We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Search found 47 matches
- Thu Apr 12, 2018 11:36 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
I think that we can throw away theory that Vesta repo is compromised. This is why: I know MANY datacenters (one of them hosts 30% of all dedicated servers in a world) where NONE of Vesta servers got hacked. Also, ZERO servers that are physically located in my country got hacked. Bad guy simply scan...
- Thu Apr 12, 2018 7:25 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
Thank you of thinking of those who aren't experienced systems admin. I'm particularly grateful for your tips about CSF. We've got this installed on WHM and it is definitely worth installing. This thread is worth its gold in all of the security recommendations - one can write a huge tutorial with it...
- Wed Apr 11, 2018 8:45 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
well seems like you got a nasty antivirus these tools are most secured and trusted ones. which one you are using? * * AVG Real-time Shield Scan Report * This file is generated automatically * * Started on: Saturday, April 7, 2018 8:50:11 AM * 11.04.2018 10:37:25 https://www.rfxn.com/downloads/malde...
- Wed Apr 11, 2018 8:38 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
5) Download Linux Environment Security https://www.rfxn.com/projects/linux-environment-security/ and run it 6) Download Linux malware detect http://www.rfxn.com/downloads/maldetect-current.tar.gz and once installed run maldet -a / and see the report after that run it in monitor mode maldet --monito...
- Wed Apr 11, 2018 8:32 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
good morning. are we getting somewhere with the poll? i mean could you (vesta staff) retrive some similarieties or shrink the vector area? i kinda want to move on with my life, but without assurance i cant leave my server out of view. or is there a place you guys having "private" discussions? i migh...
- Tue Apr 10, 2018 7:47 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
n0x, if you havent so yet, you can check out this poll and fill in your infos there: Hi Everyone, We have put together a survey to help us better understand the general configuration in relation to some of the working theories. If you have suggestions to broaden the survey, please let us know. https...
- Tue Apr 10, 2018 7:22 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
just noticed, I do have some weird commands being run as 'root' when I do ps -fU admin with things like 'ifconfig eth0', 'su', 'pwd', 'cat resolv.conf', etc along with the standard Vesta admin processes (NGINX, etc). I'm not sure what that is but I don't see it on any other VM running Vesta and I d...
- Tue Apr 10, 2018 2:29 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
The Vespa team does not need and should not report anything. Spreading what happened would only help the unemployed learn more of a way to hack into servers. Err, yes they should. Vesta needs to provide a full explanation as to how the hack happened, and what steps they've done to fix this as a fat...
- Tue Apr 10, 2018 12:06 pm
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
https://forum.vestacp.com/viewtopic.php?f=25&p=69296#p69296 +1 i would love to have a full and clear overview of what happend. i want to understand and learn from it. everybody can do a fail sometimes, it doesnt matter whos fault it was. but please give us mor infos! also, when i updated my debian ...
- Tue Apr 10, 2018 8:49 am
- Forum: General Discussion
- Topic: Got 10 VestaCP servers exploited
- Replies: 548
- Views: 719633
Re: Got 10 VestaCP servers exploited
even after you clean the trojan, your system is still infected from what i see. systemd (process 1) still creates supicious files under /tmp while all other directories are still clean. but this is speculating now Can you name the files/dir that you see as suspicious in your /tmp ? it was many litt...