The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to close open backdoors for hackers?

Discussion in 'General Discussion' started by pingo, Sep 11, 2003.

  1. pingo

    pingo Well-Known Member

    Joined:
    Nov 16, 2002
    Messages:
    430
    Likes Received:
    0
    Trophy Points:
    16
    A resellers client got jail shell and now he says that his client found more than 20 backdoors. He used just nmap and telnet to get the password of all users. - How could he do that? This is a cPanel server and by default telnet is not enabled. I thought that jail shell were more secure. But more important, how do I close these backdoors - what can I do to find these backdors and then close them. I hope that someone knowing about these things will lend a helping hand.

    Thanks
    John

    cPanel.net Support Ticket Number:
     
    #1 pingo, Sep 11, 2003
    Last edited: Sep 11, 2003
  2. AlaskanWolf

    AlaskanWolf Well-Known Member

    Joined:
    Aug 11, 2001
    Messages:
    537
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Fremont CA
    ask him if his client can prove it is the first thing u need to do to make sure its a legit claim

    cPanel.net Support Ticket Number:
     
  3. shaun

    shaun Well-Known Member

    Joined:
    Nov 9, 2001
    Messages:
    698
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    San Clemente, Ca
    is all your update preferences set to auto in the WHM? Also Is your kernel up2date.

    cPanel.net Support Ticket Number:
     
  4. pingo

    pingo Well-Known Member

    Joined:
    Nov 16, 2002
    Messages:
    430
    Likes Received:
    0
    Trophy Points:
    16
    We found that a user was indeed backdooring. The kernel were recompiled. No, we have not set it to auto update due to many bad experiences with this. The socalled 'stable' version isn't allways stable after a releas and we're usually waiting for 1-2 weeks to let other people have the problems :D

    John

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page