You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@cloudstack.apache.org by Nux! <nu...@li.nux.ro> on 2016/06/24 09:40:48 UTC

VR DNS open to the world by default, used in amplification attacks

Hello,

Seems like we have some sort of regression, I know this was fixed at some point, but all my new 4.8 Cloudstack deployments with Security Groups got exploited and used in attacks.

Some related issue to which I've added some more info
https://issues.apache.org/jira/browse/CLOUDSTACK-6432

This needs to be fixed..

--
Sent from the Delta quadrant using Borg technology!

Nux!
www.nux.ro