@bazkie Are you running rsync in a daemon mode for the public? The risk is highest for you. Either way, having installed rsync opens up attacks from both external and internal users; hence, updating both the client and server is recommended. Even a bug in the PHP script on your web server can run rsync, and from there, it can escalate. Nasty stuff.
=> More informations about this toot | View the thread | More toots from nixCraft@mastodon.social
=> View bazkie@beige.party profile
text/geminiThis content has been proxied by September (3851b).