Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 306

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Jim Cramer fears SpaceX's IPO could be 'destructive' for the rest of market
Berkshire's new CEO overhauls portfolio, dumping a slate of stocks
Why J&J thinks its new psoriasis pill could be one of its biggest drugs ever
Cerebras' blockbuster IPO boosts hype for SpaceX and OpenAI, but crowds out smaller players
Trump touted Palantir on Truth Social after buying the company's stock, records show
Fellow Californians, How are You Handling the Governor Primary?
This used to be possible... Extracting hardcoded subs using SubRip
Bon Appetit, Your Majesty: Full season
The Boys: The Frenchman, the Female, and the Man Called Mother's Milk
Book: Don Quixote, chapter 3