Jump to content

Unplanned Reboots


Head Guru

Recommended Posts

Hey TCH Family,

 

I wanted to let everyone know that we did a complete round of unplanned server reboots. This was prompted by a root exploit that we found in one of our dedicated server clients. The clients server was compromised and this lead us to determine the cause and entry point. Once this was done, I made the choice to do kernel and software upgrades to patch this unreleased to the public exploit and reboot all the servers in the Data Center.

 

It is now 7:15am and we have just completed the last of the reboots.

 

I am confident that this was the correct thing to do, our team always is taking measures to secure our servers and this is just another point in case.

 

As always if you have any concerns or questions please do feel free to let us know.

 

Thank you for your continued support and Merry Christmas to everyone.

Link to comment
Share on other sites

If this exploit was unknown to the public, did you forward it to the appropriate software developers and/or reputable security agencies?

 

I'd be curious in knowing what component was exploited (obviously you can't release the details of how the exploit was done).

 

Steve

Link to comment
Share on other sites

The exploit was in fact forwarded to the proper people, that is our SOP here.

That's good. Can we have any information on what component (high-level -- PHP, Apache, a forum, etc.) was compromised? It will help us determine whether or not we have anything to worry about.

 

Thanks,

Steve

Link to comment
Share on other sites

  • 7 months later...
×
×
  • Create New...