First of all i want to say thanks for all contributors and developers of Zpanel/Sentora till now.
Regarding the security part mentioned by aaronlroberts i can see that those have nothing to do with Sentora after all. Sentora is a "PHP program" that interacts with services developed by other groups/individuals/community(ex: bind, proftpd, apache, php, etc) in order to make your life easier when you configure your server. It is not Sentora fault that you dind't update your services accordingly.
I agree that incompatibilities may appear between that Sentora is writing in config file of those daemon and the upgrade of the daemons and those should be address further to sentora but blaming sentora for vulnerabilities which are not inside his core is not ok.
If i would like to see security improvements i will want most probably things like two-way auth
Regarding the security part mentioned by aaronlroberts i can see that those have nothing to do with Sentora after all. Sentora is a "PHP program" that interacts with services developed by other groups/individuals/community(ex: bind, proftpd, apache, php, etc) in order to make your life easier when you configure your server. It is not Sentora fault that you dind't update your services accordingly.
I agree that incompatibilities may appear between that Sentora is writing in config file of those daemon and the upgrade of the daemons and those should be address further to sentora but blaming sentora for vulnerabilities which are not inside his core is not ok.
If i would like to see security improvements i will want most probably things like two-way auth
