Release 10.0.5.GA.4518.UBUNTU20_64 NETWORK edition.
Hello all!
We've been compromised in the past so I want to make sure . We just got up a clean version of Zimbra 10 and we try to monitor the files in the zimbra directories to see if there are any new ones.
I did see this and I know these are often offshot type files from the java system but wanted to make sure with all of ya'll
/jetty/work/zimbraAdmin/jsp/org/apache/jsp/public_$/admin_jsp$1.class
Also any specific things everyone is using to harden their servers? We were on the latest patch in 9 and people still got it. Whether or not they got in prior to X patch and just dropped stuff to access later we couldn't tell.
Hello all!
We've been compromised in the past so I want to make sure . We just got up a clean version of Zimbra 10 and we try to monitor the files in the zimbra directories to see if there are any new ones.
I did see this and I know these are often offshot type files from the java system but wanted to make sure with all of ya'll
/jetty/work/zimbraAdmin/jsp/org/apache/jsp/public_$/admin_jsp$1.class
Also any specific things everyone is using to harden their servers? We were on the latest patch in 9 and people still got it. Whether or not they got in prior to X patch and just dropped stuff to access later we couldn't tell.
Statistics: Posted by twiggers — Thu Dec 14, 2023 7:24 pm