Web Hosting Talk : Web Hosting Main Forums : Dedicated Server : managed.com and elkhost.com

[seniorfog]

there is an interesting development over at elkhost at its forum.
evidently elkhost hosted a spammer ebaylogin.com which involved the fbi because of its seriousness. a managed.com server was used, and even when the offender was removed by elkhost, the whole server was taken offline by managed.com including the other subscribers sites (and their own businesses). businesses were evidently ruined by the closing of the server because there was no service for three days and elkhost had no access to the other compliant sites.

[amusive.com]

Was the server seized?

[SkullOne]

Usualy when the FBI does an investigation, they seize equipment. I think this is a little outside Managed.com's control.
And if Managed.com had the equipment still, and the FBI were knocking on the door, they have the right to take the box offline per their own AUP.

When I worked at a small ISP here, a co-location box was hacked, and was used to send threatening e-mails to various people, the FBI came and realized it had been hacked.
The equipment wasn't seized, but we took the box offline for about a week before the customer could assure us he had taken precautionary steps to secure his box so things like that didn't happen in the future.

Managed.com was probably just following their own policy taking an offending box down. And if the box was critical enough to "ruin" businesses, I feel sorry for those businesses who got conned into putting mission critical stuff on a single, el-cheapo box.

[nuclear]

Quote:

Managed.com was probably just following their own policy taking an offending box down. And if the box was critical enough to "ruin" businesses, I feel sorry for those businesses who got conned into putting mission critical stuff on a single, el-cheapo box.

I'd have to agree with this statement. Managed.com is completely within their rights to take the server offline even if it wasn't seized.

Sites like that are serious threats these days, considering I received an email a week or two ago that was a PayPal spoof. In all my years of using computers, I must say it was the most authentic fake I have ever seen.

This is why webhosts shouldn't use total automatic account creation; and if they do, they should at LEAST audit the account within 24 hours to make sure someone like this did not sign up.

If the server was hacked, or a reseller added the domain...well, that's the server owner's fault for not properly managing it. In my opinion, people should make sure they know exactly what's going on with their servers in regards to what data is on them, and what sites are being hosted on them. Yes, this takes time...but is well worth it in the end when you prevent things like this.