Re: Unauthorized access to VR VM
Dear Antoine, You can simply block inbound connections on your virtual router public ip's by any external firewall,And accept just outbond connections. BR Ahmed On Tue, Apr 5, 2022 at 10:46 PM Antoine Boucher wrote: > Someone has externally gained access to one of our VR vm and installed an > application that tried to ssh to other ips on the web. > > The VR started to miss health checks about a day ago, looking at the VR > running process we discovered that the process ksoftirqd was 95% busy. We > killed the VR and discovered during our investigation from other systems > that the vm was blasting the web trying to connect on port 22. > Unfortunately, the vr has been deleted. > > What could have happened? Any known security issues on the 4.16.1.0 vr > template? > > Regards, > Antoine
Re: 4.16.0.0 release
Hi Nicolas, It will be better if you add 2FA function in this version due cyber security issues, And reCapcha connector also. CVM & SSVM need to be secured from DDOS attack with auto block ip sources configuration , One of our CVM faced many times DDOS attacks with no configuration possibilities to auto block sources ip of attacker, Management UI can be secured by Cloudflare also ip table of management can be configured for various types of actions but CVM can’t secured by Cloudflare proxy. BR Ahmed. > On 13 Sep 2021, at 10:44 PM, Nicolas Vazquez > wrote: > > Hi All, > > We are looking forward to cutting RC1 soon. Kindly share or ping me this week > if there are any issues or pull requests that we should include in 4.16.0.0. > > > Regards, > > Nicolas Vazquez > > >
Re: implement an authentication challenge method (such as Recaptcha) in the CloudStack UI
Hi Nicolas, Thank you very much for your reply, Regarding ReCAPTCHA function it self it is simple , It’s just a standard script in html can be included in any web page including ReCAPTCHA api valid account can be registered in https://developers.google.com/recaptcha/intro But the question is how to include the script of ReCAPTCHA in cloudstack login page UI? And test it successfully. So now I invite the users if any body can deploy and test it in cloudstack as a paid task, If any body interested in this task, please contact me on my email. Thank you very much Ahmed. > On 23 Jul 2021, at 8:27 PM, Nicolas Vazquez > wrote: > > Hi Ahmed, > > I'm not aware about any work on it. I noticed there are some components > listed on Awesome Vue (https://github.com/vuejs/awesome-vue) which can be > used to integrate reCaptcha into CloudStack: > > https://github.com/drozdzynski/vue-grecaptcha > https://github.com/DanSnow/vue-recaptcha > > > Regards, > > Nicolas Vazquez > > > From: ahmed jabbar > Sent: Friday, July 23, 2021 1:59 PM > To: users@cloudstack.apache.org > Subject: implement an authentication challenge method (such as Recaptcha) in > the CloudStack UI > > >> Hi team, >> I want to implement an authentication challenge method (such as Recaptcha) >> in the CloudStack UI,To protect UI from robot attempts . >> Did anybody implement it before ? >> >> >> BR >> Ahmed > > >
implement an authentication challenge method (such as Recaptcha) in the CloudStack UI
> Hi team, > I want to implement an authentication challenge method (such as Recaptcha) > in the CloudStack UI,To protect UI from robot attempts . > Did anybody implement it before ? > > > BR > Ahmed
implement an authentication challenge method (such as Recaptcha) in the CloudStack UI
> Hi team, > I want to implement an authentication challenge method (such as Recaptcha) > in the CloudStack UI,To protect UI from robot attempts . > Did anybody implement it before ? > > > BR > Ahmed
implement an authentication challenge method (such as Recaptcha) in the CloudStack UI
Hi team, I want to implement an authentication challenge method (such as Recaptcha) in the CloudStack UI,To protect UI from robot attempts . Did anybody implement it before ? BR Ahmed
