Reliable Penguin is launching the RP News mailing list, a dedicated way for clients to stay informed about important updates from our team.

We encourage all Reliable Penguin clients to join the list so they can receive timely notices about:

• Important security updates
• Operational notices and service-related announcements
• New Reliable Penguin product offerings
• Opportunities, events, and other updates from our team

Our goal is to make sure clients have a clear and reliable way to hear about information that may affect their websites, hosting, infrastructure, support, or services with Reliable Penguin.

Why join?

RP News will help you stay ahead of important changes and opportunities. Some updates may be informational, while others may include security or operational details that are important for your organization to review.

By joining the mailing list, you can make sure the right people on your team receive these updates directly.

Who should subscribe?

We recommend that each client organization have at least one primary contact subscribed. Depending on your team, you may also want to include:

• Website administrators
• IT or security contacts
• Operations managers
• Marketing or communications contacts
• Anyone responsible for Reliable Penguin services within your organization

Join the RP News list

Please use the signup form below to subscribe to the RP News mailing list and stay informed about Reliable Penguin updates, important notices, new offerings, and opportunities.

If you are unsure who from your organization should be subscribed, please contact Reliable Penguin support and we will be happy to help.

Last updated: May 15, 2026

Reliable Penguin is aware of CVE-2026-42945, a vulnerability affecting certain nginx versions prior to 1.31.1 and 1.30.1. The issue may allow denial of service in affected configurations, and remote code execution may be possible in limited circumstances.

This vulnerability may affect some Plesk-managed Linux systems depending on the installed nginx version and rewrite-rule configuration.

Reliable Penguin is actively reviewing managed systems for exposure to this issue. Our response includes checking nginx versions, reviewing potentially affected rewrite rules, confirming relevant system protections where applicable, and applying vendor-recommended mitigations or updates.

Reliable Penguin now follows an update-and-notify security maintenance model for managed systems. Under this policy, automatic security updates are enabled by default, and critical or high-priority security updates may be applied as soon as practical rather than waiting for a scheduled maintenance window. Clients are notified after updates that require or result in a system reboot, while routine service restarts generally do not trigger separate notifications.

For this nginx vulnerability, Reliable Penguin may apply mitigations or vendor patches without prior client approval when delaying action would create unnecessary security risk. No system reboots are required for the currently recommended mitigations or expected update. A brief nginx service restart or reload may occur as part of mitigation or patching, but this is considered routine security maintenance and will not typically trigger a separate notification.

Customers do not need to take action unless they manage their own nginx, Plesk, or server configuration outside of Reliable Penguin’s managed services. Customers with self-managed systems should review vendor guidance, confirm whether affected nginx versions and rewrite rules are present, and apply the recommended update or mitigation.

We will continue monitoring vendor guidance and will update this notice as new information becomes available.

Reference: Plesk advisory for CVE-2026-42945

Security Notice: CVE-2026-46333 in Linux

Last updated: May 15, 2026

May 16, 2026

CloudLinux and KernelCare have both released updates to address CVE-2026-46333. Alma Linxu has a patch in the testing channel which we expect to enter general distribution over the weekend.

May 15, 2026

Reliable Penguin is aware of CVE-2026-46333, a recently disclosed Linux kernel vulnerability involving `ptrace` access control logic.

We are monitoring guidance from the Linux kernel maintainers, CloudLinux, AlmaLinux, Ubuntu, Red Hat, KernelCare, and other relevant upstream vendors. As patched kernels and live patches become available from the appropriate upstream sources, we will apply updates across affected systems and perform any required reboots.

Consistent with Reliable Penguin’s update-and-notify model, critical and high-priority security updates may be applied as soon as practical rather than waiting for a scheduled maintenance window. Clients with Enterprise level support plans will be notified when possible after updates that require or result in a system reboot. When practical, reboots will be performed between midnight and 6:00 AM Eastern Time, though urgent security conditions may require action outside that window.

No customer action is required at this time unless contacted directly by Reliable Penguin support.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-46333

https://tuxcare.com/cve-tracker/cve/details/cve-2026-46333

https://almalinux.org/blog/2026-05-15-ssh-keysign-pwn-cve-2026-46333/

https://blog.cloudlinux.com/ptrace-exit-race-cve-2026-46333-mitigation-and-kernel-update

https://lwn.net/Articles/1073060/

Reliable Penguin offers fully Managed Domain Registrar services including new registrations and transfers. Domain registration and transfers are mission critical and can be confusing but our team will handle all the technical details to register or transfer a domain allowing you to focus on your business.

Benefits of our Managed Domain Registrar service include:

• Support from our friendly, competent and experienced engineers including managed inbound domain transfers for seamless transitions.
• Domain registration via our OpenSRS partnership with guaranteed ICANN compliance including automated registrant validation and expiration reminder emails.
• Domain Name Service (DNS) hosted on Reliable Penguin’s ultra-reliable platform built on Amazon Web Services.
• Automatic domain renewals to avoid accidental expirations.
• Optional domain contact privacy to keep your personal information confidential.

Effective July 1, 2024, the following rates will apply to all new domain registrations, renewals and transfers of existing domains.

Reliable Penguin can provide registration for any of over 700 popular gTLDs and ccTLD. Contact support for pricing for additional top level domains.

The optional Domain Contact Privacy feature is available for an additional $5/year per domain.

Netgate has announced price changes for the "Netgate pfSense Plus Firewall/VPN/Router" licenses purchased through the AWS Marketplace. ate pfSense Plus Firewall/VPN/Router". The previous and new per hour prices are as follows:

t2.small - Previous: 0.08 / New: 0.12
t3.micro - Previous: 0.08 / New: 0.12
t2.micro - Previous: 0.08 / New: 0.12
t3.small - Previous: 0.08 / New: 0.12
t2.large - Previous: 0.08 / New: 0.12
t3.nano - Previous: 0.02 / New: 0.04
t3a.nano - Previous: 0.02 / New: 0.04
t3a.medium - Previous: 0.08 / New: 0.12
t3a.small - Previous: 0.08 / New: 0.12
t2.medium - Previous: 0.08 / New: 0.12

For the typical customer this change will result in a $30/most increase in AWS cost. This change takes on July 1st, 2024.

Email support@reliablepenguin.com with any questions.