store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Mon Sep 22, 2014 12:12 pm

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 10 posts ] 
Author Message
 Post subject: Proftpd
Unread postPosted: Thu Nov 11, 2010 9:04 am 
Offline
Forum Regular
Forum Regular

Joined: Thu May 07, 2009 12:46 pm
Posts: 287
Hello i got a email of my hoster

Code:
We wish to inform you regarding a highly critical security vulnerability which may affect your UNIX / Linux server(s).
A fault in the very commonly used ProFTPD package allows any attacker to gain complete control over your server. Although the ProFTPd project has released a new .pachted. version for their FTP server software, most control panels are not yet updated with this version.

As such, all Plesk panel installations are vulnerable to the exploit now published online. However, the code flaw within ProFTPd is present in all versions (expect for 1.3.3c) and thus the exploit can be rewritten to include other control panels such as cPanel or DirectAdmin.

Leaseweb advices our customers to make use of the following solutions:

.   Update your Plesk system, the new patches have just been released and verified by Leaseweb.

.   If you are using a CentOS based installation of Plesk, please make use of the ATOMIC repositories as well, these also include a bugfix:

        # wget -O - http://www.atomicorp.com/installers/atomic
        # sh yum upgrade psa-proftpd


If you have another version of Plesk or are vulnerable via another way, please consider the options below

.   Disable the FTP daemon until a patch has been issued for your system, you can use the SCP protocol for data transfers

.   Limit your FTP access to certain IP addresses

.   If you have a stand-alone ProFTPD installation, consider using PureFTPd or custom recompile a new version from ProFTPD (at least 1.3.3c or higher)

.   64bit versions are currently not affected with the latest version of the exploit. This gives customers with a 64bit installation more time to secure their systems
 

## Parallels has issued the following information for its customers

Parallels Plesk Panel 9.x, 9.5x and 10 include this vulnerability. Parallels will issue Micro Updates (hotfixes) for 9.5.2 and 9.5.3 no later than 12:00 GMT (noon) on Thursday November 11, (7:00am EST in the US) to fix this.
The patch for Parallels Plesk Panel 10.01 will be released at 17:00 GMT on Thursday November 11, (12:00pm EST in the US).
Patches for Plesk 9.0, 9.22, and 9.3 will be posted by 12 noon GMT on Friday November 12, (7am EST in the US). Parallels updates on this will be coming soon.

NOTE! The updates for Plesk 9.5.2 and 9.5.3 are online! Please update your Plesk system as soon as possible via the Update manager in your Plesk control panel. The micropatch is part of the .Base packages of Plesk.



offcourse atomic have fix it but...
now plesk has a update but when i try to update i got this what to do?

Code:
Determining the packages that need to be installed.
ERROR: Unable to proceed with the installation until the package psa-proftpd-1.3.3c-2.el5.art.i386 is removed from the system.
Not all packages were installed.
Please resolve this issue and try installing the packages again.
If you cannot resolve the issue on your own, contact product technical support for assistance.


can i ingnore the update for now or remove psa-proftpd-1.3.3c-2.el5.art.i386?


Greetz


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 9:45 am 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin

Joined: Wed Dec 31, 1969 8:00 pm
Posts: 7901
Location: earth
Can you tell me more about what you're doing in the autoinstaller to get that message?


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 10:26 am 
Offline
Forum Regular
Forum Regular

Joined: Thu May 07, 2009 12:46 pm
Posts: 287
Nothing a only do next

Code:
[root@xxxxxxxx ~]# /usr/local/psa/admin/sbin/autoinstaller


Code:
Welcome to the Parallels Installation and Upgrade Wizard!
===============================================================================

This wizard will guide you through the installation or upgrade process. Before
installing or upgrading Parallels products, be sure to back up your data.

To start the installation or upgrade, press N and then press Enter.
To quit the installer, press Q and then press Enter.

------ IMPORTANT ------

* Before installing or upgrading Parallels products, be sure to back up your data.

* New installation of product(s) should be performed on clean servers only.
  Only the operating system with the networking option should be
  installed for new installations.
  Parallels will not be held liable for damages resulting from installation
  of products on a server with anything other than a fresh installation of the
  operating system for which the product installation was intended.

By using this Wizard you agree to the terms and conditions described at
http://www.parallels.com/en/company/terms/ and those of the Parallels Panel End User
License Agreement.

