In September of 2014, the team posted a Service Advisory asking private cloud partners to upgrade from Apache HTTP Server version 2.2 to Apache HTTP Server version 2.4. If you are a private cloud partner who did not upgrade before the x360Sync 2.5.1 release, you must manually upgrade to avoid security vulnerabilities.
If you have questions about the version of your x360Sync or Apache server, please contact https://axcient.com/partner-support/
Possible Security Vulnerabilities
If you are a private cloud partner who did not upgrade from Apache HTTP Server version before the 2.5.1 release, you will not receive future updates to OpenSSL. This can cause security vulnerabilities and interfere with compliance regulations.
- Download the latest x360Sync Server version, but do not install. The latest x360Sync Server version can be found at http://download.anchorworks.com/x360SyncServer-[latest x360Sync Server version number]. For example, if the latest x360Sync Server version is 18.104.22.1682, you will navigate to: http://download.anchorworks.com/x360SyncServer-22.214.171.1242.exe. The latest x360Sync Server version is listed in [Target Drive]:\x360SyncServer\conf\update.ini found on your x360Sync private cloud server.
- On the x360Syncserver, launch regedit and browse to:
Note: We recommend backing up the registry before making changes.
- Update the Version value to 2.5.0.
- Run the x360Sync Server installer and follow instructions in the Installer Wizard.
Note: We recommend creating a copy of x360Sync’s http.config file before running the Installer Wizard.