Lights Out (Promo) Lyrics
Version for the ladies coming soon “Lights Out part 2”,...before bed!!
Lights out, like that light pole after 10
It’s time to go in, Farwel
Pterodactyl #announcementsBOT18-Jun-20 10:25 PM
I've released [email protected] to address issues stemming from brute force attempts on the SFTP port. These attempts targeted many users, but were unlikely to be targeted specifically at Pterodactyl, rather a bot detecting the open port and attempting to brute force access using a dictionary attack.
Thanks to @Trixter the standalone SFTP server will no longer even attempt to authenticate users that pass an invalid format in the username. Additionally, the IP address of the client is now logged in the output allowing you to use tooling such as fail2ban to automatically block connections.
Not using the standalone SFTP server? Check out the documentation here: https://pterodactyl.io/daemon/0.6/standalone_sftp.html
Trying to figure out how to upgrade? You should double check the install instructions, but for the most part you should only need to re-download the new binary and restart it.
️ Important Security Advisory ️
Today, July 26, 2020 at approximately 9:20am PST I was made aware of a security vulnerability impacting the beta client API. As a result of some additional questions and digging it became apparent that the vulnerability also impacted the 0.7 client API.
Please upgrade to [email protected] in order to address this vulnerability. This is a moderate impact security vulnerability with a CVSS base score of 4.3. No data modification is possible as a result of this vulnerability.
Upgrade Guide: https://pterodactyl.io/panel/0.7/upgrade/0.7.html
For details on the security vulnerability and what is impacted, plus information on how to manually patch custom installations, please see the following announcement:
Due the the nature of this vulnerability, I am unfortunately unable to properly embargo these details as anyone reading the source would easily be able to understand what the change is and how to exploit it.