Vesta Control Panel - Forum

I am not a victim of a hack %100 sure, you can browse my site with any ?p=xxxxx when I take the site back to cpanel (apache) the issue stops and the site returns 404 for ?p=xxxxx pages. I never use nulled scripts. jesus (I'm not even christian) I didn't ask people's opinion if I got hacked!!!, this ...

Can you guys please put your wordpress sites here so that we can check if the same behavior happens in your vesta/nginx/php-fpm configurations.

I am having a weird issue. At the moment I am hundred percent sure it is not some sort of hacking/injection issue. I triple checked everything and took best measures I can. I noticed that I am getting traffic to urls like hxxps://www.outdoorhaber.com/page/2?p=online-casino-usa (pls replace xx with t...

imperio wrote:

cagatay wrote:lol it is already May :D

cagatay, what are you doing here ? :))
Cpanel is realy cool :))

yes man, I even forget I have a server running somewhere. I am receiving notifications when somebody makes comment here.

lol it is already May :D

patstan: please backup your Statement by defining " a lot of Bugs " you've encountered and the " Security issues " you observed. Don't just spread words of " terror " without a valid discussion. and remember, Security is a Process, not a product. https://forum.vestacp.com/viewtopic.php?f=10&t=6980 ...

After struggling with vesta for a year, now I moved to cpanel. vesta is a great project, but not definitely for me. cpanel costs $15 per vps, but worth every penny.it has cphulk, which works great against all types of bruteforce, it isolates accounts from eachother pretty well, one of the most impor...

You can use apache "basedir" template to use php open_basedir protection. Also modify /etc/php.ini and set disable_functions option. Examples from google: http://www.databaseskill.com/3343256/ or http://lowendtalk.com/discussion/37009/php-disable-functions-for-cpanel-shared-hosting or disable_funct...

Hello, you can try to investigate that python processes using lsof: lsof -np PID Check internet connections: netstat -naptu Install rkhunter and check rootkits rkhunter --update; rkhunter --check seatch new php files (10 days old in example) find /home/admin -type f -name "*.php" -mtime -10 -ls Che...

ok brothers and sisters, CSF did the job, mofo gave up for this time. I think my server is compromised, but at least it is working.