NethServer Version: 7
We use Nethserver 7.6 as our internet firewall/gateway. We process credit card payments through our internet connection(s), and as such we are subject to Payment Card Industry Data Security Standards (PCI DSS) which include external scanning of our red ports. PCI DSS requires PHP 7, not PHP 5 due to multiple found vulnerabilities and PHP 5.4 having reached end of support. I love this distro and the many features it uses like multiwan, Suricata and DPI that I could not easily implement myself, however, I need the most recent versions of PHP and Apache installed. When I manually install PHP 7.2, it breaks the web interface. I have not even attempted Apache yet. Are there plans to upgrade the distro to use the current secure versions of PHP and Apache, or should I abandon Nethserver?
I have been using Nethserver for 3+ years and do not want to go back to ClearOS or get locked into a vendor’s product sales/lifecycle.
( on a completely different note, I have ssh access to the nethserver firewall, but the :980 port browser interface initially refused all connections, but after opening the port on the firewall (iptables -I INPUT 1 -i em1 -p tcp --dport 980 -j ACCEPT
) it no longer rejects, but just times out.)