Agent: Forcefully kill the LDAP server process if necessary

Using Twisted for the Log4Shell exploiter has been nothing but trouble since the beginning. When we refactor this exploiter we should use another solution. In the meanwhile, we must be doing something wrong WRT stopping Twisted. The heavy-handed approach is to SIGKILL the process. This isn't ideal, but will be changed when we refactor this component. Issue #2820
guardicore · Jan 13, 2023 · afed595 · afed595
1 parent a576006
commit afed595
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/monkey/infection_monkey/exploit/log4shell_utils/ldap_server.py b/monkey/infection_monkey/exploit/log4shell_utils/ldap_server.py
@@ -210,5 +210,7 @@ def stop(self, timeout: Optional[float] = None):
 
             if self._server_process.is_alive():
                 logger.warning("Timed out while waiting for the LDAP exploit server to stop")
+                logger.warning("Forcefully killing the LDAP server process")
+                self._server_process.kill()
             else:
                 logger.debug("Successfully stopped the LDAP exploit server")