DC
09-27-2000, 01:29 AM
Hello,
I am a reseller for an Alabanza host and I received this notice Monday.
<This morning we discovered that several domains had
been added to your nameservers via the Virtual
Nameservers option on your control panel. This has
resulted in several of these domains being redirected
to a porn site and created a serious business
situation for those domains involved. Until these
issues can be resolved, we have disabled SSH access
for your account and changed the password on the
control panel for your account. If you have any
information on how this information was entered
against your nameservers, or if you feel that your
username and password might have been compromised, or
if any third party was allowed access to your account,
please forward it to us>
-------------------------------
How could something like this happen, NO-ONE knows my password?
-------------------------------
Later that day I received the following.
<Our apologies for restricting access to the account
while we sorted out the issues associated with this.
We have found the culprit, who happened to use your
control panel as the entry point, and are taking
appropriate action. We are enabling SSH access for
MY-ACCOUNT NAME.net - please let us know if for any reason
you are unable to get shell access.
Thanks for your patience in this matter.>
----------------------------------------
Could this be a problem down the road, is it that easy to break into a control panel like Alabanza's?
I am a reseller for an Alabanza host and I received this notice Monday.
<This morning we discovered that several domains had
been added to your nameservers via the Virtual
Nameservers option on your control panel. This has
resulted in several of these domains being redirected
to a porn site and created a serious business
situation for those domains involved. Until these
issues can be resolved, we have disabled SSH access
for your account and changed the password on the
control panel for your account. If you have any
information on how this information was entered
against your nameservers, or if you feel that your
username and password might have been compromised, or
if any third party was allowed access to your account,
please forward it to us>
-------------------------------
How could something like this happen, NO-ONE knows my password?
-------------------------------
Later that day I received the following.
<Our apologies for restricting access to the account
while we sorted out the issues associated with this.
We have found the culprit, who happened to use your
control panel as the entry point, and are taking
appropriate action. We are enabling SSH access for
MY-ACCOUNT NAME.net - please let us know if for any reason
you are unable to get shell access.
Thanks for your patience in this matter.>
----------------------------------------
Could this be a problem down the road, is it that easy to break into a control panel like Alabanza's?