Hello.
Today I was on a server and noticed that it had RedisBungee (it has about 100 players average). I tried the default 6379 port to try to telnet into it and it didn't work so I port scanned it.
I noticed that this server had another 4 digit open port starting with a 6 so I tried that and sure enough it worked. I was in their Redis. I tried a simple echo command to see if it had any auth and it didn't...
After this I scanned for the open channels and didn't find any (I checked the...
When people don't firewall their Redis...
Today I was on a server and noticed that it had RedisBungee (it has about 100 players average). I tried the default 6379 port to try to telnet into it and it didn't work so I port scanned it.
I noticed that this server had another 4 digit open port starting with a 6 so I tried that and sure enough it worked. I was in their Redis. I tried a simple echo command to see if it had any auth and it didn't...
After this I scanned for the open channels and didn't find any (I checked the...
When people don't firewall their Redis...