Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 215

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
As Americans struggle with rising costs, many states’ unemployment benefits fall short, analysis finds
Disney embarks on new chapter as Josh D'Amaro takes over as CEO
Iran war poses challenges to high-margin Middle East car market
Looking for great books, essays and podcasts about fundraising?
Social Media Poster - Auto-share your Q2A content everywhere
Scarpetta: Full first Season
Trump warns to 'blow up' South Pars gas field in Iran if strikes against Qatar energy continue
Oil jumps 4% as Iranian retaliatory strikes on Qatar’s key energy facility stoke supply worries
A Labubu movie is on its way as Pop Mart expands the iconic toy franchise
Bain Capital taps buyer interest for Bridge Data Centres, offering up to 70% stake, sources say