If you have a web site do a security/vulnerability scan on your VDS, it will most likely report several vulnerabilites that are commonly false positives.

Here's why:

The security tools check your VDS for what version of ftp, email, ssh, web server, etc. it is running.  If the version number and/or the patch level number is not the latest, it is assumed that your version still has the old vulnerabilites and needs to be updated.

However, the Red Hat ES operating system and the Sphera VDS management platform release their own proprietary update distributions which do not use the same version numbers (especially patch levels) that the actual software manufacturers use.  So, even though our servers are up-to-date, the scan tools cannot tell based on the differing version numbers and errantly report vulnerabilites.

If you have any further questions or concerns regarding updates and vulnerabilites, please feel free to contact us at 866-hardhat or open  a support ticket at https://www.hardhathosting.com/helpdesk