1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Constant Plesk Administrator password?

Discussion in 'Plesk for Windows - 8.x and Older' started by knocx, Mar 23, 2006.

  1. knocx

    knocx Guest

    0
     
    Weird...interesting and i dont want to believe this....but

    we had 2 windows psa servers (7.5.6 & patched) compromised constantly , thus we had abandoned the servers and 1500 domains, discontiniued plesk, this costed us over 30.000USD

    I had a post about some vulnerabilities here

    http://forum.plesk.com/showthread.php?s=&threadid=31670


    But this thing is different , today another hacked company called us , they had 1 win PSA windows server with same settings and they are also compromised several times. he said that the hackers contacted him and told where the breach is.


    he says : The hackers caimed that The "Plesk Administrative Account" which is a member of Administrators group has a default password by installation thats how they get in so easiliy,

    the company isnt sure if they are talking about Plesk Administrative account or psaadm account.

    The question is : Does this Plesk Administrative account or psaadm has a constant password???

    I will try to dump the sam database and analyse this, please anyone tries this test, post what you found it here
     
  2. lboss

    lboss Guest

    0
     
    > Does this Plesk Administrative account or psaadm has a constant password???

    No. These passwords generate by random algorithm.
    Can you contact SWsoft support team for give more information about problem?
     
  3. lboss

    lboss Guest

    0
     
    But, may be you used the cloning for creating new server. In this case passwords can be coincided. For setting new password you can use the following command:
    papswd --set --password='new password'
     
Loading...