<div dir="ltr">On Tue, Apr 2, 2013 at 1:33 PM, Alex Carver <span dir="ltr"><<a href="mailto:agcarver+ale@acarver.net" target="_blank">agcarver+ale@acarver.net</a>></span> wrote:<br><div class="gmail_extra"><div class="gmail_quote">
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="im">On 4/2/2013 13:23, David Tomaschik wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Based on the analysis from the Malware Must Die Blog and some other things<br>
I've heard about this, it looks like the original source of compromise is<br>
most likely Plesk or CPanel. Doesn't look like there's any Apache<br>
vulnerability being exploited, so Apparmor around Apache wouldn't mitigate<br>
*this* attack.<br>
</blockquote>
<br>
<br></div>
What's the specific user draw to Plesk and CPanel in the first place? It seems all of these management systems are riddled with holes which end up compromising the underlying machine. I suppose there's some benefit to multi-homed systems managing multiple instances but, given all this trouble, I'd rather edit configurations manually and turn off anything like this if I had a remotely hosted system.<br>
<br></blockquote><div><br></div><div style>You know how to edit the configurations. There are many people out there that want "their own server" without having to learn how to configure things, hence control panels. I believe Plesk and CPanel even let you _provide_ shared hosting?</div>
<div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I actually had an argument over Webmin at one point for a public web server that was being installed in my home department at school years ago. The netadmin was strongly suggesting installing it and I was strongly suggesting ssh and vim. Since I was the one going to maintain it, I was fortunate that I won. :)</blockquote>
<div><br></div><div style>I know the developer of Webmin fairly well, and he says there is still plenty of demand, also for Virtualmin (his virtualization-oriented tool). </div></div><br><br clear="all"><div><br></div>-- <br>
David Tomaschik<br>OpenPGP: 0x5DEA789B<br><a href="http://systemoverlord.com" target="_blank">http://systemoverlord.com</a><br><a href="mailto:david@systemoverlord.com" target="_blank">david@systemoverlord.com</a>
</div></div>