DigitalOcean

Question

[Security] I cannot access SSH to my droplet because of CyberPanel vulnerabilities

I’m currently facing an issue with SSH access on my DigitalOcean Droplet. After learning about a security vulnerability in CyberPanel, I wasn’t able to update it in time, and now I’m completely locked out of SSH.

Details:

  • Issue: Can’t log in via SSH, even after resetting the root password.
  • Troubleshooting Attempts:
    • Reset the root password in the DigitalOcean console.
    • Tried accessing through the recovery console, but I still can’t connect via SSH.

Has anyone here encountered a similar issue or have any advice on additional steps I could try? Any insights on recovering SSH access after a CyberPanel security issue would be greatly appreciated.

Thanks in advance!

Submit an answer


This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

alexdo
Site Moderator
Site Moderator badge
November 8, 2024

I’m sorry to hear you’re experiencing issues, especially in light of the recent CyberPanel security vulnerabilities.

As mentioned you should be able to access the droplet using the recovery console, if you’re running into an error, feel free to share it here or also to contact our support team as ell.

Once the access is restored you would like to check if the Firewall rules have been changed and re-apply the necessary rules to regain access using a ssh-client. Bobby already provided the commands you can use to ensure ssh access is allowed.

Restoring the droplet from snapshot or backup is also an option in case you have available snapshot or recent backup that contains your most up to date data.

Also, ensure that CyberPanel is updated to the latest version to patch known vulnerabilities. The next step will be to use security tools to scan for malware or unauthorized scripts that may have been introduced during the exploitation.

If backups were not taken until this moment it is a good idea to start backing up the droplet using backups or snapshots in order to have a working solution in case this is needed in the future.

Hope that this helps!

Bobby Iliev
Site Moderator
Site Moderator badge
November 4, 2024

Hey there!

Since you mentioned you tried the recovery console, what is the exact error that you get when you try to access your Droplet via the recovery console?

You should be able to access the console through the DigitalOcean Control Panel. Look for the option to access the console directly, as this will give you terminal access to your Droplet without needing SSH as it bypasses the network configuration.

If you manage to access the console, you can try the following steps to troubleshoot the SSH issue:

  • Once you have console access, check your firewall settings. If you’re using ufw, run:

    sudo ufw status

  • Ensure that SSH (port 22) is allowed. If it’s not, you can enable it with:

    sudo ufw allow 22/tcp

  • Verify that the SSH service is running:

    sudo systemctl status ssh

  • If it’s inactive or failed, try starting it:

    sudo systemctl start ssh

Since you mentioned a CyberPanel vulnerability, it’s worth checking the CyberPanel settings and logs to see if there are any misconfigurations or blocked access attempts.

If you’ve taken a snapshot of your Droplet before the issues arose, you might consider restoring that snapshot. This can help if you’re unable to recover SSH access quickly.

If all else fails, don’t hesitate to reach out to DigitalOcean support. They can help you regain access to your Droplet:

https://do.co/support

- Bobby

Try DigitalOcean for free

Click below to sign up and get $200 of credit to try our products over 60 days!

Sign up

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2024 DigitalOcean, LLC.Sitemap.