I had problems with Vesta CP, what should I do?

S

spaceatmoon2018-04-10 00:14:41

Burglary protection

spaceatmoon, 2018-04-10 00:14:41

During these two days, one of my hosting on digitalocean died, i.e. blocked due to heavy outgoing traffic at 62 MB of outgoing traffic per second. There are 0 incoming packets.
The second one almost died today, looked at the mail in time. Hosting on reg.ru also went berserk and the situation is similar.
At the same time, such a problem was not observed on vscale, it seems that the ports are better protected.
I myself am a simple developer, and I don't know much about hosting. Therefore, poke your finger on what needs to be raised and what logs to collect with utilities so that this does not happen again.
The most remarkable thing is that the same configuration was used everywhere (almost)
Ubuntu16.04 x86_x64
Vesta panel on vscale and digitalocean purely out of the box, vesta on reg.ru too, only php-fpm + nginx (maybe this is important)
Rabbitmq
SSH by password, but only standard root and only my ip is shown in the welcome logs
The problem arose just literally in these two days. A wild load on the network and a ban from the hosting side.
I'm wrong about the news....

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

V

Vladimir, 2018-04-10
@spaceatmoon

www.opennet.ru/opennews/art.shtml?num=48416

P

Puma Thailand, 2018-04-10
@opium

In Vesta, there is again a hole where you can climb to root without rights
. It is convenient to monitor zabbix, well, turn on auto-update

H

Host-Eiweb, 2018-04-10
@Host-Eiweb

Vulnerabilities were, are and will be in any product.
VestaCP is a great panel, but like any other panel, it cannot be used with default settings.

Z

zooks, 2018-04-10
@zooks

How to stop ddos from your server?
https://admin-ahead.com/forum/server-security-hard...