N) Next page;  Q) Cancel installing
Select an action [N]: N



Code:
Select product software source
===============================================================================

You can install products by using any of the following sources:

 * Local media
 * Official Parallels server
 * Other network site


Current settings:
 Install products from Parallels server
 Install required system packages from Parallels server
Store downloaded files in: /root/parallels

N) Next page; P) Go back;  Q) Cancel installing
S) Change source; T) Change target directory;
Select an action and press ENTER [N]: N


Code:
HTTP Proxy Setup
===============================================================================

If you are behind a firewall and use an HTTP proxy, you should specify the proxy server below.
If your proxy requires authentication, select "Use authentication"
and specify the username and password

Current settings:
 Do not use proxy.

N) Next page; P) Go back;  Q) Cancel installing;
S) Select proxy server; A) Use authentication;
Select the required action [N]: N


Code:
The following product versions are available:

1. [*] Parallels Plesk Panel
  2. ( ) Parallels Plesk Panel 10.0.1
  3. ( ) Parallels Plesk Panel 10.0.0
  4. (*) Parallels Plesk Panel 9.5.3 (currently installed)

5. [ ] Parallels Small Business Panel

6. [*] Sitebuilder
  7. (*) Sitebuilder 4.5.0 (currently installed)

N) Go to the next page; P) Go to the previous page; Q) Cancel installing
To select a version, type the respective number;
Select an action [N]: N




Code:
Show components for the product:

1. (*) Parallels Plesk Panel  ........ 1 of 44 components selected
2. ( ) Sitebuilder  ........ 0 of 5 components selected

Please select the components of Parallels Plesk Panel you want to install:

 3.  *  Base packages of Plesk
 4. [=] Plesk Updater
 5. [=] PostgreSQL server support
 6. [ ] Application vault packages
 7. [ ] Plesk Professional Web Site Editor
 8. [=] Plesk API [former Plesk Agent]
 9. [ ] Plesk migration manager
10. [ ] SiteBuilder publishing support for Plesk
11. [ ] SiteBuilder module migration suite
12. [ ] ColdFusion support for Plesk
13. [ ] MIVA Empresa support
14. [ ] Plesk billing
15. [=] PHP5 support
16. [.] <+> Plesk hosting features // 3 of 5 components selected

  Different mailservers
17. (=) Qmail mailserver
18. ( ) Postfix mailserver

19. [.] <+> Additional Plesk modules // 1 of 5 components selected
20. [ ] <+> Game servers // 0 of 3 components selected
21. [.] <+> Addition mail services // 2 of 4 components selected
22. [.] <+> Server backup solutions // 1 of 2 components selected
23. [.] <+> Additional language packs // 1 of 9 components selected
24. [=] <+> Plesk webmails support // 2 of 2 components selected

N) Next page; P) Go back;  Q) Cancel installing;
A) Select all; D) Deselect all;
Enter number to toggle the component or to view the group;
Type a number or a character of desired action [N]: N


Code:
Retrieving information about the installed packages...

File downloading SiteBuilder/SiteBuilder_4.5.0/thirdparty-rpm-CentOS-5-i386/thirdparty-4.5.0-cos5-i386.hdr.gz: 11%..26%..41%..56%..71%..86%..100% was finished.
File downloading SiteBuilder/SiteBuilder_4.5.0/dist-rpm-CentOS-5-i386/build-4.5.0-cos5-i386.hdr.gz: 10%..20%..30%..40%..50%..60%..70%..80%..90%..100% was finished.
File downloading SiteBuilder/SiteBuilder_4.5.0/update-rpm-CentOS-5-i386/update-4.5.0-cos5-i386.hdr.gz: 10%..20%..30%..40%..50%..60%..70%..80%..90%..100% was finished.
File downloading PSA_9.5.3/dist-rpm-CentOS-5-i386/build-9.5.3-cos5-i386.hdr.gz: 10%..20%..30%..40%..50%..60%..70%..80%..90%..100% was finished.
File downloading PSA_9.5.3/update-rpm-CentOS-5-i386/update-9.5.3-cos5-i386.hdr.gz: 10%..20%..30%..40%..50%..60%..70%..80%..90%..100% was finished.
File downloading PSA_9.5.3/thirdparty-rpm-CentOS-5-i386/thirdparty-9.5.3-cos5-i386.hdr.gz: 11%..20%..32%..41%..52%..61%..70%..82%..91%..100% was finished.
Determining the packages that need to be installed.
ERROR: Unable to proceed with the installation until the package psa-proftpd-1.3.3c-2.el5.art.i386 is removed from the system.
Not all packages were installed.
Please resolve this issue and try installing the packages again.
If you cannot resolve the issue on your own, contact product technical support for assistance.
[root@xxxxxxx ~]#



Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 12:16 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin

Joined: Wed Dec 31, 1969 8:00 pm
Posts: 7901
Location: earth
So this is on an upgrade from 9.5.2 to 9.5.3 right? As an alternative method there, try updating through yum instead of the autoinstaller


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 12:23 pm 
Offline
Forum Regular
Forum Regular

Joined: Thu May 07, 2009 12:46 pm
Posts: 287
No it's allready 9.5.3

Code:
The following product versions are available:

1. [*] Parallels Plesk Panel
  2. ( ) Parallels Plesk Panel 10.0.1
  3. ( ) Parallels Plesk Panel 10.0.0
  4. (*) Parallels Plesk Panel 9.5.3 (currently installed)

5. [ ] Parallels Small Business Panel

6. [*] Sitebuilder
  7. (*) Sitebuilder 4.5.0 (currently installed)

N) Go to the next page; P) Go to the previous page; Q) Cancel installing
To select a version, type the respective number;
Select an action [N]: N


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 1:35 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin

Joined: Wed Dec 31, 1969 8:00 pm
Posts: 7901
Location: earth
So some micro update then. Im afraid theres not much we can do from our side, the autoinstaller is not a dynamic updater like yum. Its looking for fixed version numbers on packages, so when youve got an update situation like this it just can't adapt to it.

What you could do is remove the 1.3.3c version, and try running the Plesk upgrader again. It will probably re-install the vulnerable version (so disable/block ftp with firewall rules) and complete the upgrade. When thats done you can upgrade to 1.3.3c again.


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 2:11 pm 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Sat Aug 20, 2005 9:30 am
Posts: 2812
Location: The Netherlands
Plesk announced a micro-update to fix the ProFTPd vulnerability and when I read that I was afraid that would get messy with ART's updated package, since micro-updates are not RPM installs AFAIK, but just scripts that mess with files.

_________________
Lemonbit Internet Dedicated Server Management


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 3:19 pm 
Offline
Forum Regular
Forum Regular

Joined: Thu May 07, 2009 12:46 pm
Posts: 287
Or can leave it like that ?

psa-proftpd-1.3.3c-2.el5.art.i386 is the good version or not?

or is it still vulnerable?


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Thu Nov 11, 2010 4:27 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin

Joined: Wed Dec 31, 1969 8:00 pm
Posts: 7901
Location: earth
Thats a good version. It also supports clamav, sftp, rbls, and ssl/tls ftp


Top
 Profile  
 
 Post subject: Re: Proftpd
Unread postPosted: Wed Feb 22, 2012 6:54 am 
Offline
Forum User
Forum User

Joined: Tue Mar 28, 2006 4:03 am
Posts: 59
I ran exactly in the same problem for micro updates... they can't be installed due to this update of proftpd from ART.
I don't think I'll remove the psa-proftpd (yum remove psa-proftpd), as there're so many dependences!
So what could I do in order to run the micro-update?
Thanks for your help.

