sst1
November 16th, 2010, 17:09
با سلام...
دوستان بعد از اسکن کردن سرور vps با اسکنر اکانتیکس دو تا باگ یکی hight و یکی هم low نشان داد که به شرح زیر هستش:
Vulnerability description
The remote X11 server accepts connections from any host. Any client that can connect to your server is able to monitor your keystrokes and perform other (possibly malicious) actions. This means that, if you do not enforce any type of access control for such clients, anyone on the internet can potentially see what you are typing at xterms or other X clients.
This vulnerability affects Server.
Discovered by: Scripting (X11_server.script).
The impact of this vulnerability
Possible sensitive information disclosure and/or server compromise.
Attack details
The X11 server is running on TCP port 6001.
X11 version : 11.0
http://www.webhostingtalk.ir/../Graphics/target.gif Retest alert(s)
(http://www.webhostingtalk.ir/#retest_1) http://www.webhostingtalk.ir/../Graphics/target.gif Mark this alert as a false positive
(http://www.webhostingtalk.ir/#report_false_positive_1)
How to fix this vulnerability
If you don't connect remotely to this X11 server, it's recommended to disable this service.
Use xhost command to restrict access only to valid hosts
ممنون میشم اگه در باره این باگ خطرناک و نحوه فیکس کردنش توضیح بدید در ضمن سرور من به شرح زیر هستش:
OS:linux centOS
Direct admin
vnc remote=enable
باتشکر فراوان
دوستان بعد از اسکن کردن سرور vps با اسکنر اکانتیکس دو تا باگ یکی hight و یکی هم low نشان داد که به شرح زیر هستش:
Vulnerability description
The remote X11 server accepts connections from any host. Any client that can connect to your server is able to monitor your keystrokes and perform other (possibly malicious) actions. This means that, if you do not enforce any type of access control for such clients, anyone on the internet can potentially see what you are typing at xterms or other X clients.
This vulnerability affects Server.
Discovered by: Scripting (X11_server.script).
The impact of this vulnerability
Possible sensitive information disclosure and/or server compromise.
Attack details
The X11 server is running on TCP port 6001.
X11 version : 11.0
http://www.webhostingtalk.ir/../Graphics/target.gif Retest alert(s)
(http://www.webhostingtalk.ir/#retest_1) http://www.webhostingtalk.ir/../Graphics/target.gif Mark this alert as a false positive
(http://www.webhostingtalk.ir/#report_false_positive_1)
How to fix this vulnerability
If you don't connect remotely to this X11 server, it's recommended to disable this service.
Use xhost command to restrict access only to valid hosts
ممنون میشم اگه در باره این باگ خطرناک و نحوه فیکس کردنش توضیح بدید در ضمن سرور من به شرح زیر هستش:
OS:linux centOS
Direct admin
vnc remote=enable
باتشکر فراوان