PMSS 2026-01-21 Released – Major Stability & Security Update!
We're proud to announce the release of PMSS 2026-01-21, our largest update ever. After occasional maintenance throughout 2024 and early 2025, intensive development began in September 2025 — resulting in 622 commits touching 490+ files. This release brings substantial improvements to stability, security, documentation, and operational reliability.
Key Benefits for You and Your Users:
- Seamless Debian Upgrades: Reliable and fully automated support for Debian 11 (Bullseye) and Debian 12 (Bookworm) upgrades from Debian 10.
- Improved Docker Stability: Enhanced rootless Docker environment ensures better container uptime and fewer operational headaches.
- Safer and More Reliable Updates: Redesigned updater mechanism with built-in protections, timeouts, and structured logging to prevent disruptions.
- Enhanced Security Transparency: Two previously identified security vulnerabilities have been completely addressed, documented, and resolved.
- Comprehensive Documentation: Extensive new documentation covering installation, updates, maintenance, recovery procedures, and architectural decisions.
- Smooth Operational Experience: Improved overall reliability with preflight checks, bounded command execution, and fail-soft update philosophy.
- Per-User Resource Limits: Cgroup guardrails with sensible memory floors/caps prevent runaway processes from affecting neighbors.
What's New in This Update:
Multi-Distro Support
- Official support and smooth transition path for Debian 11 and Debian 12 users.
- Continued legacy support for Debian 10 with security updates.
- Native WireGuard kernel module support on Debian 12.
Installer & Updater Overhaul
- Completely reworked
install.sh— TTY detection means prompts work correctly even when piped viawget | bash. - Preflight checks catch problems early: disk space, privileges, distro compatibility.
- Fail-soft updates: bounded execution prevents hangs, individual failures don't abort the whole run.
- Automation-ready with
--dry-run,--non-interactive,--scripts-onlyflags.
Enhanced Rootless Docker
- Improved integration and management via systemd.
- Automatic recovery via watchdog supervision reduces downtime for containerized applications.
fuse-overlayfsdefaults on legacy kernels for broader compatibility.
Comprehensive Documentation
- New guides: installation, updates, maintenance procedures, recovery steps.
- 7 Architecture Decision Records (ADRs) documenting engineering decisions.
- Full incident reports with root cause analysis and corrective actions.
- WireGuard VPN setup and peer management documentation.
Proactive Security Measures
- Fixed and documented critical vulnerabilities to ensure transparency:
- Systemd service hardening with boot-time enforcement and continuous drift correction.
- Shell command guardrails preventing unsafe input handling.
How to Upgrade Your Server
Release vs Testing: The release channel is the stable version, tested and recommended for production. The git/main channel tracks bleeding-edge development — useful for testing new features but may contain regressions.
Managed Seedbox Customers:
We progressively roll out updates to ensure reliability. If you'd like your server updated immediately, simply open a support ticket and request:
"Update PMSS to release 2026-01-21"
Self-Hosted & Dedicated Users:
Fresh Install:
wget -qO- https://github.com/MagnaCapax/PMSS/raw/main/install.sh | bashUpdate to Stable Release:
/scripts/update.php releaseUpdate to Testing/Bleeding Edge:
/scripts/update.php git/mainDist-Upgrade (Debian 10→11 or 11→12):
/scripts/update.php --dist-upgrade=11 --tty # or =12View Complete Release Notes | Review All 622 Commits
We remain committed to providing the most reliable and secure seedbox experience. Thank you for trusting Pulsed Media.
— The Pulsed Media Team
Thursday, January 22, 2026
