Plesk 11.x / Linux :: Shell-shock Bash Vulnerability In Chrootsh
Oct 1, 2014
We have Plesk Panel 11.5 in Virtuozzo containers (Centos 6 x86_64) and we often provide to our customers the ssh access with chroot - /usr/local/ psa/ bin/chrootsh.All we know about Shellshock Vulnerability and we already installed all fixes to bash, but chrootsh-version is still vulnerable.Here are the results of BashCheck from [URL] ..... under chrooted user:
Vulnerable to CVE-2014-6271 (original shellshock)
Vulnerable to CVE-2014-7169 (taviso bug)
bashcheck: line 15: 19226 Segmentation fault bash -c "true $(printf '<<EOF %.0s' {1..79})" 2> /dev/null
Vulnerable to CVE-2014-7186 (redir_stack bug)
Test for CVE-2014-7187 not reliable without address sanitizer.Variable function parser still active, likely vulnerable to yet unknown parser bugs like CVE-2014-6277 (lcamtuf bug).Do you plan to release updates for chrootsh?
View 2 Replies
ADVERTISEMENT
Jun 27, 2013
I am using plesk 11.0.9 and I want disable ssl anonymous authentication. A vulnerability exists in SSL communications when clients are allowed to connect using no authentication algorithm.
How I can disable anonymous authentication
Plesk apache + nginx running
View 2 Replies
View Related
Jul 1, 2015
Is it possible to set the subscription shell option of an subscription via xml api? I see it is possible via cmd "/usr/local/psa/bin/subscription -u {subscription} -shell /usr/local/psa/bin/chrootsh" But how is it possible via xml api?
View 1 Replies
View Related
Dec 8, 2014
When I try to change a domain name preference from www to non-www i am getting the error
"Error: No secure shell available"
I am using plesk 12 ....
View 1 Replies
View Related
Dec 7, 2008
I am currently trying to create a bash script which I will run off a loop with a sleep interval that will query tcpdump (udp packets only) on a network interface, and is looking for length 10 packets.
So far so good, not that hard to code I know (Already made it / coded it this far perfectly). Now here is the tricky part, I only want the bash script to identify IP's that have sent over 15 packets with the length of 10. (This is the part that I can't seem to find a way to code).
I was thinking, from the output maybe to calculate the number of lines with the same equal IP's.
Once this script identifies that, it will automatically run a command which I have set. (Quite easy, and I can do this).
I am looking for someone to help me with this. It is a fairly simple and quick job (editing the script I have at the moment). I am willing to also pay (if needed) an amount for this to be completed too. Obvieusly not that much, but still something I am sure we can work out.
View 2 Replies
View Related
Oct 14, 2007
I just installed X Window System, KDE 3, and Vncserver today... everything was done without an error. However, I noticed that I couldn't open up a new ssh session. This was after the installation was done and I needed a new shell window. Maybe something got in conflict with the installation of X or KDE?
I then logon to KDE via VNC, tried to open up Terminal, and got this error:
Code:
A Fatal Error Has Occurred - Konsole
Konsole is unable to open a PTY (pseudo teletype). It is likely that this is due to an incorrect configuration of the PTY devices. Konsole needs to have read/write access to the PTY devices
What is PTY devices, and exactly how do I fix this. Where is the config file for PTY?
I'm on CentOS 5 btw.
View 4 Replies
View Related
Feb 1, 2007
I am trying to use this command to create an ftp account:
# useradd -d /home/ftp/ftpadmin/ -s /dev/null ftpadmin > /dev/null 2>&1
But it doesnt seem to work when I try to ftp in. Also right now i have to ftp directly to my server IP address. How do I set it up where I can ftp in via the domain name? I am trying to create a ftp user that goes to a specific directory under home/dev/user
View 5 Replies
View Related
Jul 8, 2008
Do any1 know how to change jail shell to normal shell?
View 14 Replies
View Related
Jul 4, 2009
i run a dedicated server with theplanet.i have LAMP.what commands can i use in ssh to view the hardware details of my server ? i have centOS 5
View 5 Replies
View Related
Nov 18, 2008
This security flaw came to light at the end of October and I didn't find it posted already so thought it worth mentioning having tested the helpdesks for some sites that we use and found them to be at risk.
D
etails and a demo exploit URL can be found at url]
For anyone who doesn't know, XSS flaws that allow execution of arbitrary javascript can be exploited easily and without user knowledge to obtain information such as login details or session IDs. This could happen in various ways, including visiting an unrelated page with a simple URL that redirects to the vulnerable URL and then back again. Tools such as NoScript for FireFox may help protect against this on the client side.
View 9 Replies
View Related
Jan 14, 2007
A user is able to use WebShell.cgi:
[url removed]
In order to run commands from the /scripts folder. This is especially dangerous as a user can give an account reseller priviledge with full root access.
