We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Search found 112 matches
- Mon Apr 09, 2018 1:42 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
I everyone I just want to ask few simple questions : Were any of the VestCP install on HTTPS ? Is it a good idea to change VestaCP port 8083 ? (= stealth mode) My instalation is and did not get hacked (I have turned it off as I write) I am on Ubuntu 16.04 - Apache Nginx the entire install is on htt...
- Mon Apr 09, 2018 12:35 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
I am also monitoring. 1 hr after, so far so good.
Im not sure if I was out of his pool, but definitely the viruses are not replicating itself anymore.
How did someone knew the people who uses vestacp anyway?
Im not sure if I was out of his pool, but definitely the viruses are not replicating itself anymore.
How did someone knew the people who uses vestacp anyway?
- Sun Apr 08, 2018 11:29 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
I already deleted /lib/libudev.so and gcc.sh it just keeps coming back try to search and kill active virus process (procesess) Thanks. I chmod 0000 first the libudev.so before removing it like what your link said. Removing it head on will just instantly generate a new one. Looks like that my server...
- Sun Apr 08, 2018 11:10 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
everything is still the same with my server.
I already deleted /lib/libudev.so and gcc.sh it just keeps coming back
and these random letters in /etc/init.d
I already deleted /lib/libudev.so and gcc.sh it just keeps coming back
and these random letters in /etc/init.d
- Sun Apr 08, 2018 10:48 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
All virus procesess should be killed and files with virus should be deleted https://superuser.com/questions/877896/unknown-linux-process-with-random-command/1004724#1004724 Seems that mine did not. I had a high CPU process which I just killed. and it leads to this directory right here find / -name ...
- Sun Apr 08, 2018 10:37 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
The fix has been released just now! As usually there are 3 ways to update your server: 1. Via web interface - Login as admin - Go to updates tab - Click un update button under vesta package 2. Via package manager - SSH as root to your server - yum update / apt-get update && apt-get upgrade 3. Via G...
- Sun Apr 08, 2018 3:40 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
Are you using VestaCP? Why would I post here if I don't use it? I've got VestaCP running on one of my not-so-important servers for the past few years, but due to this problem I am likely migrating over all content and sites to Plesk. I don't feel confident having public or private API's for that ma...
- Sun Apr 08, 2018 3:06 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
I tried installing VPN but I failed. Maybe we can help each other and create a thread about it.
I already changed my admin port but my vesta still got hacked. Though changing it good, this exploitation is just a different level
I already changed my admin port but my vesta still got hacked. Though changing it good, this exploitation is just a different level
- Sun Apr 08, 2018 1:36 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719850
Re: Got 10 VestaCP servers exploited
Just got an email from Vultr that I have a bandwidth threshold. Then I saw 3 of my instances have sky rocketing bandwidth usage. 1 has exceeded the allocated value 2 hours later without any clue what's happening, I looked into vesta forum and saw this thread Done looking at this thread page for page...
- Wed Apr 04, 2018 11:58 pm
- Forum: General Discussion
- Topic: Can VCP set up multiple PHP versions?
- Replies: 1
- Views: 4610