Forum

This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.
Sentora Support Forums General Forums - (Non-Sentora Support) Sentora Development v Security

Security
apinto Offline
Sentora Member
*
OS: Ubuntu 14.04 LTS
Version: 1.0.3
Server: Dedicated & VPS
Posts: 525
Threads: 23
Joined: Mar 2015
Reputation: 26
Sex: Male
Thanks: 139
Given 104 thank(s) in 87 post(s)
#12
RE: Security
 07-15-2015, 12:12 AM
(07-14-2015, 11:37 PM)ahsan Wrote: @[apinto]
 Let alone the user panel bugs there are numerous bugs regarding to Server security and user privacy.
I was just testing my Sentora server and I'm really, really disheartened right now.
All the websites on the server are run under apache user. And if any account of the user is compromised, The attacker can gain access to all the websites and users on the sentora.
All you need is a back-connect script. And you can change files of any website in any directory or any user.

ahsan can you let me know of a viable way to gain access to any directory by having a single user credentials?
My Sentora Resources
[Module] Mail Quota Count | Vagrant Box with Sentora

[Image: vanguardly-logo-micro.png]
Graphic and Web Design. Development.
www.vanguardly.com


Find
Reply
Thanks given by:


Messages In This Thread
Security - by Qtech - 07-11-2015, 03:11 AM
RE: Security - by apinto - 07-11-2015, 05:37 AM
RE: Security - by Qtech - 07-11-2015, 10:48 AM
RE: Security - by Dave - 07-11-2015, 03:41 PM
RE: Security - by Qtech - 07-12-2015, 02:14 PM
RE: Security - by ahsan - 07-14-2015, 09:22 PM
RE: Security - by Dave - 07-14-2015, 09:49 PM
RE: Security - by ahsan - 07-15-2015, 12:13 AM
RE: Security - by apinto - 07-15-2015, 12:32 AM
RE: Security - by ahsan - 07-15-2015, 01:23 AM
RE: Security - by apinto - 07-14-2015, 11:02 PM
RE: Security - by ahsan - 07-14-2015, 11:37 PM
RE: Security - by apinto - 07-15-2015, 12:12 AM
RE: Security - by Ron-e - 07-14-2015, 11:53 PM
RE: Security - by ahsan - 07-15-2015, 12:03 AM
RE: Security - by ahsan - 07-15-2015, 01:37 AM
RE: Security - by apinto - 07-15-2015, 02:29 AM

Possibly Related Threads…
Thread Author Replies Views Last Post
Security update dicussion Eulogy 1 6 ,449 05-29-2017, 04:58 PM
Last Post: Me.B

Forum Jump:


Users browsing this thread: 8 Guest(s)