Forwarded from 今天abc看了啥🤔 (asfr | abc1763613206🤔)
acme.sh 存在 RCE 漏洞,已经被国产 HiCA 利用
https://github.com/acmesh-official/acme.sh/issues/4659
相关讨论:
https://www.v2ex.com/t/947389
https://twitter.com/mholt6/status/1666920303279349760
关于 HiCA:https://www.v2ex.com/t/868344
https://github.com/acmesh-official/acme.sh/issues/4659
相关讨论:
https://www.v2ex.com/t/947389
https://twitter.com/mholt6/status/1666920303279349760
关于 HiCA:https://www.v2ex.com/t/868344
GitHub
acme.sh runs arbitrary commands from a remote server · Issue #4659 · acmesh-official/acme.sh
Hello, You may already be aware of this, but HiCA is injecting arbitrary code/commands into the certificate obtaining process and acme.sh is running them on the client machine. I am not sure if thi...
😱13🔥1
Offers — LowEndTalk
Alexhost.com | PROMO June Month | VPS, SSL, Web Hosting, Dedicated Servers
Alexhost.com | PROMO June Month | VPS, SSL, Web Hosting, Dedicated Servers
Forwarded from 层叠 - The Cascading
自称 HiCA (及其关联产品 Quantum CA)创始人的 GitHub 用户 xiaohuilam (Bruce Lam) 回应称,利用此漏洞的意图是使一般的 CA 签发过程能整合进 ACME.sh,并且 HiCA 从未利用此漏洞执行恶意代码。Bruce 也提到其已经关闭 HiCA 项目直到调查结束。
https://github.com/acmesh-official/acme.sh/issues/4659#issuecomment-1584414218
thread: /4231
#HiCA
https://github.com/acmesh-official/acme.sh/issues/4659#issuecomment-1584414218
thread: /4231
#HiCA
GitHub
acme.sh runs arbitrary commands from a remote server · Issue #4659 · acmesh-official/acme.sh
Hello, You may already be aware of this, but HiCA is injecting arbitrary code/commands into the certificate obtaining process and acme.sh is running them on the client machine. I am not sure if thi...
🤡16
Forwarded from RSS to Telegram Bot
Debian 12 "bookworm" released
After 1 year, 9 months, and 28 days of development, the Debian project is proud to present its new stable version 12 (code name “bookworm”).
via Debian News
After 1 year, 9 months, and 28 days of development, the Debian project is proud to present its new stable version 12 (code name “bookworm”).
via Debian News
🥰9
Offers — LowEndTalk
30% OFF ALL DEDICATED SERVERS RECURRING | Amsterdam | Dallas | Tampa
30% OFF ALL DEDICATED SERVERS RECURRING | Amsterdam | Dallas | Tampa
❤1👍1
Forwarded from zrj766的频道 (Banned Account)
Proxmox VE 8 (beta) released - based on Debian 12 Bookworm
Release notes:
https://pve.proxmox.com/wiki/Roadmap#Proxmox_VE_8.0_beta1
Upgrade from Proxmox VE 7:
https://pve.proxmox.com/wiki/Upgrade_from_7_to_8
ISO download:
https://enterprise.proxmox.com/iso/proxmox-ve_8.0-BETA-1.iso
via LET
Release notes:
https://pve.proxmox.com/wiki/Roadmap#Proxmox_VE_8.0_beta1
Upgrade from Proxmox VE 7:
https://pve.proxmox.com/wiki/Upgrade_from_7_to_8
ISO download:
https://enterprise.proxmox.com/iso/proxmox-ve_8.0-BETA-1.iso
via LET
Forwarded from zrj766的频道 (Banned Account)
https://endoflife.date/
各种软件、系统的支持生命周期查询
各种软件、系统的支持生命周期查询
endoflife.date
Home
Check end-of-life, support schedule, and release timelines for more than 380+ products at one place.
👍2
Offers — LowEndTalk
🇯🇵-Tokyo-EPYC SSD Storage VPS-BGP/FreeBackup/DedicatedServer/RHService
🇯🇵-Tokyo-EPYC SSD Storage VPS-BGP/FreeBackup/DedicatedServer/RHService
💩6
Offers — LowEndTalk
DALLAS - 3GB VPS @ $3/mo!!! Free DDoS Protection - FREE DOUBLE BANDWIDTH!
DALLAS - 3GB VPS @ $3/mo!!! Free DDoS Protection - FREE DOUBLE BANDWIDTH!