Jump to content
Head Guru

Unplanned Reboots

Recommended Posts

Hey TCH Family,

 

I wanted to let everyone know that we did a complete round of unplanned server reboots. This was prompted by a root exploit that we found in one of our dedicated server clients. The clients server was compromised and this lead us to determine the cause and entry point. Once this was done, I made the choice to do kernel and software upgrades to patch this unreleased to the public exploit and reboot all the servers in the Data Center.

 

It is now 7:15am and we have just completed the last of the reboots.

 

I am confident that this was the correct thing to do, our team always is taking measures to secure our servers and this is just another point in case.

 

As always if you have any concerns or questions please do feel free to let us know.

 

Thank you for your continued support and Merry Christmas to everyone.

Share this post


Link to post
Share on other sites

If this exploit was unknown to the public, did you forward it to the appropriate software developers and/or reputable security agencies?

 

I'd be curious in knowing what component was exploited (obviously you can't release the details of how the exploit was done).

 

Steve

Share this post


Link to post
Share on other sites

Steve,

 

The exploit was in fact forwarded to the proper people, that is our SOP here.

 

Merry Xmas

Share this post


Link to post
Share on other sites

The exploit was in fact forwarded to the proper people, that is our SOP here.

That's good. Can we have any information on what component (high-level -- PHP, Apache, a forum, etc.) was compromised? It will help us determine whether or not we have anything to worry about.

 

Thanks,

Steve

Share this post


Link to post
Share on other sites

I will gladly release the details once the patch is released by the software vendor.

Share this post


Link to post
Share on other sites

A spammer's post triggered an update notification about this. Was the problem's cause ever described here? I'm still curious what it was.

 

Thanks,

Steve

Share this post


Link to post
Share on other sites

×