Removing:
psa-proftpd i386 1.3.3c-2.el5.art installed 5.8 M
Removing for dependencies:
PPWSE i586 1.1-cos5.build95100504.12 installed 11 M
SSHTerm noarch 0.2.2-9.278624 installed 4.9 M
cs-gs i586 2.0.0-cos5.build95100504.12 installed 1.3 M
miva-ssl-stub i386 1.0.1-0.91137 installed 3.1 k
psa i586 9.5.2-cos5.build95100504.12 installed 34 M
psa-api-rpc noarch 9.5.2-cos5.build95100504.12 installed 1.4 M
psa-appvault-advancedpoll noarch 2.03-8203720080409005333 installed 1.3 M
psa-appvault-anyinventory noarch 2.0-8202820080409005337 installed 1.7 M
psa-appvault-articlepublisher noarch 1.0-8200920080409005343 installed 4.1 M
psa-appvault-autoindex noarch 2.2.4-8200220080409005350 installed 1.1 M
psa-appvault-avactis noarch 1.8.1-8200720080409005405 installed 18 M
psa-appvault-b2evolution noarch 0.9.0.12-8203020080409005439 installed 11 M
psa-appvault-bbclone noarch 0.49-8200520080820033040 installed 6.2 M
psa-appvault-brim noarch 2.0.0-8203120080409005520 installed 8.7 M
psa-appvault-coppermine noarch 1.4.16-8200220080409005533 installed 15 M
psa-appvault-cs-cart noarch 1.3.5-8201220080409005618 installed 42 M
psa-appvault-cslh noarch 2.14.5-8200220080409005735 installed 4.2 M
psa-appvault-cubecart noarch 4.2.0-8200220080409005750 installed 9.5 M
psa-appvault-docfaq noarch 1.71-8203720080409005800 installed 587 k
psa-appvault-dolphin noarch 6.0.0-8201020080409005813 installed 25 M
psa-appvault-drupal noarch 6.1-8200320080409005854 installed 4.9 M
psa-appvault-easybiller noarch 1.0-8200120080409013521 installed 9.5 M
psa-appvault-easysnaps noarch 2.0-8200120080409013534 installed 15 M
psa-appvault-egroupware noarch 1.4.002-8201220080409005942 installed 53 M
psa-appvault-emuwebmail noarch 7.0.1-8200720080409010123 installed 14 M
psa-appvault-eswap noarch 1.0-8200220080409013550 installed 6.6 M
psa-appvault-gallery noarch 2.2-8201720080409010331 installed 60 M
psa-appvault-geeklog noarch 1.4.1-8200320080409010751 installed 18 M
psa-appvault-gtchat noarch 0.93-8003020080409010834 installed 983 k
psa-appvault-helpcenterlive noarch 2.1.5-8200220080409010839 installed 2.6 M
psa-appvault-joomla noarch 1.5.1-8200720080409010915 installed 16 M
psa-appvault-knowledgetreeoss noarch 3.4.5-8200820080409010953 installed 19 M
psa-appvault-mailer noarch 6.3-8200420080609232516 installed 14 M
psa-appvault-mambo noarch 4.6.2-8201520080409011052 installed 18 M
psa-appvault-mantis noarch 1.1.1-8200320080426054935 installed 13 M
psa-appvault-mediawiki noarch 1.11.0-8200920080409011142 installed 21 M
psa-appvault-merchant noarch 5.3-8003020080416013305 installed 7.3 M
psa-appvault-moodle noarch 1.8-8202920080409011254 installed 47 M
psa-appvault-movabletype noarch 4.0-8201520080415002955 installed 35 M
psa-appvault-multicart noarch 2.0-8200120080409013600 installed 11 M
psa-appvault-myorgbook noarch 2.8-8202720080409011528 installed 2.3 M
psa-appvault-noahclass noarch 1.3-8205520080409011532 installed 2.7 M
psa-appvault-nucleus noarch 3.21-8203220080409011537 installed 2.0 M
psa-appvault-onebiz noarch 8.0-8200120080409013714 installed 179 k
psa-appvault-openbiblio noarch 0.5-8204720080409011541 installed 4.3 M
psa-appvault-oscommerce noarch 2.2ms2-8206120080409011549 installed 4.3 M
psa-appvault-osticket noarch 1.3.0-8203320080409011555 installed 404 k
psa-appvault-owl noarch 0.80-8203620080409011601 installed 7.0 M
psa-appvault-phpads noarch 2.0.8-8203520080409011611 installed 8.5 M
psa-appvault-phpbook noarch 1.50-8203220080409011638 installed 1.1 M
psa-appvault-phpbugtracker noarch 1.19-8203820080416050605 installed 1.9 M
psa-appvault-phpdig noarch 1.85-8203120080409011645 installed 1.2 M
psa-appvault-phpmoney noarch 1.3-8204320080409011649 installed 3.6 M
psa-appvault-phpmyfamily noarch 1.4.1-8203420080409011655 installed 824 k
psa-appvault-phpmyvisites noarch 2.3-8202820080409011701 installed 7.0 M
psa-appvault-phprojekt noarch 5.2-8200820080409011713 installed 9.8 M
psa-appvault-phpsurveyor noarch 0.98-8204320080409011723 installed 2.9 M
psa-appvault-phpwebsite noarch 0.10.2-8203420080409011738 installed 15 M
