issues
search
hieuhtr
/
Blog
Don’t be lazy. Don’t make excuses. No one cares. Work fucking harder.
Other
6
stars
2
forks
source link
Unknown process "kxjdhendlvie" on jenkins server
#40
Open
hieuhtr
opened
7 years ago
hieuhtr
commented
7 years ago
Issue & investigating:
https://stackoverflow.com/questions/44257960/unknown-process-of-jenkins-kxjdhendlvie/44260273#44260273
http://jenkins-ci.361315.n4.nabble.com/cryptonight-exploit-td4898258.html
https://groups.google.com/forum/#!topic/jenkinsci-advisories/sN9S0x78kMU
https://slushpool.com/help/manual/stratum-protocol
Hotfix and prevent?
Upgrade Jenkins to version
Jenkins-Ci Jenkins LTS 2.46.2
or newer
Disable the deprecated “remoting mode” of the CLI
Install Host based IDS for tracking all running processes
Write up about this vulnerability
https://blogs.securiteam.com/index.php/archives/3171
Issue & investigating:
Hotfix and prevent?
Jenkins-Ci Jenkins LTS 2.46.2or newerWrite up about this vulnerability