Results 1 to 8 of 8
  1. #1

    how do you secure reseller hosting?

    I am pretty new to this reseller hosting and had a question about security. I got an email stating that a site that I was hosting was a phishing site. the site in question was one that I made and was the only person who knew the login and password for the cpanel or ftp.

    how exactly did someone manage to get access to it and change files to setup a phishing site?

    more importantly how do I prevent this from happening?

    the way I solved this problem was by changing the cpanel password and loading a backup onto the account.

  2. #2
    Join Date
    Jun 2009
    UK: Oxford
    Well, they don't need to gain access to cPanel. Depending on the permissions on files, they can be remotely exploited by a hacking who injects a unique code.

    From there, they can run their software to capture key-Strokes, scams whatever..

    I would go over your code and check for loops, holes and what ever can be exploited. You should also have break() or exit() in validation codes if it is not correct. Will stop hacking injecting code in the loading session.
    Garbott Ltd - Professional web development & consultancy services
    Oxford.Hosting - Prestigious shared, cloud, dedicated and gaming hosting solutions.

  3. #3
    Did you actually see a phishing site on your domain?

    Could be a false report, maybe because there was a phishing site on the server that hosts you, and someone assumed you where the source of that site, because you where on the same server, or maybe someone was spoofing your domain in an email.

    If your uploading scripts, they can open a whole host of vulnerabilities if they are not written with an understanding of how to make them secure.

  4. #4
    Join Date
    Mar 2009
    It could be all kinds of things it seems who ever is your provider did not update you fully.

    Was the account hacked via an outdated script... was it accessed due to the host being unsecured?

    Was this clients passwords weak or did this clients home computer get infected?

    Lots of missing details here thats just a some examples can be tons of other ways..

  5. #5
    Quote Originally Posted by jatos View Post
    Did you actually see a phishing site on your domain?
    yes. I checked out the site and it was a fake paypal page. since I designed the site that was on account I noticed right away that there were some files and folders that I hadn't uploaded

  6. #6
    Join Date
    Oct 2010
    Bad server security? Desktop/password compromise?

    Yes outdated scripts will bite you. I have people fishing my site for a vulnerability that was in a well known mass mailing script a few versions back, and I have never had that script installed. The only time I had a site hacked is when I let users upload avatars to a forum. I understand that has been fixed but I still don't trust it.

  7. #7
    If its a fake PayPal page, rules out SQL injection at the very least. Erm, what host are you using, and what scripts do you have uploaded. Also, are you connecting via insecure, WEP secured or WPA/WPA2 using TKIP encyption secured wireless, and have you done any virus checking on your PC. If you ever had a trojan found actually on your PC, and not reformatted since, chances are, there is a still a trojan on it.

    Causes I would narrow down to:

    - Script opening vulnerabilities, or, though unlikely, you changed some settings that made your hosting account vulnerable.
    - Someones got hold your password via dictionary/brute force or compromising the flow of data between you and the web host (Trojans/Hacked Wireless with plaintext PWs and the like)
    - Host can't secure their server and you urgently need a better host.

    Best look at the scripts your running first to see if those could be the cause. Then look at the second two options if that doesn't answer things.
    Last edited by jatos; 04-02-2011 at 07:45 PM.

  8. #8
    Join Date
    May 2009
    Ft. Lauderdale, Florida
    The best thing you could do is to login securely (https). Then be sure to have all scripts current. Also have a mod_security enabled with a current rule set.
    JixHost | U.S.A. based hosting & support for 8+ years. | Powerful, reliable network. | Instant Activation | Trusted by over 115,000 clients served globally.
    █ Cloud VPS | Alpha Reseller | Master Reseller | Reseller | BBB Rated "A+".
    █ 24/7/365 Help desk support | Recurring Affiliate Program available.

Similar Threads

  1. Replies: 4
    Last Post: 07-13-2010, 04:09 PM
  2. Secure Reseller Hosting
    By moustafaza in forum Reseller Hosting
    Replies: 9
    Last Post: 01-13-2009, 11:31 AM
  3. Looking For Secure Reseller Hosting
    By sony_style in forum Reseller Hosting
    Replies: 14
    Last Post: 10-03-2006, 07:32 PM
  4. Replies: 0
    Last Post: 09-13-2006, 05:58 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts