BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.pass-the-salt.org//pts2025//talk//XZGSN8
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-pts2025-XZGSN8@cfp.pass-the-salt.org
DTSTART;TZID=CET:20250703T101000
DTEND;TZID=CET:20250703T103000
DESCRIPTION:In this session\, we will examine the Vesta control panel\, kno
 wn for its user-friendly approach to Linux server management. While Vesta 
 facilitates tasks like hosting websites and managing domains\, it also pre
 sents security challenges. Our focus will be on a significant vulnerabilit
 y that allows for admin takeover due to the predictable output of the Bash
  $RANDOM variable used for password and token generation.\n\nAttendees wil
 l gain insights into the exploit process\, its implications for server sec
 urity\, and best practices for mitigating similar risks. Join us to learn 
 how to enhance the security of your Linux server environments and protect 
 against unauthorized access.
DTSTAMP:20260512T153916Z
LOCATION:Amphitheater 122
SUMMARY:Vesta Admin Takeover - Exploiting reduced seed entropy in $RANDOM -
  Adrian Tiron
URL:https://cfp.pass-the-salt.org/pts2025/talk/XZGSN8/
END:VEVENT
END:VCALENDAR