Get Paid to Participate - up to $1 per post!     Twitter     Facebook     Google+
Hosting Discussion
 

Hosting Discussion > Web Hosting Forums > Essential Software & Control Panels > Linux Systems with Exposed SSH Ports, Targeted by Python-Based Botnets
forgot password?



Reply


Old
  Post #1 (permalink)   01-10-2018, 02:12 PM
HD Wizard
 
easyhostmedia's Avatar
 
Join Date: Mar 2011
Location: Northumberland, UK
Posts: 5,059
Send a message via MSN to easyhostmedia

Status: easyhostmedia is offline
Mining cryptocurrency with a botnet comprised of Linux-based systems.

Cybersecurity experts believe that a band of experience cybercriminals have created a botnet made of Linux-based systems and is using them to mine Monero, a cryptocurrency.


This is worth a read

https://www.thesslstore.com/blog/lin...-based-botnets
__________________
Terry Robertson - CEO The Easyhost Media Group
Niceday Hosting - Affordable Hosting
PowerSSL - - We Secure your World
The Scamlist Forum - Fighting against scammers
 
 
 


Old
  Post #2 (permalink)   01-10-2018, 04:18 PM
HD Master
 
whmcsguru's Avatar
 
Join Date: May 2016
Posts: 313
Send a message via Skype™ to whmcsguru

Status: whmcsguru is online now
Oh lovely... Keep your stuff up to date, people!
__________________
WHMCS Guru - WHMCS addons, management, support and more.
WHMCS Notifications Extended - Add slack, hipchat, SMS, pushover to your WHMCS install!
WHMCS User and IP Extended Control - Take control of your WHMCS install
Linux admin, WHMCS Guru for hire. PM me for more information
 
 
 


Old
  Post #3 (permalink)   01-11-2018, 04:06 PM
HD Newbie
 
Join Date: Dec 2017
Posts: 7

Status: Evolution Host is offline
Quote:
Originally Posted by whmcsguru View Post
Oh lovely... Keep your stuff up to date, people!
This can't be emphasised strongly enough. It's definitely a good idea to configure automatic updates if possible, for example using Unattended Upgrades (Debian/Ubuntu). If you're concerned about an update potentially breaking an existing solution, exceptions can be added for some packages. Automatic updates can greatly reduce the amount of time that your system is left exposed to newly emerging vulnerabilities.

Quote:
Originally Posted by easyhostmedia View Post
This particular example shows the importance of hardening the security of your SSH server with tools such as fail2ban that can reduce the risk of brute force/password guessing attacks. If password authentication is in use, there's certainly no alternative for a secure password though.

To reduce the risk of fully automated intrusion even further, it's a great idea to use an uncommon non-root username and move the SSH server to a non-default port. Port knocking can also be used to increase the complexity required to successfully port scan for the SSH server. The majority of SSH botnets/worms will only target SSH servers on port 22.
__________________
Evolution Host - Hosting for KVM VPS, IRCds, mIRC Bots and Game Servers.
Premium hosting at affordable prices.
 
 
 


Old
  Post #4 (permalink)   01-12-2018, 12:06 AM
HD Master
 
whmcsguru's Avatar
 
Join Date: May 2016
Posts: 313
Send a message via Skype™ to whmcsguru

Status: whmcsguru is online now
Keeping the system up to date is all well and good, but I was referring more to updating your actual scripts and stuff. Running old, vulnerable software (I'm looking at you , WordPress kids) is just asking for this kind of problem
__________________
WHMCS Guru - WHMCS addons, management, support and more.
WHMCS Notifications Extended - Add slack, hipchat, SMS, pushover to your WHMCS install!
WHMCS User and IP Extended Control - Take control of your WHMCS install
Linux admin, WHMCS Guru for hire. PM me for more information
 
 
 
The Following User Says Thank You to whmcsguru For This Useful Post:
easyhostmedia (01-12-2018)


Old
  Post #5 (permalink)   01-12-2018, 02:55 AM
HD Newbie
 
Join Date: Oct 2015
Location: USA
Posts: 18

Status: unihost com is offline
Quote:
Originally Posted by Evolution Host View Post
It's definitely a good idea to configure automatic updates if possible, for example using Unattended Upgrades (Debian/Ubuntu).
Auto-updates are not so good as they seem to be. We have auto-updated our Ubuntu OS just yesterday and gotten an error, so we were supposed to restore the previous version. This is widely known, that sometimes updates may consist some bugs and error, so the most part of users prefer to install updates themselves after a few days test of new OS version.
 
 
 


Old
  Post #6 (permalink)   01-12-2018, 11:55 AM
HD Master
 
whmcsguru's Avatar
 
Join Date: May 2016
Posts: 313
Send a message via Skype™ to whmcsguru

Status: whmcsguru is online now
Quote:
Originally Posted by unihost com View Post
Auto-updates are not so good as they seem to be.
Or, your OS just hasn't developed the right tools for them. I'd say the latter, not the former.

Quote:
Originally Posted by unihost com View Post
We have auto-updated our Ubuntu OS just yesterday and gotten an error, so we were supposed to restore the previous version.
Try an OS that doesn't actually do that then? 20+ years of experience with RH / Cent devices says nope, that doesn't happen there. I'm not even talking about just one device, but quite a few of them

Quote:
Originally Posted by unihost com View Post
This is widely known, that sometimes updates may consist some bugs and error
No, it's widely known that Ubuntu has this maybe, but not for those of us using professional devices and systems. Redhat has yet to let me down when it comes to these updates. They may in the future, but not something they've done yet
__________________
WHMCS Guru - WHMCS addons, management, support and more.
WHMCS Notifications Extended - Add slack, hipchat, SMS, pushover to your WHMCS install!
WHMCS User and IP Extended Control - Take control of your WHMCS install
Linux admin, WHMCS Guru for hire. PM me for more information
 
 
 
Reply

Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By: