I had the RaQ3 with every available patch from cobalt, pkgmaster, etc... Site was hacked, some sendmail exploit I believe, cobalt just stopped supporting the RaQ3 and there were exploits I wasn't aware of.
So, wiped the machine, RaQ4 was installed from scratch, including all the latest security updates.
This time I took it a step forward, installed a firewall blocking all ports that weren't critical, used SSL to create a certificate so that when I login to the admin panel the password would be encrypted. Every single patch I was aware of was installed.
Not a week later the site was hacked again, this time what appeared to be a PHP exploit (even though I didn't have one PHP page on my site, it was enough that PHP was running as an apache module).
I disabled PHP and about 3 weeks later the site was completely wiped. They erased everything.
I don't know about you, but I had enough of that, I'm going to be moving to a new host. For the same price I was paying ($89/mo), today I can get a more powerful machine running something else! (freebsd/RH Enterprise, heck even Windows 2003 server).
My main occupation is not a sys admin, I have work to do and I can't take days out each time to fix the web site!
well, raq3+4 are both eol, no offical updates coming from sun, noone _has_ to make patches/updates packages for it, not pkgmaster nor someone else, if they do, then your lucky, if they dont, you need to make your own or hire someone who looks at you box and does upgrade it when needed
as said above securing a box is not only installing all up2date packages, its more work than that, so if you plan to have your box not hacked again, best hire someone to do the work for you, and even then it might get hacked
We recommend to our clients that they migrate off of the Raq platform. The Raq 3 has a number of exploits that require you to compile a number of programs to fix. These compilations are very finicky and not easily migrated into an rpm or pkg file.
Raq 4's suffer from a number of issues that can be fixed by 3rd party updates and or redhat rpms. Some other issues must be resolved by some server hardening methods. However, in the long run, I think you will find migrating to a new platform with some life in it to be more cost-effective.
There are migration tools/services available to move off the raq to Ensim, Plesk, and Cpanel (I think). We've done some raq 4 to ensim migrations. The key problem is mysql driven sites due to very differently mysql layouts. For simple sites the raq to ensim migrations were very smooth. I've not done a plesk to raq migration but there are companies that handle such items. Make sure that the mailling lists, mysql and other add-ons get moved as well. Often overlooked are webmail pref files, stats and similar items.
We save you time, money, and frustration by handling the server management tasks required to run an online business successfully.
No prodding required. We just do it right the first time. Red Hat, MySQL, Plesk, and cPanel certified staff.
It ain't worth it... my site is pretty static, I just moved off the RAQ, for the same monthly price I got a 2.4ghz celeron with 1TB traffic , 512mb ram, 80gb disk and 100mbit network connection.
Compare that to the 300mhz machine I got my RaQ on, 128mb ram, 10gb drive and 10mbit network connection...
Not to mention that I had the latest versions of mysql and php installed in minutes. As far as hiring someone to take care of the site, I can't spend that kind of money, I'm just a small business that requires decent bandwidth so shared connection won't work for me.