As of September 30, 2021 as planned, the DST Root CA X3 cross-sign has expired. And old devices including servers under CentOS 6 are reporting broken chain or failed peer when trying to connect to a secure protocol protected by a Let's Encrypt certificate. And here is a quick solution for servers with DirectAdmin.
MariaDB dropped support for CentOS 6. There are no new rpm-packages for this OS version.
Should you see any TLS/SSLrelated errors "tls_post_process_client_hello:no shared cipher" in Exim's logs the reason might be still the same. Check the details here
NGINX fails to start after an upgrade of DirectAdmin and the web-server with the error [emerg] unknown directive "|NGINX_REDIRECTS|". Here is a short guide on how to deal with it.
ClamAV stopped and does not start any longer. And directadmin alerts: The service 'clamd' on server server.domain.com is currently down. Here is a possible cause and solution.
Since the version 1.61.0 of DirectAdmin a jailed shell and jailed cron are supported. This can be achieved with a help of BubbleWrap the unprivileged sandboxing tool. On Linux servers it gives another layer of a security, and restricts users.
At the moment of the publication DirectAdmin can install the following PHP extensions: gmp, ioncube, imagick, imap, opcache, phalcon, suhosin, xmlrpc, zend. The listed extensions can be installed server-wide for all PHP versions.
The directive "disable_functions" allows to disable certain functions. It takes on a comma-delimited list of function names. DirectAdmin uses the directive for security purposes, and here is a way how to customise it.
Why is that a bad idea to use whitelist_domains and whitelist_senders on DirectAdmin servers? Check the article to learn details.
Should you need to install old and unsafe PHP 5.x on FreeBSD 12.x server with DirectAdmin here you can find a short guide on how to achieve it.