Because webshell.cgi is running with the uid/gid of apache, it can access all files which can be access with apache. And guess what.... the /scripts folder is one of them.
Because it's a CGI script, it doesn't seem as though there is an easy way to block this.
View 14 Replies
View Related
Jul 4, 2008
I found this useful script to get backup in plesk:
http://www.web-hosting-control-panel...kup/gfx_backup ...
View 3 Replies
View Related
Mar 6, 2014
we have identified a number of customers with weak passwords - we wish to send them an email and then wait 1 hour - then change their passwords to the new password we have identified - due to them being across multiple domains, we don't want to do this via the PPA web gui - it would take quite a long time.
What is/are the commands for changing mailbox password for SMTP/IMAP/POP3??
i.e., is there a PPA command for changing both sides of send/receive?
View 2 Replies
View Related
May 13, 2008
I am building a website which require a data feed from a third party data provider. I have to fill out a 'questionair' when submitting my application and I'm not sure what to put for this questions.
Question: "Have you run a vulnerability assessment of network security? What is the current assessment rating?"
I Google'd for security rating but came up blank, without any useful result. Is there a level like 1-5 or something for network security rating? I m not sure what to put on here.
I'm not against getting a shared/virtual hosting account if the a host could provide me with these ratings.
View 2 Replies
View Related
Mar 13, 2007
[url]
cPanel Multiple Local File Include Vulnerabilities
Bugtraq ID: 22915
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Mar 11 2007 12:00AM
Updated: Mar 12 2007 04:54PM
Credit: cyb3rt & 020 are credited with the discovery of these vulnerabilities.
Vulnerable: cPanel cPanel 10.9 build 134
cPanel cPanel 10.9 build 125
cPanel cPanel 10.9
View 2 Replies
View Related
May 2, 2008
Just came through on the RSS feeds...
Quote:
Several potential security issues have been identified with cPanel software and Horde, a 3rd party bundled application. cPanel releases prior to 11.18.4 and 11.22.2 are susceptible to security issues, which range in severity from trivial to medium-critical. Along with the discovery of these potential issues, cPanel has released a new security tool to provide users with protection from XSRF attacks.
Quote:
All STABLE and RELEASE users are strongly urged to update to their respective 11.18.5 release. CURRENT and EDGE users should update to the latest 11.22.3 release. No releases are deemed susceptible to severe, critical or root access vulnerabilities.
[url]
View 8 Replies
View Related
May 29, 2007
I'm wondering if this is true:
[url]
Something like:
[url]
View 2 Replies
View Related
Apr 10, 2013
We are currently running ColdFusion 9 on an Apache server. After running a Webinspect scan for one of our web applications, a weak cipher vulnerability was flagged as critical. Their recommended change to the httpd.conf file is listed below. We made the change and restarted our server but the same vulnerability came up again. How to eliminate the weak cipher vulnerability?
SSLCipherSuite ALL:!aNull:!ADH:!eNull:!LOW:!EXP:!NULL:RC4+RSA:+HIGH:+MEDIUM
View 3 Replies
View Related
Sep 16, 2007
Attacking multicore CPUs
[url]
[url]
"The Register reports that the world of current multi-core central processing units (CPUs) just entered is facing a serious threat. A security researcher at Cambridge disclosed a new class of vulnerabilities that takes advantage of concurrency to bypass security protections such as anti-virus software The attack is based on the assumption that the software that interacts with the kernel can be used without interference. The researcher, Robert Watson, showed that a careful written exploit can attack in the little timeframe when this happens, and literally change the "words" that they are exchanging. Even if some of these dark aspects of concurrency were already known, Watson proved that real attacks can be developed, and showed that developers have to fix their code. Fast..."
View 0 Replies
View Related
Apr 29, 2007
Code:
$ md5sum sim-current.tar.gz
6c1cece6f3af87598c4bdb09cabcb3cc sim-current.tar.gz
Line 25, file: sim-2.5-3/setup
Code:
TMPS="/tmp/sim_cj"
Line 399, file sim-2.5-3/install/sim
Code:
cat $TMPS >> /etc/crontab
If a local user creates a symlink to that file, then writes to the sim_cj file being linked to, as SIM is being installed, they can influence the contents of /etc/crontab.
Contacted the vendor via email on 04/17/07, email bounced.
Opened a ticket via their helpdesk ~5 days ago, no response.
Again, this is only an issue during the install, which is an extremely small window of time. Any bug that could lead to root access should be fixed, however.
View 0 Replies
View Related
May 16, 2007
I have write up a simple shell script from my windows desktop.
After i upload the file via ftp and run it as root, it doesn't run properly.
any file i copy over will end up in "
" ..nothing else.
why is this happening?
