Page 2 of 2
Re: How To Secure from Backdoor Script?
Posted: Mon Feb 02, 2015 5:05 am
by skurudo
sllz wrote:I'm using the default settings VestaCP. What should I change if it is to avoid evil script like this. Please explain more details on each step because I am very beginner.
In new version this bug was fixed, but in current... you need edit your templates -> /usr/local/vesta/data/templates/web/apache2/ or /usr/local/vesta/data/templates/web/httpd/
basedir.stpl / basedir.tpl
And then Rebuild your domain with this templates
Re: How To Secure from Backdoor Script?
Posted: Fri Mar 27, 2015 8:20 pm
by mehargags
you said the bug was fixed in new version -- all my servers are 2 months old now -- when was this fixed .. how do I verify ?
Re: How To Secure from Backdoor Script?
Posted: Fri Mar 27, 2015 8:26 pm
by skurudo
mehargags wrote:you said the bug was fixed in new version -- all my servers are 2 months old now -- when was this fixed .. how do I verify ?
On github -
https://github.com/serghey-rodin/vesta
and bug -
https://bugs.vestacp.com/responses/open ... zopasnosti (sorry on russian)