Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 212

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Fed still expects to cut rates once this year despite spiking oil prices
Fed votes to hold rates steady, notes 'uncertain' impacts from Iran war
AI, crypto industries dump millions into Illinois primaries to mixed results
Alternatives to Outlook, Gmail and AOL for a web-based Email Provider?
Looking for great books, essays and podcasts about fundraising?
Social Media Poster - Auto-share your Q2A content everywhere
Movie: War Machine
Fed holds interest rates steady — here’s what that means for consumers
Oil jumps 4% as Iranian retaliatory strikes on Qatar’s key energy facility stoke supply worries
Asia markets track Wall Street losses as Iran war fuels energy worries; BOJ rate decision on deck