Question to VestaCP legitimate owners. Is original VestaCP secure?

deanhills · Post by **deanhills** » Sat Apr 03, 2021 9:15 pm

I've been using the original version of VestaCP since end of 2014. I don't have any complaints and still think it is an excellent panel, but would like to ask the Admin what the security status is of the script. Is the script still being regularly updated? I hear about VestaCP forks that are being developed and pick up on negative discussions that the original VestaCP is no longer as well supported. I hear most of the staff of VestaCP left to create a new CP - Hestiacp and there are not enough staff left at VestaCP for continuing up to date development. There are a shortage of updates for the original VestaCP script. Is this true?

BTW members at post4vps.com have tried HestiaCP and think it has too many bugs. So for those thinking in that direction, you need to do your research first. Ditto the forks. There seem to be more than one fork out there enough to make any person thoroughly confused and giddy in the head.

For example. Here is a discussion at GitHub that has me as a user of original VestaCP VERY confused.
https://github.com/serghey-rodin/vesta/issues/2006

So if the owner/s of VestaCP could set the record straight with regard to VestaCP - the original script - this will be much appreciated. I will then advise our members at post4vps.com.

Post by **ScIT** » Sun Apr 04, 2021 3:35 pm

Probaly owners will never reply. As you already noticed, there are a lot of critical exploits unfixed in vesta, the only person who is able to release a new version to the repository doesnt react.

I would suggest to switch to hestiacp or myvestacp, using vestacp isnt a good idea anymore.

Post by **dpeca** » Mon Apr 05, 2021 11:57 am

I (and people from Hestia) fixed all reported issues.
So, fixes are ready, forwarded to Serghey, and now Serghey should apply them and release the update.

All fixes are immediately applied in myVesta and Hestia.
Latest two fixes I fixed yesterday.

deanhills · Post by **deanhills** » Mon Apr 05, 2021 8:37 pm

Thank you for the feedback and advice @dpeca & @sCIT. Many thanks for responding.

First time I heard about myvestacp. I'll definitely check it out.

hestiauser · Post by **hestiauser** » Mon Apr 12, 2021 1:48 pm

VestaCP is vastly outdated and exploited with no security patches or updates for a long time now.

I suggest you to use HestiaCP, fork of VestaCP that is also open-source just updated, with new features and not dead as VestaCP.

I don't know why is VestaCP still up and in options to install with some hosting providers, because it shouldn't be.

HestiaCP is fork of VestaCP and you can check it out on https://hestiacp.com and join Discord for quick support or post on forum.

Most of Hestia developers are from original VestaCP team, so give them a credit and try HestiaCP, donate if you like it and support them.

Best reguards,
Nikola.

Vesta Control Panel - Forum