-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
received take down request for test.mailu.io #27
Comments
Hi, thanks for sharing this. |
To be safe, I suggest we follow the recommended solution and change the password of the email account. |
Thanks for the quick answers!
That won't be directly necessary. It's just that Hetzner tends to become difficult to deal with if their security warnings go un-handled. I guess you will have the same issue sooner and later if you move the server elsewhere.
That makes sense yes.
I would just like to double-check that. Once we put the demo services up again.
Yes, we should do that. Perhaps make it less machine-parsable would help so that bots don't pick up on it. Perhaps old-school inline image or a small riddle like "the second word of the Mailu slogan (see logo)). On a side note, and mentioned in the above issue, I never did maintenance on the server in the last years. Probably it's better to just reinstall the VM with the latest ubuntu and Docker and bring services up again. Everything needed for that is already contained in this repo anyway. Shouldn't take me more than 20 minutes. I can probably do that over the weekend. |
I will also try to see if I can still access my matrix account somewhere tonight or tomorrow. Makes discussing easier I guess. |
Instead up putting up a new VM we can also do a distro upgrade. Should be a matter of |
VM has been upgraded to Ubuntu 22.04 and a pull request is available to change the password. |
2953: Update admin password for demo server r=mergify[bot] a=Diman0 ## What type of PR? misc ## What does this PR do? Password needed to be updated for the admin Mailu account of the demo server. This has happened. This PR updates the documentation. ### Related issue(s) - [#27](Mailu/infra#27) - ## Prerequisites Before we can consider review and merge, please make sure the following list is done and checked. If an entry in not applicable, you can check it or remove it from the list. - [n/a] In case of feature or enhancement: documentation updated accordingly - [n/a] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file. Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
Hi guys. You didn't hear from me in some years now, but unfortunately I have some bad and urgent news. I've received notice that the demo server has somehow became victim of a botnet. I once donated this small VM to the community years ago and I am still renting it. Access was granted (and used) by a number of contributors in the
./ssh
directory, but I haven't actively maintained the server in terms of updates.I'm also not sure if the host is compromised or if the mail server is used to send spam mail. The latter shouldn't be possible because I remember we were sure to break the outgoing network capabilities of the smtp container. But then again, I don't know what changed over the years.
Abuse mail
As immediate action, I have
docker-compose down
on the demo server in/opt/infra/demo
and disable all cron jobs in/etc/crontab
to prevent it from coming up again.If there is someone around that can investigate further and post back here that would be great.
The text was updated successfully, but these errors were encountered: