We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Search found 90 matches
- Mon Apr 09, 2018 7:24 am
- Forum: Mail Server
- Topic: Roundcube may not be safe
- Replies: 2
- Views: 2337
Re: Roundcube may not be safe
its depends on certain php configurations, it is safe under vesta
- Mon Apr 09, 2018 7:23 am
- Forum: Database Server
- Topic: How to enable ssl in phpmyadmin?
- Replies: 1
- Views: 2822
Re: How to enable ssl in phpmyadmin?
use your hostname with le certs installed ?
- Mon Apr 09, 2018 6:59 am
- Forum: Web Server
- Topic: Disable opcache for vhost
- Replies: 2
- Views: 2623
Re: Disable opcache for vhost
you can try to create a custom php.ini under your website's root dir and add this line :
then restart phpfpm service
Code: Select all
opcache.enable=0
- Mon Apr 09, 2018 4:55 am
- Forum: General Discussion
- Topic: Two servers are hacked today via Vestacp
- Replies: 21
- Views: 28012
Re: Two servers are hacked today via Vestacp
This happened on Debian 8.1 as well, so I doubt it's OS dependent. I had to put iptables in DROP mode and only allow traffic to my specific IP. I also dropped conntrack's max connections to avoid getting suspended and backed up my shit. In the meantime I was trying to reinstall the server so I can ...
- Sun Apr 08, 2018 7:58 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 699503
- Sun Apr 08, 2018 6:56 pm
- Forum: Web Server
- Topic: [GUIDE] Secure PhpMyAdmin
- Replies: 26
- Views: 345088
Re: [GUIDE] Secure PhpMyAdmin
for brute force protection
try this instead :
https://www.mysterydata.com/secure-phpm ... cp-centos/
try this instead :
https://www.mysterydata.com/secure-phpm ... cp-centos/
- Sun Apr 08, 2018 6:50 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 699503
Re: Got 10 VestaCP servers exploited
https://www.virustotal.com/#/file/48343c96812d4513d7109cb2a2e74c2d983f04e9baf075a47b442fe08dbec825/detection This is for libudev.so, the infected version. We all know this and discussed it on the first pages of this topic. Also, many of us has given access to infected servers to developers, and the...
- Sun Apr 08, 2018 6:47 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 699503
Re: Got 10 VestaCP servers exploited
we don't have log nothing during the attack, after attack we've some hacked OS files with root permission and with outbound ddos
- Sun Apr 08, 2018 6:43 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 699503
Re: Got 10 VestaCP servers exploited
However, According to log entries, our network IDS and IPS logs, and a few other tid bits this is the current working theory on our end. We certainly need more servers that have been affected to test with and investigate. Volunteers?????? Unfortunately, we cannot provide our servers simply because ...
- Sun Apr 08, 2018 6:42 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 699503
Re: Got 10 VestaCP servers exploited
Alright, Another update. This issue seems to be with roundcube. We are not seeing any typical communications with VestaCPs admin interface that would indicate it was compromised. However, we are still investigating the issue. For those of you that have compromised systems. We would love an opportun...