Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Does 2.2.6 address this backdoor?

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 3 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T Offline
      tontoOz
      last edited by

      Evidently there is a backdoor to pfSense:

      https://github.com/chadillac/pfsense_xmlrpc_backdoor

      Does pfSense 2.2.6 address this and how much of a problem is it?

      1 Reply Last reply Reply Quote 0
      • GertjanG Offline
        Gertjan
        last edited by

        Can't make this work ….  ;)

        Back then (April 2015) we had also (the same) http://seclist.us/pfsense_xmlrpc_backdoor-a-php-backdoor-on-a-pfsense-firewall-over-xmlrpc-php.html

        Also https://www.youtube.com/playlist?list=PL7j48fGjKnxT9DYFlN248E6HEQ4NErY9q

        /usr/local/www/ignore.php
        wasn't created.

        Anyway : start here : https://forum.pfsense.org/index.php?topic=71015.0 (more threads exists)

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • C Offline
          cmb
          last edited by

          That's not a "backdoor" or even a vulnerability, it was named by a moron.

          It's using administrative functions of the system, post-authentication as a root-level user, to copy files to the system. It can be summarized as "I can root your box, just give me your root password." Uh huh, you can. With every OS ever created. When you're authenticated with full administrative credentials, there is no limit to what you can do, whether pfSense or Windows or Linux or BSD or anything else.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.