Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - AnonUser417

Pages: [1]
iptables / Shame on you, CWP
« on: March 28, 2017, 08:24:17 PM »
Yes, I made an account just to say this.

After installing it on CentOS 7, it automatically clears all iptables rules and replaces everything with an allow-all policy, which persists through booting. On top of that, the old firewall rules are completely deleted.

As a result:
- An internet-facing VPS is left completely open towards the internet.
- Any NAT translations are gone, making resources published on the internet through the server unavailable.
- My firewall rules are gone.

Of course I had backups and of course it wasn't production. But still.

Also, IPv6 rules are untouched. And this website required me to log in and register without https connection.

Shame on you, CWP crew. Shame on you. I expected better.

Pages: [1]