Community Forum
https://forum.vestacp.com/
I would recommend changing URL of roundcube as well. It may be the actual problem and it's better to be safe than sorry.yigits wrote: Sun Apr 08, 2018 10:43 am My two VestaCp installed server is suspended due to attack of the other networks.
I checked one of them and I found gcc.sh in /etc/cron.hourly. It is created on 4 April 2018.
Info: After installation I changed VestaCp port to another port.
I'm more or less referring to that one shouldn't use software without an SLA for business critical applications as it can cause serious problems. But let's not further dwelve into this as it's unrelated to what this thread is actually about.
Hi, we should be patience with Vesta team, even we got calls from our frustrated clients.sandy wrote: Sun Apr 08, 2018 10:20 am i didn't understand if vestacp team already gotten SOME BUNCH OF HACKED SERVER FOR TESTING why they are still resting ?
I agree with MAN5, please be patient and let VestaCP team to find that bug.MAN5 wrote: Sun Apr 08, 2018 10:51 amHi, we should be patience with Vesta team, even we got calls from our frustrated clients.sandy wrote: Sun Apr 08, 2018 10:20 am i didn't understand if vestacp team already gotten SOME BUNCH OF HACKED SERVER FOR TESTING why they are still resting ?
The affected servers are running with vesta > doesnt meant vesta had this bug. Let them to find the issue 1st.
More likely its problem with RoundCube. 23 hours ago critical exploit for it was published. I realize that VastaCP is the awesome product as for freeware.MAN5 wrote: Sun Apr 08, 2018 10:51 amHi, we should be patience with Vesta team, even we got calls from our frustrated clients.sandy wrote: Sun Apr 08, 2018 10:20 am i didn't understand if vestacp team already gotten SOME BUNCH OF HACKED SERVER FOR TESTING why they are still resting ?
The affected servers are running with vesta > doesnt meant vesta had this bug. Let them to find the issue 1st.
only if you use vulnerable plugins/theme under wp and vesta doesn't use plugins/module thoughAKr0nizz wrote: Sun Apr 08, 2018 10:58 amMore likely its problem with RoundCube. 23 hours ago critical exploit for it was published. I realize that VastaCP is the awesome product as for freeware.MAN5 wrote: Sun Apr 08, 2018 10:51 amHi, we should be patience with Vesta team, even we got calls from our frustrated clients.sandy wrote: Sun Apr 08, 2018 10:20 am i didn't understand if vestacp team already gotten SOME BUNCH OF HACKED SERVER FOR TESTING why they are still resting ?
The affected servers are running with vesta > doesnt meant vesta had this bug. Let them to find the issue 1st.
@sandy
Even WordPress has more security breaches, if we compare it to Vesta.
You can find bugs and exploits in every software btw. Just bugs in Control Panels are more critical in comparison to MS Word for example.