ISPConfig 3 issueshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues2017-12-07T06:18:19Zhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4869Authenticated local root vulnerability2017-12-07T06:18:19ZChris KesslerAuthenticated local root vulnerabilityThere is an authenticated privilege escalation vulnerability in ispconfig 3.
An authenticated user or admin may inject arbitrary characters while creating a cron job resulting in a crontab being executed as the root user.
This ...There is an authenticated privilege escalation vulnerability in ispconfig 3.
An authenticated user or admin may inject arbitrary characters while creating a cron job resulting in a crontab being executed as the root user.
This has been tested and known to be working from the api.
CVE has been requested and is in progress.3.1.9https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4854Prevent master from being a mirror2017-12-12T09:44:12ZMarius BurkardPrevent master from being a mirrorhttps://www.howtoforge.com/community/threads/local-dns.77457/page-2#post-368252https://www.howtoforge.com/community/threads/local-dns.77457/page-2#post-3682523.1.9https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4833Letencrypt only adds aliasdomains with redirect as "redirect"2017-12-06T15:24:18ZPaulLetencrypt only adds aliasdomains with redirect as "redirect"## short description
Letsencrypt only adds alias domains to the SAN if they are set to redirect mode "redirect". If the redirect mode is "last" they are not added.
## correct behaviour
All alias domains should be added to the SAN
## e...## short description
Letsencrypt only adds alias domains to the SAN if they are set to redirect mode "redirect". If the redirect mode is "last" they are not added.
## correct behaviour
All alias domains should be added to the SAN
## environment
```
Server OS: Debian
Server OS version: jessie
ISPConfig version: 3.17p1
nginx version: nginx/1.6.2
PHP 5.6.30-0+deb8u1 (cli) (built: Feb 8 2017 08:50:21)
Copyright (c) 1997-2016 The PHP Group
Zend Engine v2.6.0, Copyright (c) 1998-2016 Zend Technologies
with Zend OPcache v7.0.6-dev, Copyright (c) 1999-2016, by Zend Technologies
```
## more detail
If the nginx rewrite is like this:
```
if ($http_host = "domain.com.au") {
rewrite ^(?!/\b(sites/domain.com.au|stats|error)\b)/(.*)$ /sites/domain.com.au/$2 last;
}
```
Then it does not get added to the SAN. This is reflected in the ispconfig logs.
3.1.9Marius BurkardMarius Burkard