My Experiments for Truth.

###################################################### apt install build-essential zlib1g-dev libssl-dev mkdir /var/lib/sshd chmod -R 700 /var/lib/sshd/ chown -R root:sys /var/lib/sshd/ useradd -r -U -d /var/lib/sshd/ -c "sshd privsep" -s /bin/false sshd wget -c https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-8.0p1.tar.gz tar -xzf openssh-8.0p1.tar.gz cd openssh-8.0p1/ apt install libpam0g-dev libselinux1-dev ./configure --with-md5-passwords --with-pam --with-selinux --with-privsep-path=/var/lib/sshd/ --sysconfdir=/etc/ssh make make install ###################################################### In some cases u will get broken packages when doing the install then you can do the below steps: root@logserver:~# apt install build-essential zlib1g-dev libssl-dev  Reading package lists... Done Building dependency tree        Reading state information... Done build-essential is already the newest version (12.4ubuntu1). zlib1g-dev is already the newest version

If you have cpanel license and can update it to the latest non-vulnerable patched version, then it is the easiest fix , else please do the below steps: Complete below modification and restart exim, also check mail service by sending test mail. Also make sure to take backup of exim.conf, before modification Open /etc/exim.conf, SEARCH FOR acl_not_smtp:* and add below content ############################### deny     condition = ${if lt {$exim_version}{4.92}{1}{0}}     condition = ${if forany{<,$recipients}{match_local_part{$item}{\N^.*\$\{.*$\N}}{yes}{no}}     message = restricted characters in recipient address deny     condition = ${if lt {$exim_version}{4.92}{1}{0}}     condition = ${if match{$sender_address_local_part}{\N^.*\$\{.*$\N}{yes}{no}}     message = restricted characters in sender address # END INSERT 000_restricted_chars # BEGIN INSERT resolve_vhost_owner warn         condition   = ${if eq{$originator_uid}{${perl{user2ui