LxCenter HyperVM & Kloxo Support

Forum



Members   Search      Help    Register    Login    Home
Home » Archive » Fixed Bugs, Security Issues and Implemented Features » Question : Are slave servers vulnerable too ?
Question : Are slave servers vulnerable too ? [message #70909] Tue, 08 September 2009 01:35 Go to next message
amir1983 is currently offline amir1983  Iran, Islamic Republic of
Messages: 21
Registered: March 2009
Member
Hi,

As far as I know master HyperVM nodes are totally vulnerable to security issues. Is this true about slave nodes as well or not?

Because I have limited access to the HyperVM main console to my own IP for now, so that no one can see HyperVM panel. Just was curious about the slaves...


Thanks

Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #70916 is a reply to message #70909] Tue, 08 September 2009 04:00 Go to previous messageGo to next message
LxCenter_Danny is currently offline LxCenter_Danny  Netherlands
Messages: 2068
Registered: July 2007
Location: Netherlands
Grandmaster
LxCenter Core Team Member
LxCenter Representative
amir1983 wrote on Tue, 08 September 2009 07:35
Hi,

As far as I know master HyperVM nodes are totally vulnerable to security issues. Is this true about slave nodes as well or not?



Wrong info. there is just 1 hole left and recently published. (Backup/restoration process of VM's, not exactly HyperVM holes).
OpenVZ is fixed (dirty one) and Xen is worked on.

So its safe to use HyperVM in production as single and enterprise.

Quote:

Because I have limited access to the HyperVM main console to my own IP for now, so that no one can see HyperVM panel. Just was curious about the slaves...



No need for that.



LxCenter - System Operations

Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #70919 is a reply to message #70916] Tue, 08 September 2009 04:06 Go to previous messageGo to next message
amir1983 is currently offline amir1983  Iran, Islamic Republic of
Messages: 21
Registered: March 2009
Member
Thanks for the info
So I can allow public access to my HyperVM console again?
Are you sure there isn't any other sql injection or something left on so a hacker could gain access exploiting it?

I have also stopped hypervm on all slave nodes ( Xen & OpenVZ ). Isn't it required at all ?

Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #70920 is a reply to message #70919] Tue, 08 September 2009 04:16 Go to previous messageGo to next message
LxCenter_Danny is currently offline LxCenter_Danny  Netherlands
Messages: 2068
Registered: July 2007
Location: Netherlands
Grandmaster
LxCenter Core Team Member
LxCenter Representative
As said, its safe to run on production servers.



LxCenter - System Operations

Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #71119 is a reply to message #70909] Wed, 16 September 2009 20:24 Go to previous messageGo to next message
cyberneticos is currently offline cyberneticos  Spain
Messages: 55
Registered: July 2009
Location: Cadiz, Spain
Valuable Member
How can you say it's safe to run in production when there is a Xen vulnerability ?

DOH!


Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #71140 is a reply to message #71119] Fri, 18 September 2009 23:14 Go to previous messageGo to next message
LxCenter_Danny is currently offline LxCenter_Danny  Netherlands
Messages: 2068
Registered: July 2007
Location: Netherlands
Grandmaster
LxCenter Core Team Member
LxCenter Representative
Because its not a major one i believe.

And only when the VM is shared with for example a web hosting control panel IF a backup/restore process is done.

So basicly, HyperVM is safe to use.

OpenVZ is more used then Xen so a realy big group is safe.

And dont reply on dead end posts for wakeup calls. You did that to much already in my eyes.



LxCenter - System Operations

Report message to a moderator

Re: Question : Are slave servers vulnerable too ? [message #71147 is a reply to message #70909] Sat, 19 September 2009 05:18 Go to previous message
cyberneticos is currently offline cyberneticos  Spain
Messages: 55
Registered: July 2009
Location: Cadiz, Spain
Valuable Member
"I think it's safe"

"A really big group of OpenVZ users are safe"

Does not mean HyperVM is safe. That's why I replied to your post, whether you like it or not.

Listen here consortium people, get off your hi-horse, stop acting like a bunch of assholes and start solving problems. That's why you volunteered to be in the consurtium.

If you are not qualified enough to solve the problem, do us ALL a favor and release the code so we can solve the problems.

I recommend you get off your hi-horse, because the more you post the bigger of an ass you look like, and that affects all of us.


[Updated on: Sat, 19 September 2009 05:19]

Report message to a moderator

Previous Topic:Heads up
Next Topic:Moving foreward -> Kloxo / HyperVM
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sat May 18 19:39:43 EDT 2013

Total time taken to generate the page: 0.01152 seconds
.:: Contact :: Home :: Privacy ::.

Click here to lend your support to: LxCenter and make a donation at www.pledgie.com !

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software