Results 1 to 9 of 9
  1. #1
    Join Date
    Mar 2004

    Customer hacking issues

    I had a customer who had been hacked through his old scripts. I notified him but problem is he doesn't care and he did continue paying for email and web hosting. For web wise we have suspended him. What to do with this guy? He is on an old server that I am trying to migrate, what to do with this guy? Migrate him along?

  2. #2
    Join Date
    Feb 2004
    I would migrate him along with the rest and if he continues to pay for something he's not using then so be it..

    I mean if you told the guy but he doesnt care, then you have done all you can.

    Good luck.

  3. #3
    Join Date
    May 2011
    Hamburg Germany
    I have to agree with abtme on this one.

    So long as he is paying and its not affecting others sites then move him across. I mean, if he doesn't care don't worry about it.

  4. #4
    Join Date
    Mar 2004
    Seattle, WA
    You need to consider what type of hack it is. If its just his own data, thats his business.

    If there are vulnerabilities that could let someone use your server for spam, to upload a phishing site, etc. then you need to close the account down before you get yourself blacklisted.

  5. #5
    Join Date
    Aug 2004
    Man that is my favorite customer... They pay and never use there hosting...

  6. #6
    Join Date
    Aug 2010
    Berkshire, UK.
    First step is make sure your TOS/AUP contains a statement that says something along the lines that customers are responsible for making sure all installed scripts/applications are kept up to date to minimise hacking.

    This will protect you in the situation or suspension or termination of services to the customer.

    You say that the customer does not care and just keeps paying. If that is the case, even if they are your "Best" customer be aware that they may simply chargeback for the whole hosting service saying it was un-authorised if you challange them with suspension/termination. This is why your TOS/AUP are very important to justify any actions.

    You also have to think of your other clients, is the customer worth the added danger that they may continue to get hacked leading to anything from blacklisted IP addresses to exploiting your server and effecting all clients.

  7. #7
    Join Date
    Jan 2011

    Null route the vulnerable files in the account and migrate it. Also do a thorough scan on his account, find other vulnerable files if any and null route them also.
    " Your work is to discover your work and then with all your heart to give yourself to it. "

    That's the mark of a true professional !

  8. #8
    Join Date
    Feb 2010
    Evanston, IL

  9. #9
    Long term you will likely have more trouble with the client if they did not resolve the issue. The last thing you want is risk other clients if the server is suspended by your network provider/data center.

Similar Threads

  1. Issues with Cpanel server - Suspect hacking attempts. HELP?
    By dromano in forum Hosting Security and Technology
    Replies: 11
    Last Post: 02-15-2006, 06:43 PM
  2. Replies: 52
    Last Post: 03-07-2005, 08:55 AM
  3. Hacking server !!! not hacking accounts anymore
    By AndyJ in forum Hosting Security and Technology
    Replies: 22
    Last Post: 01-24-2005, 04:53 PM
  4. Liability issues regarding this one customer
    By StevenSimms in forum Running a Web Hosting Business
    Replies: 14
    Last Post: 08-29-2004, 09:15 PM
  5. Customer-Controlled DNS: Security Issues?
    By Circa3000 in forum Hosting Security and Technology
    Replies: 6
    Last Post: 06-28-2003, 01:42 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts