Web Hosting Community Forum for Webmasters - Web hosting Forum

Web Hosting Main Forums => Hosting Security and Technology => Vulnerabilities => Topic started by: Kailash on March 18, 2015, 06:27:22 PM

Title: Sentora - General Security Warning
Post by: Kailash on March 18, 2015, 06:27:22 PM
Rack911 (http://www.rack911labs.com/) issued a generate security warning for Sentora. Following was their general security warning:

-----------------
We are issuing a general security warning to all users of Sentora to bring attention to the lack of security within their software.

Sentora, a fork of ZPanel, contains numerous high priority security vulnerabilities that could allow any untrusted users to obtain root access with little to no effort. In one case, a highly publicized security vulnerability that was present within ZPanel still exists in Sentora.

The use of this control panel in an untrusted environment is a bad idea and we must strongly discourage such activity at this time. Sentora is NOT ready for production use in the 'real world' and continued use will put you at risk of being compromised.

We're seeing Sentora be recommended more frequently on various forums; Please stop that until further notice. Normally we do not issue a general security warning, but due to the continued recommendations and lack of knowledge by the developer(s), we simply cannot allow such insecure software to plague the hosting community.
----------------------

- Kailash