Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 189

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Where can I ask the MetaFilter board all my burning questions?
Trump said tariffs could someday 'substantially replace' income taxes. What policy experts say
Netflix ditches deal for Warner Bros. Discovery after Paramount’s offer is deemed superior
Core wholesale prices rose 0.8% in January, much more than expected
This obscure ETF may hold the key to whether the bull market lasts
Answered: Can I upload video in q2a by a plugin?
South Korea's Kospi sees worst day in 19 months amid broader decline in Asia stocks
Monarch: Legacy of Monsters: Cause and Effect
Special Event: Taylor Tomlinson: Prodigal Daughter
Movie: Mile End Kicks