Welcome to World of IPTV

With

+23k members
+11k threads
+106k posts

we are the most popular IPTV community on the web. 

IMPORTANT NOTE:
WE HAVE RECENTLY NOTICED THAT TOO MANY DOUBLE FAKE ACCOUNTS ARE CREATED IN THE PAST.
TO PREVENT THIS ISSUE THE DECISION WAS MADE THAT IN THE FUTURE A ANNUALLY FEE 20 EURO WILL BE RAISED FOR NEW MEMBERSHIPS.

Join now to the World of IPTV

Forum Rules

Before you start, check out the forum rules first

Account upgrade

Upgrade your account to get access to full features

Advertising

Would you like to place your advertisement with us ?

Resources Manager

Hundreds of IPTV scripts and apps are available for download

My Xtream UI Panel Hacked

dreambox2011

Extended Member
Ext. Member
Joined
Jul 23, 2019
Messages
344
Reaction score
1,658
Points
104
Location
turkiye
EASY WAY TO PROTECT X UI

buy a domain
add it to Cloudflare and turn cloudflare ON ( orange cloud )
Create a dns point to your main IP ex: cmsx123.domain.tdl ( something only you know)

on your nginx conf

PHP:
server {
        listen 8447 ssl;ssl_certificate server.crt;ssl_certificate_key server.key; ssl_protocols SSLv3 TLSv1.1 TLSv1.2; #use ssl port 2053, 2083,2097,8447
        index index.php index.html index.htm;
        root /home/xtreamcodes/iptv_xtream_codes/admin/;

        server_name YOURDNS;

        if ($host != "YOURDNS") {
          return 404;
         }

        location ~ \.php$ {
            limit_req zone=one burst=8;
            try_files $uri =404;
            fastcgi_index index.php;
            fastcgi_pass php;
            include fastcgi_params;
            fastcgi_buffering on;
            fastcgi_buffers 96 32k;
            fastcgi_buffer_size 32k;
            fastcgi_max_temp_file_size 0;
            fastcgi_keep_conn on;
            fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
            fastcgi_param SCRIPT_NAME $fastcgi_script_name;
        }
    }

your x ui will only open ( works ) if they know the DNS you used.
you can also add some rules do Cloudflare to increase your protection

its not solve all the problems but will help.


how to add different addresses into this
 

artiste20077

Extended Member
Ext. Member
Joined
Sep 27, 2019
Messages
34
Reaction score
14
Points
19
Location
Algeria
As i said before , if you are a professional in developpement and security use the hosted panels like xc ui , if not , the best solution is using cms

The files uploaded was on the admin directory , any hacker know very well what is python and the xc ui is very easy to be hacked

Personally i am using a panel developped by me with some features , and also i am using a cms panel for my clients
 
Channels MatchTime Unblock CDN Offshore Server Contact
100 cnx / 90€ 5Gbps / 180€ 48CPU-256GRAM 10Gbps 569€ Skype live:giefsl
500 cnx / 350€ 10Gbps / 350€ 48CPU-128GRAM 5Gbps / 349€ TG @changglobize
1000 cnx / 500€ 20Gbps / 700€ 40CPU-128GRAM 20Gbps / €980 http://coronaserver.com

baja92

Extended Member
Ext. Member
Joined
Jul 2, 2019
Messages
37
Reaction score
73
Points
29
Location
viditito121
I am hacked again to see if there is a solution I am willing to pay for.
 

artiste20077

Extended Member
Ext. Member
Joined
Sep 27, 2019
Messages
34
Reaction score
14
Points
19
Location
Algeria
I am hacked again to see if there is a solution I am willing to pay for.

as long as you have the admin directory in your server and there is no update to fix this security bug you will facing the same problem
 
Channels MatchTime Unblock CDN Offshore Server Contact
100 cnx / 90€ 5Gbps / 180€ 48CPU-256GRAM 10Gbps 569€ Skype live:giefsl
500 cnx / 350€ 10Gbps / 350€ 48CPU-128GRAM 5Gbps / 349€ TG @changglobize
1000 cnx / 500€ 20Gbps / 700€ 40CPU-128GRAM 20Gbps / €980 http://coronaserver.com

siscon

Extended Member
Ext. Member
Joined
May 29, 2020
Messages
38
Reaction score
25
Points
19
Location
Paraguay
Website
canalesiptv.org
first rule on secure: anything is forbidden except what i permit explicity
second rule: never leave or use defaults ports on your server
3rth : learn to secure your self using multiple technics like 2FA, private vpn, tunnels, etc.
 
shape1
shape2
shape3
shape4
shape5
shape6
Top
AdBlock Detected

We know, ad-blocking software do a great job at blocking ads. But our site is sponsored by advertising. 

For the best possible site experience please take a moment to disable your AdBlocker.
You can create a Account with us or if you already have account, you can prefer an Account Upgrade.

I've Disabled AdBlock