We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Search found 16 matches
- Tue Apr 10, 2018 5:33 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
Yesterday I installed 0.9.8-20 on a fresh vultr centos 7.4 everything was fine the whole day until I ran yum update today, centos and vesta had updates so I accepted them and then the server was infected. Now I am afraid to run yum update after installing vesta. So I guess 0.9.8-20 is affected as w...
- Mon Apr 09, 2018 2:26 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
in my case : all vesta which are not install exim and dovecot are safe --exim no --dovecot no (while install) but some of my vesta which install exim and dovecot were infected with gcc.sh To add to that, I shut down the panel on two servers hosting hundreds of customers late last night (US/Central,...
- Mon Apr 09, 2018 1:45 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
Can it be confirmed whether the patch contained generic security fixes that were proposed to potentially be connected or if the patch is designed to directly address the common attack vector used to compromise servers in the last 48 hours?
- Sun Apr 08, 2018 8:28 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
- Sun Apr 08, 2018 7:41 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
New commits here: https://github.com/serghey-rodin/vesta/commits/master I'm interested to see whether these commits are known to be related to the issue or just things discussed in the thread and taken as likely candidates. Whether this is patching the hole or just boarding up a few windows that mi...
- Sun Apr 08, 2018 7:34 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
while only you could not see the api of vesta to be accessed (because all vesta access logging goes to /dev/null per default) What are you doing to your installs? All of my API access is logged to /usr/local/vesta/log/system.log. Also auth for API is logged to /usr/local/vesta/log/auth.log. If the ...
- Sun Apr 08, 2018 6:59 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 711547
Re: Got 10 VestaCP servers exploited
while only you could not see the api of vesta to be accessed (because all vesta access logging goes to /dev/null per default) What are you doing to your installs? All of my API access is logged to /usr/local/vesta/log/system.log. Also auth for API is logged to /usr/local/vesta/log/auth.log. If the ...
- Fri Jan 30, 2015 9:15 pm
- Forum: Mail Server
- Topic: Import all email in a migration to VestaCP
- Replies: 4
- Views: 6141
Re: Import all email in a migration to VestaCP
Many thanks. I think I can use IMAP but I'm not sure. I have one question about the process to import the account with all old mails to the VestaCP mail accounts. When I do that process, have I to create a new account in VestaCP manually or appears automatically? You would need to manually create t...
- Wed Jan 28, 2015 12:04 am
- Forum: Web Server
- Topic: subdomain redirects to another website all together
- Replies: 4
- Views: 4712
Re: subdomain redirects to another website all together
Check that the A record points to the correct IP, verify that the virtual host is configured properly in /home/username/conf/web in the relevant files, which may be any combination of apache2.conf, sapache2.conf, httpd.conf, shttpd.conf, nginx.conf, snginx.conf. You'll need to know a little about vi...
- Tue Jan 27, 2015 10:26 pm
- Forum: Mail Server
- Topic: Import all email in a migration to VestaCP
- Replies: 4
- Views: 6141