[security] AP-01-AP-07 vulernability fixes [file] symlink usage disables optimized shadow assertions. Use referent in permission calculations to close symlink attack loophole. [dns] domain_hosted() uses cp-proxy endpoint to perform additional checks in multi-server setups [filesystem] fuser support [backups] backup_dbs.php does not evaluate the state of file prior to processing backup. An attacker can use a symlink attack to gain ownership of sensitive files [SSL Certificates] revert CSR generation