Hello everyone, Just in case you are not aware of it... HyperVM/Kloxo has MANY vulnerabilities right now. I suggest for HyperVM: login to SSH in the master AND EACH slave node and run the following: service hypervm stop This will simply stop the HyperVM service, IT WILL KEEP YOUR VPSs up!!! For Kloxo/LXadmin do the following: Login to SSH and do the following: service lxadmin stop Good luck everyone!
Oh thx for the heads-up, but from where did you hear about this? And is it true for lxadmin too (not the updated version Kloxo)?
Exactly, We are working right now with a VPS that was compromised. We will post any information we find.
Actually, that is not true. Check this news article. http://timesofindia.indiatimes.com/...imself-in-HSR-Layout-/articleshow/4633101.cms
yes, there is an exploit which is dangerous. but in all honesty and from MY TESTING. Its just a scare, you have to have a perfect environment for the exploit to be used. Patches are being issued.
They have released the patch but for time being if you are not using HyperVM then you can temporary disable this service. Kailash
Thats a bit harsh mate, considering the guy put a lot of work into it and his work went to shit due to a security breach... Considering he has a company in behind him, the company may continue to support the product. however on a side note, myself and a few other business partners and investors are getting together to create an alternative for HyperVM. Ill post up more info when its available.
Which company? Lxadmin / HyperVM was a one man show, ran by ligesh. Now that he's dead, the project is dead too.
@SSANZ -- the company is dead. It was a one man show (as said above) so it is not like another board member will step up. What IS happening though, is that the father may be gifting the company to a friend.
Related sites: https://groups.google.com/forum/#!forum/lxdevel - lxcenter discussion https://github.com/mustafaramadhan/kloxo - Kloxo fork https://github.com/hypervm-ng/hypervm-ng - HyperVM fork