/intl
/usr/local/cwp/php71/bin/phpize
./configure --with-php-config=/usr/local/cwp/php71/bin/php-config
make
cp modules/intl.so /usr/local/cwp/php71/lib/php/extensions/no-debug-non-zts-20170718/

open the file /usr/local/cwp/php71/php.ini for editing and add the line:

Code: [Select]

extension = intl.so

right before:

Code: [Select]

zend_extension = /usr/local/ioncube/ioncube_loader_lin_7.2.so

remove sources and extracted files

Code: [Select]

rm -rf /usr/local/src/php-*

Updates / Re: Roundcube vulnerability

« Last post by cyberspace on April 08, 2026, 09:34:54 PM »

Quote from: overseer on April 03, 2026, 02:18:35 AM

Just used your script to update to 1.5.15 LTS -- on one server it worked fine, but on another server it errored out due to the system() function being disabled in that version of PHP

Hi,

Sorry for the delayed reply. I’ve been away from home for a while and only have occasional access to my PC.

Anyway, the script doesn't use the function like system() or exec(). Do you run the script from PHP using system() ?

Updates / Re: Roundcube vulnerability

« Last post by overseer on April 06, 2026, 01:44:05 AM »

Script wouldn't run unless system was an allowed function for that system version of PHP (8.3 in this case). It merrily proceeded to the ending echo lines and acted as if it had done something, but there was clearly an error during execution.