Restore the hacked server
183 USD On December 11, I received a letter from the host that my server started brut-force its network,
When I entered the server, I saw an unknown user, a Python program that I got by PID.
But I see that there were changes in /etc/sudoers, /etc/passwd was copied in /etc/passwd- the right to delete that user is not even in the route, it writes some lightning then first as if there is no place, then something else...
I was able to look at myself, until the moment I began to feel what in such things I missed knowledge ...
In the logs list and listb empty, more accurate logs there are no.... or there was no of them or someone loses
Please take care of how I got to the server, conduct a security audit and restore the server functionality.
Client's review of cooperation with Andrii Turbay
Restore the hacked serverThe work was done, and that is the main thing. As for the quality of the work, it's all great, at a higher level.
The price is a bit expensive, but I agreed to consider that I will get a protected server. If compared with the previous freelancer, which set up all this steak and autodeploy went up 40% cheaper. Although I said at the beginning that I needed an autodeploy, the valuator did not include it and the guys proposed to set an autodeploy for a separate fee, I refused and set it on my own.
Contact was untouched, and here is my little bit, sometimes I answered not immediately, but after a few days when I had time to check and write off with the specific.
The weekly project lasted about two months. I will not say that this is exclusively because of the freelancer, as it was so that we played the game "on whose side the ball", that is, there is some work done, it needs to be checked, inform what's wrong, corrected, and again the same. So it came out somehow. I am pleased with the whole collaboration.
Freelancer's review of cooperation with Pavlo Sadovy
Restore the hacked serverThank you for cooperation. It was a long time, but we did everything we wanted.
-
Winning proposal1 day183 USD
832 21 4 Winning proposal1 day183 USD
Good day .
Paul suggests the following:
1 . Search your server as you ask.
2nd I agree with the colleagues and that it would be better to reinstall the VPS from 0 and unlock everything you had there.
Census Argumentation: Due to what you want security I suggest you to safeguard the server completely.
Details or in LS or Telegram
-
7 days27 USD
990 22 1 1 7 days27 USD
Hello to Paul!
You need to perform a server diagnosis to understand how to do so. Go to turn.
-
10 days22 USD
3306 180 0 10 days22 USD
Good night, ready to try to help you. But if such profound changes in system files, it is possible. You need to reinstall the server. Let’s write and talk. and thank you.
-
Советую выташить файлы для бекапа и проверить на изменения с бекапом до взлома.
Дальше переустановить сервер и загрузить с бекапа ваше приложение.
Взлом прозвели скоре всего из:
1. Старой версии Centos
2. Устаревший компоментов
3. Или через ваше приложение.
Если первые два то обновление на актуальные версии должно помочь.
Еще совет использовать ssh ключь для авторизации И отключить все альтернативные порты и протоколы для авторизации. И все вашы приложение должно работать не на руте.
-
Current freelance projects in the category DevOps
Setting up a backup system and optimizing server infrastructure
Objective of the work: Ensure reliable data storage for the CRM system and application by implementing an automated backup system, as well as carry out a series of server improvements to enhance the stability, security, and performance of the infrastructure. DevOps, Databases & SQL ∙ 5 days 17 hours back ∙ 27 proposals |
Deployment of a Ruby on Rails project on VPS + Inbound Email RoutingNeed help deploying a platform for automating requests for public information (based on the open-source engine Alaveteli). The project works as a mail router: it generates unique email addresses for each request, sends them to government agencies, and receives responses back to… DevOps, Linux & Unix ∙ 11 days 20 hours back ∙ 11 proposals |
Residential Proxy Infrastructure EngineerWe're building a residential proxy network from scratch — fully owned, no third-party suppliers. We need one exceptional network engineer to build the entire technical foundation. What you'll build: - Android background SDK that routes proxy traffic through user devices… C & C++, DevOps ∙ 13 days 21 hours back ∙ 15 proposals |
Kyiv