Re: Got 10 VestaCP servers exploited
Posted: Tue Apr 10, 2018 12:52 am
I'd like to thank the Admin for their hard work. Couldn't have been easy the last three days. I've every confidence they'll sort this out as most of the Admin have been around for many years and care about their script.
I've seen lots of discussion about the possibility of the script having been infected - is there proof that it has been infected and has this now been sorted out? Also are the Admin completely confident that the updated installation script is clean and we can use it for new servers? In your opinion what part of the installation script would be the focus of hackers? For example, I don't use the e-mail and FTP systems of VestaCP as I find that e-mails in particular are targeted by hackers. I wonder whether that could be the reason my VPSs have not been hacked?
Secondly, someone suggested that the hackers targeted IP ranges. Were those specific location ranges and what were those locations?
Finally I'm a bit puzzled about the updates. I thought that we're all on automatic updates by default? All of my VestaCP Panels have always been on automatic updates. I'm just asking as I see plenty of posts about getting patches and updates, and as far as I could see from my VestaCP Panels they were all automatically updated on 8th of April. If they have been automatically updated is there still a need for a patch?
I've seen lots of discussion about the possibility of the script having been infected - is there proof that it has been infected and has this now been sorted out? Also are the Admin completely confident that the updated installation script is clean and we can use it for new servers? In your opinion what part of the installation script would be the focus of hackers? For example, I don't use the e-mail and FTP systems of VestaCP as I find that e-mails in particular are targeted by hackers. I wonder whether that could be the reason my VPSs have not been hacked?
Secondly, someone suggested that the hackers targeted IP ranges. Were those specific location ranges and what were those locations?
Finally I'm a bit puzzled about the updates. I thought that we're all on automatic updates by default? All of my VestaCP Panels have always been on automatic updates. I'm just asking as I see plenty of posts about getting patches and updates, and as far as I could see from my VestaCP Panels they were all automatically updated on 8th of April. If they have been automatically updated is there still a need for a patch?