Facebook
TwitterRecent content by Hossie
-
H
Spam from hole in Plesk?
I can confirm wordpress was installed on our box that was compromised. Our new mission critical production box will never again host a CMS. All old blogs are now proxy passed to trashable virtual machines. Thanks everyone.- Hossie
- Post #47
- Forum: Plesk 11.x for Linux
-
H
Spam from hole in Plesk?
Can you paste that code? my /tmp/sess_ was deleted (by the virus?).- Hossie
- Post #40
- Forum: Plesk 11.x for Linux
-
H
Spam from hole in Plesk?
JuanCar – This ‘virus’ uses the system call to send mail. This means that all emails the ‘virus’ sends are passed to Qmail. It does NOT try to open a port/socket and act as its own MTA. Thus the only useful thing you can do with Iptables is to completely block outbound dport 25. Your example...- Hossie
- Post #36
- Forum: Plesk 11.x for Linux
-
H
Spam from hole in Plesk?
We have a very similar issue. OS: CentOS release 5.8 (Final), plesk psa-9.5.2-cos5.build95100504.10 Running litespeed, qmail, php, multiple vhosts (some have wordpress but we are not sure if this is the exploit path). The server was bogged down with the email spam blast. I stopped qmail so...- Hossie
- Post #34
- Forum: Plesk 11.x for Linux
-
H
Spam from hole in Plesk?
We have a very similar issue. OS: CentOS release 5.8 (Final), plesk psa-9.5.2-cos5.build95100504.10 Running litespeed, qmail, php, multiple vhosts (some have wordpress but we are not sure if this is the exploit path). The server was bogged down with the email spam blast. I stopped qmail so...- Hossie
- Post #33
- Forum: Plesk 11.x for Linux