What we at Flownative think and do

Flownative Blog

Insights into our work, sneak peeks at projects, interesting technology, …

  • Updating Neos - Why, When and How

    On this year's Neos Conference I presented a talk on updating Neos. I tried to answer three questions:

    1. Why you should be updating
    2. When you should be updating
    3. How to do updates
    The video

  • SSH Host Updates and Key Rotation

    On Tuesday, 08.03.2022, we will roll out a new SSH server configuration and provide new SSH host keys. Expect a warning when you try to connect to your instance via SSH after our upgrade and replace the old key in your known_hosts file with the new fingerprint.

    Crypto is evolving

    Security is an ongoing process and requires continuous adaption. As new weaknesses are discovered and new algorithms are being developed, configuration must be adjusted and cryptographic keys be replaced.

  • Removal of outdated PHP versions 7.2 & 7.3 from Beach

    PHP 7.2 and 7.3 have served us well over the past years. But now it's time to move on–to PHP 8.

    No longer supported by the developers, PHP 7.2 and 7.3 do no longer receive any updates at all. As the PHP website states:

    Each release branch of PHP is fully supported for two years from its initial stable release. […]

    After this two year period of active support, each branch is then supported for an additional year for critical security issues only. […]

  • Support for PHP 8.1 available

    PHP 8.1 is now available in Beach and Local Beach. Given the new features it provides and the improved overall performance, it is really worth trying it out.

    How to use it in Beach

    For your instance switch the PHP version to use and deploy again:

    Selecting the PHP version for an instance in Flownative Beach Select PHP 8 for your Beach instance How to use it in Local Beach

  • Log4j zero-day vulnerability (Log4Shell)

    A critical zero-day exploit in the popular Java-based logging framework Log4j was published last Friday afternoon. Since it is easy to exploit and its widespread use, Germany's BSI assigned its highest warning level to this vulnerability.