日前，腾讯御见威胁情报中心通报了一起H2Miner黑产团伙利用SaltStack漏洞控制服务器挖矿的入侵案例。 据悉，腾讯安全威胁情报中心于2020年05月03日检测到H2Miner木马利用SaltStack远程命令执行漏洞（CVE-2020-11651、CVE-2020-11652）入侵企业主机进行挖矿。通过对木马的 ...

很多网络安全事件均由安全漏洞引发。日前，腾讯安全威胁情报中心检测到H2Miner黑产团伙利用SaltStack远程命令执行漏洞入侵企业主机、控制服务器进行门罗币挖矿，已非法获利370万元，给企业正常业务造成重大影响。腾讯安全专家提醒企业及时升级修补漏洞，并 ...

SaltStack, a VMware-owned company, has revealed critical vulnerabilities impacting Salt versions 3002 and prior, with patches available as of today. Salt is an open-source IT infrastructure management ...

Saltstack遵循RESTful规范的API接口。 1、 安装salt-api及pyOpenSSL工具包。 10、 通过 curl 命令向指定域名发起请求，使用 -sSk 参数静默跳过证书验证，设置请求头 Accept 为 application/x-yaml 格式，同时以表单形式提交用户名 saltrfapi、密码 123456，并采用 pam 认证方式完成身份 ...

VMware said Tuesday that it plans to acquire SaltStack, makers of event-driven automation software, to bolster its cloud portfolio. Financial terms of the deal were not immediately disclosed. VMware ...

Seventh-annual user conference to feature keynote from Tom Hatch, SaltStack Co-founder, alongside engaging sessions and interactive demos dedicated to creating more secure and reliable digital ...

The Salt Project has issued a secondary fix for a command injection vulnerability after the first attempt to patch the issue partially failed. The vulnerability, tracked as CVE-2020-28243, impacts ...

Search doesn't turn up much. We have adopted SaltStack as our configuration management tool of choice- apparently because it does EVERYTHING and apparently because it ...

SaltStack Enterprise 5.0 draws on high-speed messaging for superior scalability and control, but the web UI is still catching up The only sane and efficient way to manage a large numbers of servers—or ...