Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 337

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Fed holds interest rates steady: Here's what that means for credit cards, savings rates, mortgages and car loans
Chairman Warsh drastically alters Fed rate statement. Here's what's changed
CME CEO Terrence Duffy says the exchange operator will sue CFTC over perpetual futures
Inside India newsletter: Anthropic curbs ignite AI debate in India — efforts 'too slow, way too small'
Fed holds rates steady, pares down statement to remove cutting bias
Beef: Beef Season 2
Star City: Dark Forest
Here are the five big takeaways from Kevin Warsh's first meeting as Fed chairman
Google Gemini co-lead Noam Shazeer leaves for OpenAI
Defense contractors would be barred from buying back their stock in bill approved by Senate panel