Joseph_M
04-29-2004, 07:51 PM
As some of you may already know, I'm a reasonable and flexible kind of guy. I'm not a huge deadline-guy, but when money's involved I strive to ensure that any debts are paid off ASAP.
However recently I've encountered a new user on these forums, who goes by the name of xSainTx. The thread that caught my eye was:
http://www.webhostingtalk.com/showthread.php?s=&threadid=264518
Nothing out of the ordinary, and I figured that in the time it would take me to set them up, I'd be better off relaxing and just having someone else do it for me (taking advantage of the strong £).
So he started work on the first day, ran into some problems with our security, and didn't even know the basics of modifying APF, so repeated himself three or four times, and seemed unsure of what ports to open, but after a little bit of decyphering, I managed to find which ports were required, and I opened them.
He then decided to ignore me for a few hours, and then eventually replied saying he'd be finished within an hour or so.
A day of not hearing from him at all passes.
The next day, he sent me a message at around 3am basically stating "Where is my money?!?". I explained to him that he hadn't installed the services as requested, and so he went to work again, and installed them.
The next day he finished off the games server, and instantly requested money, by which time it was around 11pm - midnight. I explained to him that we were about to restart the servers at the APC switch, and that I would paypal the money to him the next day, as I needed to authorise the transfer (due to bank security measures), but I'd do it at 9am the next day, all being well!
So I restarted the servers, and noticed that the services he installed didn't come up, and weren't set to start on boot, I pointed this out to him, but he must have gone to bed, as he didn't answer.
Today, he again complained, and I explained that he didn't do as requested, at which point he had almost completed the job to our satisfaction, we simply wanted to test and we'd pay him as soon as we were available the next day (tomorrow), but he wasn't happy. At approximately 11:30pm GMT he abused a member of our night-team. Who was working from my computer. I'm pleased to say that my man acted responsibly, and didn't blow the roof (as I most likely would have done!). He explained that he couldn't authorise the transaction, and that I'd have to do it at 9am the next day (tomorrow), at which point he started saying that the services were revoked.
My employee then said that the money would be given to him tomorrow, but that he wasn't to go back onto the server until then, as we had to do some additional security checks.
At this point, my employee thought that he wasn't acting responsibly, and changed the passwords on the accounts & on root. xSainTx then had one remaining SSH/FTP session open, and he removed 3 folders from the /home/ directory.
Two of which contained the installations he carried out, and one of which contained some of our personal files.
I consider this an unauthorised access, and would like to inform my fellow WHT members of this character, so that more don't lose files under him.
I apologise for any typos, or grammatical errors, but its 1am and I've just been woken up for this.
I've spoken to Dennis, and I have his permission to post this here.
Regards,
Joe
However recently I've encountered a new user on these forums, who goes by the name of xSainTx. The thread that caught my eye was:
http://www.webhostingtalk.com/showthread.php?s=&threadid=264518
Nothing out of the ordinary, and I figured that in the time it would take me to set them up, I'd be better off relaxing and just having someone else do it for me (taking advantage of the strong £).
So he started work on the first day, ran into some problems with our security, and didn't even know the basics of modifying APF, so repeated himself three or four times, and seemed unsure of what ports to open, but after a little bit of decyphering, I managed to find which ports were required, and I opened them.
He then decided to ignore me for a few hours, and then eventually replied saying he'd be finished within an hour or so.
A day of not hearing from him at all passes.
The next day, he sent me a message at around 3am basically stating "Where is my money?!?". I explained to him that he hadn't installed the services as requested, and so he went to work again, and installed them.
The next day he finished off the games server, and instantly requested money, by which time it was around 11pm - midnight. I explained to him that we were about to restart the servers at the APC switch, and that I would paypal the money to him the next day, as I needed to authorise the transfer (due to bank security measures), but I'd do it at 9am the next day, all being well!
So I restarted the servers, and noticed that the services he installed didn't come up, and weren't set to start on boot, I pointed this out to him, but he must have gone to bed, as he didn't answer.
Today, he again complained, and I explained that he didn't do as requested, at which point he had almost completed the job to our satisfaction, we simply wanted to test and we'd pay him as soon as we were available the next day (tomorrow), but he wasn't happy. At approximately 11:30pm GMT he abused a member of our night-team. Who was working from my computer. I'm pleased to say that my man acted responsibly, and didn't blow the roof (as I most likely would have done!). He explained that he couldn't authorise the transaction, and that I'd have to do it at 9am the next day (tomorrow), at which point he started saying that the services were revoked.
My employee then said that the money would be given to him tomorrow, but that he wasn't to go back onto the server until then, as we had to do some additional security checks.
At this point, my employee thought that he wasn't acting responsibly, and changed the passwords on the accounts & on root. xSainTx then had one remaining SSH/FTP session open, and he removed 3 folders from the /home/ directory.
Two of which contained the installations he carried out, and one of which contained some of our personal files.
I consider this an unauthorised access, and would like to inform my fellow WHT members of this character, so that more don't lose files under him.
I apologise for any typos, or grammatical errors, but its 1am and I've just been woken up for this.
I've spoken to Dennis, and I have his permission to post this here.
Regards,
Joe