Should i write all my code on the server instead?
View 3 Replies
View Related
Jun 15, 2008
I opened up my VPS bash today and I saw a message like this:
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
..........................
..........................
You have a mail.
bash:~#
Now I am confused from where have I received a mail, and even if I have received it why doesn't it shows in Google Apps??
I have set the MX Entries correctly and when I sent a mail specifically to admin@mysite.com , I do get a mail in google apps.
Anyways where does this mail lie, how can I view this mail ?? I installed postfix as my mailing server.
View 6 Replies
View Related
Aug 9, 2008
When I log into my clients VPS via SSH and I get the following error...
login as: root
root@69.162.67.44's password:
Last login: Sun Jan 20 23:33:36 2008 from 122.167.25.31
-bash-3.1#
View 11 Replies
View Related
Jun 30, 2007
I've just about got my mysqldump script ready,
Here is what it looks like:
Code:
#!/bin/sh
mysqldump -uusr -ppwd --opt db > /home/usr/dbs/1.sql
mysqldump -uusr -ppwd --opt db2 > /home/usr/dbs/2.sql
cd /home/usr/dbs
tar -zcvf sqldata.tgz *.sql
How would I make my finished gzipped file's filename to include the date?
Would I add any tags infront of sqldata.tgz *.sql?
Or would I have to run another command after the last line?
View 14 Replies
View Related
Jun 1, 2007
I could use a bash script for a crontab that does a regular backup of my mysql database.
Unfortunately i can't employ one of the made-up backup scripts using mysqldump because i need to use mysqlhotcopy (that's because i need the raw data for a charset mess in mysql with some foreign languages not classifieds as utf8 .. long story), and i'm a total ignorant of perl and bash scripting.
The script (that will be recalled via cron) has to:remove all the .tar.gz files older than X days in the folder /xxx/backup, if the folder contains more than X tar.gz files
create a folder /xxx/backup/$todaydate call the command "mysqlhotcopy --bla -bla -bla " that will copy the dbase in the previously created /xxx/backup/$todaydate folder
at the end of the previous operation (if successful) compress the $todaydate folder in a $todaydate-sqlbackup.tar.gz file at the end of the previous operation (if successful) delete the uncompressed folder. launch the "rsync -bla -bla" command to syncronize this folder with a remote server I thought it will be something like a 10lines script, and i'll be glad to hand you a couple of virtual beers (via paypal ) as a thank you sign, but if the script is not trivial and you're willing to help anyhow, of course i'm willing to pay more.
View 1 Replies
View Related
Dec 6, 2007
apache 11421 0.0 0.3 2704 1712 ? Ss Oct09 4:35 bash
apache 11625 0.0 0.1 1912 884 ? Ss Oct09 1:12 bash
apache 14454 0.0 0.0 1764 128 ? Ss Oct17 0:00 /usr/sbin/apache
apache 15216 0.0 0.2 2308 1356 ? Ss Nov10 1:58 bash
apache 19597 0.0 0.2 2308 1336 ? Ss Nov10 1:50 bash
apache 22164 0.0 0.3 2704 1772 ? Ss Oct11 1:11 bash
I stopped apache but can see these when i do ps aux.
View 2 Replies
View Related
Jun 4, 2009
I'm having a problem with litespeed and apache, every time when I reboot the server listespeed and apache(both) are started and the server uses apache. I configured litespeed to use a conf file of apache so I can't remove just apache. I need a way when I restart the server litespeed is started and apache is stoped
2nd problem. how to make this in a batch script
The script will backup a directory every month and I need in every backup get a date like this directoryname-date(day/month/year)
View 4 Replies
View Related
Mar 1, 2008
Code:
-rw-r--r-- 1 root root 975 Dec 22 2006 .bash_profile
root@server [~]# rm -f .bash_profile
rm: cannot remove `.bash_profile': Operation not permitted
root@server [~]# chmod +t .bash_profile
chmod: changing permissions of `.bash_profile': Operation not permitted
I simply wanted to modify something within the file but I keep getting permission errors. I'm logged in as root.
View 3 Replies
View Related
Sep 24, 2007
somebody to write a very simple bash script to me , which will help me to "wget" some text files!
i want to do the following:
wget [url]
X changes for evey folder (main group)
Y will change for every file in the folder.
eg:
[url]
[url]
[url]
the next group:
[url]
[url]
[url]
The X value range [1-100]
the Y value range [1-13]
View 3 Replies
View Related
Mar 31, 2007
Sometimes if I tried to use rm to remove too many files I got this:
-bash: /bin/rm: Argument list too long
I think there was a workaround, like ls and then piping the result to rm, but I forget.
View 3 Replies
View Related
Jun 5, 2007
I asked around and found [url] and win-bash.exe on source forge.
View 1 Replies
View Related
