The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Backdoor?

Discussion in 'General Discussion' started by flumpadink, Mar 25, 2003.

  1. flumpadink

    flumpadink Registered

    Joined:
    Mar 25, 2003
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    My web site is currently using cpanel but is constantly being hacked. I know who is doing it and they are apparently using a bug in cpanel to get the main password or one of them. Somehow everytime he deletes the mysql databases, I was wondering whether you could look into it. Thanks.

    Paul
     
  2. vishal

    vishal Well-Known Member

    Joined:
    Jan 28, 2003
    Messages:
    340
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    How do u know?

    Hello,

    Are you sure the website is hacked ?
    Only the mysql dbs are getting deleted or something else is happening?

    Regards,
     
  3. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    This is probably due the the recent mysql hole. updated rpms are now avalible.
     
  4. LS_Drew

    LS_Drew Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    187
    Likes Received:
    0
    Trophy Points:
    16
    ??????????????????????
    MySQL is up to date (Wed Dec 31 18:59:59 1969)
    MySQL-client is up to date (Wed Dec 31 18:59:59 1969)
    MySQL-devel is up to date (Wed Dec 31 18:59:59 1969)
    MySQL-bench is up to date (Wed Dec 31 18:59:59 1969)
    MySQL-shared is up to date (Wed Dec 31 18:59:59 1969)
     
  5. xsenses

    xsenses Well-Known Member

    Joined:
    Aug 29, 2002
    Messages:
    233
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Huntington Beach, Ca
    Where? I checked layer one and updated system and cpanel and I am stil at 54.
     
  6. LS_Drew

    LS_Drew Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    187
    Likes Received:
    0
    Trophy Points:
    16
    You can get it from mysql.com but it really should be explained why it wasn't updated through the cpanel 'update system software'
     
  7. xsenses

    xsenses Well-Known Member

    Joined:
    Aug 29, 2002
    Messages:
    233
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Huntington Beach, Ca
    Mine also shows the same as Drew.
     
  8. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    Run the following

    cd /scripts
    ./updatenow
    ./upcp

    This will bring MySQL to Ver 3.23.56, plus update quite a few other rpms we noticed.
     
  9. xsenses

    xsenses Well-Known Member

    Joined:
    Aug 29, 2002
    Messages:
    233
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Huntington Beach, Ca
    No it does not that is the output drew printed out above.
     
  10. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    It only worked on one of our server, on the other servers mysql was no upgraded either. So how do we upgrade mysql on our other servers?

    Backend scripts didnt do anything
    upcp didnt do anything
    Upgrade software didnt do anything
     
  11. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    Are the servers the same Cpanel version?

    WHM 6.2.0
    Cpanel 6.2.0-E27

    This is what we are on now.

    That's the only thing I can think of, of why it would not have updated.
     
  12. xsenses

    xsenses Well-Known Member

    Joined:
    Aug 29, 2002
    Messages:
    233
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Huntington Beach, Ca
    NO->I am at 6.0.0-S109
     
  13. LS_Drew

    LS_Drew Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    187
    Likes Received:
    0
    Trophy Points:
    16
    Yes, we're on stable version 6.0 still. Latest version according to upcp.

    Are we actually expected to go with edge releases for things like this?

    I've already solved this problem by simply installing the rpms myself, but that's a bit odd that it only works on the edge release
     
  14. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    Just run /scripts/sysup reguardless of the version you are on
     
  15. LS_Drew

    LS_Drew Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    187
    Likes Received:
    0
    Trophy Points:
    16
    Also, I'll note that when I installed Cpanel on a new box today, it installed version 6.2.

    I find that very hard to believe that the STABLE version wouldn't be the one that's installed by default.

    Why on earth would anyone want to have the possiblity of their first experience with cpanel/whm on an untested, unproven version?
     
  16. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    We just finish the rest of our servers and all upgraded without issue. Yes we run edge on all of our servers, never had a problem.

    This is what you should be seeing.

    MySQL is not up to date (Fri Dec 13 12:44:29 2002)
    Retrieving http://updates.cpanel.net/pub/sysup//7.3/MySQL/MySQL-3.23.56-1.i386.rpm
    Preparing... ########################################### [100%]
    Giving mysqld a couple of seconds to exit nicely
    1:MySQL ########################################### [100%]
    Installing all prepared tables
    030325 15:18:06 /usr/sbin/mysqld: Shutdown Complete


    PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER !
    This is done with:
    /usr/bin/mysqladmin -u root password 'new-password'
    /usr/bin/mysqladmin -u root -h servername password 'new-password'
    See the manual for more instructions.

    NOTE: If you are upgrading from a MySQL <= 3.22.10 you should run
    the /usr/bin/mysql_fix_privilege_tables. Otherwise you will not be
    able to use the new GRANT command!

    Please report any problems with the /usr/bin/mysqlbug script!

    The latest information about MySQL is available on the web at
    http://www.mysql.com
    Support MySQL by buying support/licenses at https://order.mysql.com

    Starting mysqld daemon with databases from /var/lib/mysql
    MySQL-client is not up to date (Fri Dec 13 12:44:29 2002)
    Retrieving http://updates.cpanel.net/pub/sysup//7.3/MySQL-client/MySQL-client-3.23.56-1.i386.rpm
    Preparing... ########################################### [100%]
    1:MySQL-client ########################################### [100%]
    MySQL-devel is not up to date (Fri Dec 13 12:44:29 2002)
    Retrieving http://updates.cpanel.net/pub/sysup//7.3/MySQL-devel/MySQL-devel-3.23.56-1.i386.rpm
    Preparing... ########################################### [100%]
    1:MySQL-devel ########################################### [100%]
    MySQL-bench is not up to date (Fri Dec 13 12:44:29 2002)
    Retrieving http://updates.cpanel.net/pub/sysup//7.3/MySQL-bench/MySQL-bench-3.23.56-1.i386.rpm
    Preparing... ########################################### [100%]
    1:MySQL-bench ########################################### [100%]
    MySQL-shared is not up to date (Fri Dec 13 12:44:29 2002)
    Retrieving http://updates.cpanel.net/pub/sysup//7.3/MySQL-shared/MySQL-shared-3.23.56-1.i386.rpm
    Preparing... ########################################### [100%]
    1:MySQL-shared ########################################### [100%]
     