psa-appvault-phpwiki noarch 1.3.11-8204320080409011808 installed 13 M
psa-appvault-pinnacle-cart noarch 3.5.2-82059720080409014951 installed 24 M
psa-appvault-plog noarch 1.0-8203620080409011828 installed 9.7 M
psa-appvault-pmachinefree noarch 2.4-8203520080409011839 installed 3.9 M
psa-appvault-postnuke noarch 0.761a-8205620080409011859 installed 14 M
psa-appvault-ray noarch 3.0.0-8201220080412085531 installed 13 M
psa-appvault-serendipity noarch 1.1.2-8203020080409011950 installed 15 M
psa-appvault-siteframe noarch 3.2.2-8202920080409012006 installed 3.8 M
psa-appvault-smf noarch 1.1.2-8203320080409012015 installed 7.8 M
psa-appvault-socialware noarch 1.0-8200120080409013622 installed 24 M
psa-appvault-ssm noarch 1.0-8203720080409012023 installed 429 k
psa-appvault-sugarcrm noarch 5.0.0-8201220080409012107 installed 45 M
psa-appvault-supportcenter noarch 2.5.2-8200820080409012450 installed 9.5 M
psa-appvault-supportdesk noarch 3.0-8200120080409013706 installed 7.3 M
psa-appvault-tellme noarch 1.2-8202720080409012523 installed 246 k
psa-appvault-tikiwiki noarch 1.9.7-8203920080409012557 installed 42 M
psa-appvault-tutos noarch 1.88-8203820080409012705 installed 5.7 M
psa-appvault-typo3 noarch 4.0-8202020080424050531 installed 27 M
psa-appvault-uebimiau noarch 2.7.8-8203720080409012807 installed 1.3 M
psa-appvault-updates noarch 9.5.2-cos5.build95100504.12 installed 0.0
psa-appvault-vivvocms noarch 4.0.0-8200720080409012815 installed 6.6 M
psa-appvault-webcalendar noarch 1.0.5-8201020080409012824 installed 3.9 M
psa-appvault-webshopmanager noarch 2.0-8203120080409012829 installed 287 k
psa-appvault-wordpress noarch 2.3.3-8200520080412062207 installed 4.2 M
psa-appvault-xoops noarch 2.2-8204820080409012846 installed 5.8 M
psa-appvault-xrms noarch 1.19-8203120080415030843 installed 11 M
psa-appvault-xtcommerce noarch 3.0.4-8200920080409012921 installed 14 M
psa-atmail noarch 1:1.02-cos5.build95100504.12 installed 6.8 M
psa-awstats-configurator noarch 1.0.0-cos5.build95100504.12 installed 0.0
psa-backup-manager i586 9.5.2-cos5.build95100504.12 installed 11 M
psa-fileserver i586 1.0.0-cos5.build95100504.12 installed 700 k
psa-horde noarch 3.3.6-cos5.build95100504.12 installed 20 M
psa-imp noarch 4.3.6-cos5.build95100504.12 installed 12 M
psa-ingo noarch 1.2.3-cos5.build95100504.12 installed 5.0 M
psa-kav i386 1.0.0-cos5.build95100504.12 installed 8.5 M
psa-kronolith noarch 2.3.3-cos5.build95100504.12 installed 7.9 M
psa-libpam-plesk i586 9.5.2-cos5.build95100504.12 installed 153 k
psa-locale-de-DE noarch 9.5.2-2010042716 installed 12 M
psa-locale-es-ES noarch 9.5.2-2010042716 installed 12 M
psa-locale-fr-FR noarch 9.5.2-2010042716 installed 12 M
psa-locale-it-IT noarch 9.5.2-2010042716 installed 12 M
psa-locale-ja-JP noarch 9.5.2-2010042716 installed 13 M
psa-locale-nl-NL noarch 9.5.2-2010042716 installed 12 M
psa-locale-ru-RU noarch 9.5.2-2010042716 installed 15 M
psa-locale-zh-CN noarch 9.5.2-2010042716 installed 11 M
psa-locale-zh-TW noarch 9.5.2-2010042716 installed 11 M
psa-migration-agents i586 9.5.2-cos5.build95100504.12 installed 138 k
psa-migration-manager i586 9.5.2-cos5.build95100504.12 installed 943 k
psa-mimp noarch 1.1.3-cos5.build95100504.12 installed 2.7 M
psa-miva i586 9.5.2-cos5.build95100504.12 installed 4.5 M
psa-mnemo noarch 2.2.3-cos5.build95100504.12 installed 4.0 M
psa-passwd noarch 3.1.2-cos5.build95100504.12 installed 3.7 M
psa-rubyrails-configurator i586 1.1.6-cos5.build95100504.12 installed 0.0
psa-sbm3 noarch 5.0-35 installed 176 k
psa-spamassassin i586 9.5.2-cos5.build95100504.12 installed 167 k
psa-tomcat-configurator noarch 9.5.2-cos5.build95100504.12 installed 0.0
psa-turba noarch 2.3.3-cos5.build95100504.12 installed 7.1 M
psa-updates noarch 9.5.2-cos5.build95100504.12 installed 0.0
psa-vpn i586 2.0.1-cos5.build95100504.12 installed 2.2 M
psa-watchdog i586 2.0.3-cos5.build95100504.12 installed 3.4 M

Transaction Summary


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 10 posts ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group