Webmin vulnerability - Over 1 million servers affected

Discussion in 'Server Operation' started by SamTzu, Aug 23, 2019.

  1. SamTzu

    SamTzu Active Member

    Yup. Somebody hacked the repo and lots of servers have been vulnerable for over year.
    Looks like It's the Sourcforge repo that was spreading the backdoored Webmin.
    Here is a handy command to remote reinstall webmin:
    Code:
    ssh -t [email protected] "apt install --reinstall webmin -y"
    or you if you have a network of servers then try this script:
    Code:
    #!/bin/bash
    # Remote install Script
    for ((i=1;i<=254;i++)); do \
    ssh -t [email protected].$i "apt install --reinstall webmin -y"; \
    done;
     
    Last edited: Aug 23, 2019
  2. concept21

    concept21 Active Member

    Which Webmin module is affected? Is it v1.930? :eek:
     
  3. Taleman

    Taleman Well-Known Member HowtoForge Supporter

Share This Page