ispCP - Board - Support
Security Announcement: Backup Restore Manager - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Development Area (/forum-1.html)
+--- Forum: Security Advisories (/forum-7.html)
+--- Thread: Security Announcement: Backup Restore Manager (/thread-11536.html)



Security Announcement: Backup Restore Manager - RatS - 08-30-2010 01:23 AM

Today another critical security issue has been found. All ispCP Omega versions are effected.
It is possible to use the ispCP Client Backup Manager to restore forged backups and - in worst case - gain control over the server system.

We strongly recommend to fix the described security issue by disabling the backup restore routine. For this open the ispcp-dmn-mngr in /var/www/ispcp/engine/ and search for

Code:
sub dmn_restore_data {

add
Code:
exit 1;

directly in the next line.

We try to deliver a patch as fast as possible. You can follow the status in ticket: 2440


RE: Security Announcement: Backup Restore Manager - RatS - 08-31-2010 08:51 AM

We have fixed the ispCP security issue discovered this week. For your
convenience we are releasing a patch against ispCP Omega 1.0.6 and will
also work with version 1.0.5.

It is strongly advised that you apply the patch. Remember to
delete the "exit 1;" command after "sub dmn_restore_data {".

After the patch has been applied successfully, run the backup manager to
change the permission of all backup folders and files to read only for
all users except the root user. To run the backup manager type the
following command in your server command line:

Code:
/var/www/ispcp/engine/backup/ispcp-backup-all yes

Please visit Ticket #2440 for more information.