I read about the recent security vulnerability in Plone and the associated hotfix - how do I install the hotfix on my Plone site here at WebFaction? asked 08 Feb '11, 18:13 seanf |
Thanks for the amazing question, Sean! ;-) You can install the CVE-2011-0720 hotfix as follows: For Plone < 3.2 installed via our control panel (and other old-style Zope instances) First, SSH into your server, then run the following commands to download and install the hotfix product:
Next, stop your Zope and start it in foreground mode:
Watch the output - you'll know the hotfix is installed correctly when you see something like the following:
Now hit CTRL-C to terminate Zope, then restart it in daemon mode:
For Plone >=3.2 installed via our control panel (and other Plone buildouts) First, SSH into your server, then run the following commands to download and install the hotfix product:
Next, stop your Zope and start it in foreground mode:
Watch the output - you'll know the hotfix is installed correctly when you see something like the following:
Now hit CTRL-C to terminate Zope, then restart it in daemon mode:
That's it - you're done! answered 08 Feb '11, 18:14 seanf Is there a way to see if the hotfix has been installed properly from the ZMI?
(09 Feb '11, 07:49)
onmountain
It should appear as an installed product in the top-level control panel object in your ZMI, but as far as I know, the recommended way to confirm a successful patch is by checking the output when running Zope in the foreground (or possibly by checking in your event log).
(09 Feb '11, 14:33)
seanf
|