I have cPanel.WHM updates set to this config:
cPanel/WHM Updates Automatic (STABLE tree)
Package Updates Automatic
Security Package Updates Automatic

version information:
Kernel version 2.4.21-32.0.1.ELsmp
cPanel Build 10.2.0-RELEASE 82

Machine Type i686
Apache version 1.3.33 (Unix)
PERL version 5.8.0
PHP version 4.3.11
MySQL version 4.0.24-standard
exim v 4.43
perl 5.8.0

Even though I am on the latest cpanel release, I think exim and perl are outdated.

1. Doesn't cpanel update them? Will appreciate if someone can confirm their versions and guide me to update exim and perl.

exim.org - The latest release is 4.51. This is a bug fix and features release in the 4.xx series of releases - see the download pages. Documentation has been updated for 4.50. Versions 4.43 and prior had some security related bugs and should either be patched or updated to 4.44 or later


2. Also http://layer2.cpanel.net/ says that the latest stable is cPanel Build 10.2.0-RELEASE 83 but my version stays put at cPanel Stable Build 10.2.0-RELEASE 82 even after I try to upgrade it. Is anybody on cPanel Stable Build 10.2.0-RELEASE 83 yet.

That's because you're setup to only update to STABLE releases, that's a RELEASE release, which is why your server is not picking it up.

This is what is confusing me, Paul...

I have chosen a STABLE tree and cpanel updates to a release.

So, now I have changed it to Manual Updates Only (RELEASE tree) in the update config too...


Can you help me with my first question...

You can upgrade exim by running:

/scripts/updatenow
/scripts/eximup

It probably has RELEASE installed from when you server was commissioned. You should either change the update config to RELEASE (I'd recommend that), or run an update from shell to force it back down to STABLE with:

/scripts/upcp --force

I wouldn't worry about perl unless you have a good reason for wanting to upgrade. If you have, then you can download the latest version that cPanel provides from http://layer1.cpanel.net and use their installer. Once perl is upgraded you should then run:

/scripts/rpmup

Thanks chirpy, exim updated v 4.51 and on the perl update...somebody launched a process through my tmp folder...

Malicious Processes
26960 nobody 25 0 2460 1112 632 R 24.0 0.1 4236m 3 perl
11412 nobody 25 0 2816 1672 856 R 6.3 0.1 0:54 2 perl



Its been taken care of by the planet techs, but...

That's more than likely caused by a vulnerable php script running on the server - the most likely candidates are phpBB or phpNuke. Though it won't cover all instances necessarily, you should into the WHM > Addon Modules > Addon Script Manager. Refresh the browser and scroll the left window to the bottom and go into WHM > Addons > Addon Script Manager and update any and all instances of phpBB and phpNuke if there.

You might also want to look at installing mod_security too (also available as a WHM Addon).

Also running /scripts/securetmp might be a good idea!