We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on Vesta 2.0 and expect to release it by the end of 2024. Read more about it: https://vestacp.com/docs/vesta-2-development
Search found 21 matches
- Mon Apr 09, 2018 7:09 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 859004
Re: Got 10 VestaCP servers exploited
But after the update to 0.9.8-20 anyone have been hacked? Or this update is solving the problem? Got hacked on DO, then migrated to another provider, new clean VDS with fresh Vesta install just got 100% CPU load with 5k iops disk and 400 mbit net - so I even can't login via ssh. Rebooted... Now try...
- Mon Apr 09, 2018 3:58 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 859004
Re: Got 10 VestaCP servers exploited
i have not heard anyone bypassed Google Authenticator. its looks safe to me , also its not about perfect security , it add security layer , it slow down attackers a bit , better than nothing. No, sorry, I disagree. That's maybe marginally useful for a situation where someone already has your passwo...
- Mon Apr 09, 2018 3:29 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 859004
Re: Got 10 VestaCP servers exploited
good that my vps is safe :) . now hope they approve security enhancements , months ago multiple time i suggests 2 factor auths and google captcha but they decline it , childish arguments they give , i do not want to enter captcha for my own panel , now here you go hope you learned lesson Tell me pl...
- Mon Apr 09, 2018 1:07 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 859004
Re: Got 10 VestaCP servers exploited
how certain of that are you? while it's true that the default policy is DROP, did you actually CHECK if the change to that rule got reflected by iptables and really blocked access from foreign IPs? so far you are the only one to be hacked with claiming to have had that port closed/whitelisted. no o...
- Mon Apr 09, 2018 12:48 pm
- Forum: General Discussion
- Topic: Two servers are hacked today via Vestacp
- Replies: 21
- Views: 33204
Re: Two servers are hacked today via Vestacp
See the top alert? The team has released a security fix, build 20. That top alert is about as useful as soggy bread :) it doesn't link to anything, and the repos are still not populated. I though it, the alert at the top bar is just a reminder that VPSers can update to the latest build. I just logg...
- Mon Apr 09, 2018 5:49 am
- Forum: General Discussion
- Topic: Two servers are hacked today via Vestacp
- Replies: 21
- Views: 33204
Re: Two servers are hacked today via Vestacp
This happened on Debian 8.1 as well, so I doubt it's OS dependent. I had to put iptables in DROP mode and only allow traffic to my specific IP. I also dropped conntrack's max connections to avoid getting suspended and backed up my shit. In the meantime I was trying to reinstall the server so I can ...
- Mon Apr 09, 2018 5:48 am
- Forum: General Discussion
- Topic: Two servers are hacked today via Vestacp
- Replies: 21
- Views: 33204
Re: Two servers are hacked today via Vestacp
This happened on Debian 8.1 as well, so I doubt it's OS dependent. I had to put iptables in DROP mode and only allow traffic to my specific IP. I also dropped conntrack's max connections to avoid getting suspended and backed up my shit. In the meantime I was trying to reinstall the server so I can ...
- Mon Apr 09, 2018 5:44 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 859004
Re: Got 10 VestaCP servers exploited
The fix has been released just now! As usually there are 3 ways to update your server: 1. Via web interface - Login as admin - Go to updates tab - Click un update button under vesta package 2. Via package manager - SSH as root to your server - yum update / apt-get update && apt-get upgrade 3. Via G...
- Mon Apr 09, 2018 4:58 am
- Forum: Debian/Ubuntu
- Topic: I meet this error during the installation
- Replies: 1
- Views: 5496
Re: I meet this error during the installation
Just a hunch but I think they removed the packages to prevent unnecessary exposure of new installs to the same exploit. So until they repackage the patched stuff, we're out of luck. I'm in the same boat.
- Mon Apr 09, 2018 4:39 am
- Forum: General Discussion
- Topic: Two servers are hacked today via Vestacp
- Replies: 21
- Views: 33204
Re: Two servers are hacked today via Vestacp
This happened on Debian 8.1 as well, so I doubt it's OS dependent. I had to put iptables in DROP mode and only allow traffic to my specific IP. I also dropped conntrack's max connections to avoid getting suspended and backed up my shit. In the meantime I was trying to reinstall the server so I can g...