  17. LS_Drew

    LS_Drew Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    187
    Likes Received:
    0
    Trophy Points:
    16
    Doing it now. Thanks Nick. (You do an awesome job in spite of any complaining that I might do)
     
  18. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    Im on E28 and i ran /scripts/sysup update. Nothing happened!

    [/var/spool/exim]# /scripts/sysup
    openssl is up to date (Wed Feb 19 13:45:54 2003)
    openssl-devel is up to date (Wed Feb 19 13:45:54 2003)
    gnupg is up to date (Wed Feb 19 13:45:54 2003)
    qpopper is up to date (Wed Feb 19 13:45:54 2003)
    exim is up to date (Wed Feb 19 13:45:54 2003)
    proftpd is up to date (Wed Feb 19 13:45:54 2003)
    bandmin is up to date (Wed Feb 19 13:45:54 2003)
    chkservd is up to date (Wed Feb 19 13:45:54 2003)
    openssh is up to date (Wed Jun 26 12:56:22 2002)
    openssh-server is up to date (Wed Jun 26 12:56:22 2002)
    openssh-clients is up to date (Wed Jun 26 12:56:22 2002)
    MySQL is up to date (Wed Dec 31 15:59:59 1969)
    MySQL-client is up to date (Wed Dec 31 15:59:59 1969)
    MySQL-devel is up to date (Wed Dec 31 15:59:59 1969)
    MySQL-bench is up to date (Wed Dec 31 15:59:59 1969)
    MySQL-shared is up to date (Wed Dec 31 15:59:59 1969)
    gd is up to date (Mon Aug 13 02:52:05 2001)
    gd-devel is up to date (Mon Aug 13 02:52:05 2001)
    gd-progs is up to date (Mon Aug 13 02:52:05 2001)
    wget is up to date (Wed Oct 9 07:06:02 2002)
    portsentry is up to date (Wed Oct 9 07:06:02 2002)
    openssl095a is up to date (Wed Feb 19 13:41:11 2003)
    expect is up to date (Wed Aug 29 12:11:39 2001)
    XFree86-libs is up to date (Tue Apr 23 09:11:54 2002)
    XFree86-devel is up to date (Tue Apr 23 09:11:54 2002)
    bind is up to date (Tue Jul 16 14:01:51 2002)
    bind-devel is up to date (Tue Jul 16 14:01:51 2002)
    e2fsprogs is up to date (Tue Feb 26 01:09:45 2002)
    quota is up to date (Tue Feb 26 01:09:45 2002)
    rsync is up to date (Wed Feb 20 22:32:44 2002)
    lynx is up to date (Wed Jan 22 10:18:10 2003)
    ucd-snmp is up to date (Wed Jun 5 05:48:54 2002)
    ucd-snmp-devel is up to date (Wed Jun 5 05:48:54 2002)
    ucd-snmp-utils is up to date (Wed Jun 5 05:48:54 2002)
    Loading rpm update cache...
    pine is up to date
    Loading rpm update cache...
    gd is up to date
    Loading rpm update cache...
    gd-devel is up to date
    Loading rpm update cache...
    gd-progs is up to date
    Loading rpm update cache...
    expect is up to date
    Loading rpm update cache...
    freetype is up to date
    Loading rpm update cache...
    freetype-devel is up to date
    Loading rpm update cache...
    gnupg is up to date
    Loading rpm update cache...
    lynx is up to date
    Loading rpm update cache...
    ucd-snmp is up to date
    Loading rpm update cache...
    ucd-snmp-devel is up to date
    Loading rpm update cache...
    ucd-snmp-utils is up to date
    Loading rpm update cache...
    wget is up to date
    Loading rpm update cache...
    sharutils is up to date
    Loading rpm update cache...
    bind is up to date
    Loading rpm update cache...
    bind-utils is up to date
    Loading rpm update cache...
    openssl is up to date
    Loading rpm update cache...
    openssl-devel is up to date
    Loading rpm update cache...
    Attempting to install openssl-misc
    Loading rpm update cache...
    openssh is up to date
    Loading rpm update cache...
    openssh-server is up to date
    Loading rpm update cache...
    openssh-clients is up to date
    Loading rpm update cache...
    XFree86-devel is up to date
    Loading rpm update cache...
    XFree86-libs is up to date
    root@y [/var/spool/exim]#
     
  19. xsenses

    xsenses Well-Known Member

    Joined:
    Aug 29, 2002
    Messages:
    233
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Huntington Beach, Ca
    sysup does not work here and I went to 6.2 R-18
     
  20. sexy_guy

    sexy_guy Well-Known Member

    Joined:
    Mar 19, 2003
    Messages:
    848
    Likes Received:
    0
    Trophy Points:
    16
    Maybe you would like to come over to our server to see why mysql refuses to update. I have tried everthing. Yours may be fine and so was our others. They ugpraded fine with the exception of one server which refuses to upgrade. Its already at E28 and none of the commands have kicked mysql into gear. See my msg above. Mysql is dated Dec which says thats the last time it was upgraded. I may just try to upgrade it using -Uvh but im not sure if that would be ok.
     

Share This Page