mirror of
https://github.com/myvesta/vesta
synced 2025-07-06 04:51:54 -07:00
typo fix
This commit is contained in:
parent
4020770fdf
commit
1e89aae6a9
1 changed files with 2 additions and 2 deletions
|
@ -17,13 +17,13 @@ Features of myVesta
|
|||
|
||||
+ [Support for multi-PHP versions](https://github.com/myvesta/vesta/blob/master/src/deb/for-download/tools/multi-php-install.sh)
|
||||
|
||||
+ You can limit the maximum number of sent emails (per hour) [per mail account](https://github.com/myvesta/vesta/blob/master/install/debian/10/exim/exim4.conf.template#L105-L106) and [per hosting account](https://github.com/myvesta/vesta/blob/master/install/debian/10/exim/exim4.conf.template#L65-L66), preventimg hijacking of email accounts and preventing PHP malware scripts to send spam.
|
||||
+ You can limit the maximum number of sent emails (per hour) [per mail account](https://github.com/myvesta/vesta/blob/master/install/debian/10/exim/exim4.conf.template#L105-L106) and [per hosting account](https://github.com/myvesta/vesta/blob/master/install/debian/10/exim/exim4.conf.template#L65-L66), preventing hijacking of email accounts and preventing PHP malware scripts to send spam.
|
||||
|
||||
+ You can see [what PHP scripts are sending emails](https://github.com/myvesta/vesta/blob/master/install/debian/10/php/php7.3-dedi.patch#L50), when and to whom
|
||||
|
||||
+ You can completely "lock" myVesta so it can be accessed only via https://serverhost:8083/?MY-SECRET-URL
|
||||
+ During installation you will be asked to choose a secret URL for your hosting panel
|
||||
+ Literally no PHP scripts will be alive on your hosting panel (won't be able to get executed), unless you access the hosting panel with secret URL parameter. Thus, when it happens that, let's say, some zero-day exploit pops up - attackers won't be able to access it without knowing your secret URL. PHP scripts from VestaCP will be simply dead - no one will be able to interact with your panel unless they have the secret URL.
|
||||
+ Literally no PHP scripts will be alive on your hosting panel (won't be able to get executed), unless you access the hosting panel with secret URL parameter. Thus, when it happens that, let's say, some zero-day exploit pops up - attackers won't be able to access it without knowing your secret URL - PHP scripts from VestaCP will be simply dead - no one will be able to interact with your panel unless they have the secret URL.
|
||||
+ You can see for yourself how this mechanism was built by looking at:
|
||||
+ https://github.com/myvesta/vesta/blob/master/src/deb/for-download/php/php.ini#L496
|
||||
+ https://github.com/myvesta/vesta/blob/master/web/inc/secure_login.php
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue