Forum Rules
Our Rules: Read to avoid getting banned!
Advertising
Introduce Yourself to the World with Us!
Resource Database
Find the newest resources around IPTV!
Account upgrade
Upgrade your account to unlock more benefits!
Tutorial XUIONE HACKING PROTECTION!
- Thread starter netteflix
- Start date
Please explain why
apt remove openssl -y
the openssl library inside the ubuntu package always has security fixes as long as you use a non-obsolete distro, so I don't see a problem
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
There's SSL Vulnerabilities. Listening ssl ports and grabbing user info easily!
Where is says BalanceIP should I keep as it is or change to my LBs IPs?
Because I have done steps above but my dashboard become inaccessible.
Last edited:
change to your IP's
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
I did. Idk why my dashboard become inaccessible even with my local IP in the list. I displayed a message failed to connect to DB instead.
I already use the MySQL block, allowing access only to my fixed IP and to the LBs.
In addition, SSH access is only allowed to my IP on all machines.
In addition, SSH access is only allowed to my IP on all machines.
Already explained that in different groups, on Telegram, Discord and some forums so i will repeat myself... This is not a hack or a xui.one new discovered breach... All people getting blackmailed have same thing in common they have at least one server from one of the known scammers/liars... They just got into fight and you customers got caught in the middle... No one using servers they buy from me got "hacked" also no one using servers from real trusted sellers got "hacked"... So unfortunately they were able to steal your DB because tbey simply have easy access to your DB from at least one of the servers they sell to you...
Its always sad to hear such things but people come to me to buy servers from me after they finally saw that its better to maybe pay a little more but at least avoid lies, and scam... (and now blackmail...)
Good luck to anyone that got into this situation cause of those pieces of sh**...
Its always sad to hear such things but people come to me to buy servers from me after they finally saw that its better to maybe pay a little more but at least avoid lies, and scam... (and now blackmail...)
Good luck to anyone that got into this situation cause of those pieces of sh**...
Last edited:
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
- It is better to create your own vpn udp protocol for access ssh etc. via vpn but who does not want to
- Add crowdsec to protect your ports
- use Port knocking methode for ssh.
- Block all incoming and outgoing ports except the ports you are using.
- Check your logs daily.
- Do not touch a running system, if you have fixed it all, do not play with your system, buy another small server and do your tests there.
Last edited:
Info - XUI.one Update 1.5.13
Update 1.5.13 Released [CRITICAL] Patched an exploit in the System API that could allow for remote read and write if leveraged correctly. [Core] Reverted EPG system to previous MySQL based system to fix a bug where EPG wasn't being retained. [Core] Fixed EPG API calls and images New Install...
www.worldofiptv.com
Add a line with localhost and panel will open
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
this is a lame address to a problem that only exists when you don't understand your system.
Why in the hell would you remove openssl when you can just update everything to protect you from recent threats.
Good and only pratice to this matter would be to compile nginx and openssl to latest version and update the nginx binaries in XUIONE, that simple!
I really can't understand why people keep cutting corners when SSL is concern, do you guys like to have the police on your backs?
Hi
I have try thisone...
after that panel:
{"error":"MySQL: Cannot connect to database! Please check credentials."}
also clinet lines not work, i had must flush Mysql credentials to make it work..
somebody have really try it?
or what i have to add something?
nice contribution bro
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
Similar threads
