Security Concerns

Kent Brockman

• July 05, 2017 19:26

Hello guys. I'm becoming a bit worried about the number of utilities you can find by simply googling "cPanel exploit". One customer brought this to my attention and wanted to share it with you: - Removed - What can you tell about this? Are we generally safe? Having clamAV, CSF and secure passwords is enough to sleep well? Should be aware of anything else? Do you monitor these scripts and test them against test scenarios? Thanks!

• 

  Infopro

  • July 06, 2017 00:36

  There's no need to share that sort of link (or promote it with thread title) on these forums. Shell scripts like that have been around for years.

  Having clamAV, CSF and secure passwords is enough to sleep well?

  
  None of that really matters if your client uploads it to their account willingly to "test it". Those scripts email home when ran. Chirpy's CSX is worth every penny and does a great job of helping to prevent these sorts of scripts from being uploaded: configserver.com/cp/cxs.html As one suggestion for you.

  0
• 

  Kent Brockman

  • July 06, 2017 00:47

  ok, sorry for the link and title. I know CXS, but my concerns were for what an attacker could do to us or others.

  0
• 

  Infopro

  • July 06, 2017 00:56

  Your concern is valid, I'm with you 100%. Preventing this sort of thing from getting on your server in the first place is a tough job.

  0
• 

  SoftDux

  • July 10, 2017 15:44

  Do you use 2Factor Authentication? And strong password policies? And educate your clients? You should!

  0

Please sign in to leave a comment.