Results 1 to 25 of 33
-
11-08-2005, 02:17 AM #1Business Consultant Manager
- Join Date
- Feb 2004
- Location
- Fort Worth, TX
- Posts
- 2,586
ThePlanet (Another 10+ Hour Reload).. any questions?
Welp unfortunately i'm back to an OS Reload. Mainly due to security reasons. We are going to move from RHE, to fbsd due to a pretty bad server compromise. Although we wanted to do this eventually anyways, but since this happend... wasn't a lot of time to move on it.
Anyways, we called up to ThePlanet on 11/06 and said that we wanted an OS Reload with fbsd. They said no problem, to open an OS Reload ticket. My staff member called up TP again and explained we wanted an update version of fbsd, openssh, etc. The main reason was we've had several compromised servers just HOURS after they handed over the servers. Why you may ask? The software wasn't updated!
So he calls them up and makes sure they add fbsd, cpanel/whm, and updated versions of openssh, blah blah blah. Once its up we hired a 3rd party company to secure the server. All is agreed to.
I submit an OS Reload Ticket into the Orbit HelpDesk around 7-8:00a.m on 11/7. We have 2 hdds, so they said they have to charge to fix the second hdd to work with fbsd as it was using linux. Ok.. just give us a 80GB and we'll pay the $15.00 setup. Ok so that is seddled.
So at 1:35p.m there is finally an update to the ticket, "Starting this reload now".
Then goes 2:00, 3:00, 5:00, 8:00, 11:00, and now I finally responded at 11:48p.m
"Ok so.. its into hour TEN now since we had a "Staring this reload now". I'd like to know what is going on. How does it possibly take TEN hours before we get a single update?????
Am I going to get a refund of $25.00 for this?"
Biggest concerns...
#1 TP not releasing servers with updated software
#2 Customer Support/Tech Support giving us the run around, and not responding to tickets
#3 We called 10 times today, 6 times we could not get through... huh??
#4 I opened up an abuse ticket with TP as one of the people who tried to install a rootkit on one of our servers was downloading the tools from a known hacking haven. <URL REMOVED> <--- ring a bell? They had exploits, viruses, hacking info, even a credit card generator. All TP did was instruct them to remove the credit card generator. This is obviously a haven for hackers.. but ya know.. the site is still up.
I have already contacted Douglas from DN, and looks like i'll be spending our $8,000 in server cost per year with DN. As I, like a ton of ex-customers, have lost faith in this company. Its really sad to see, as TP was my favorite dedicated server provider for over a year and a half now. Unfortunately I wish I would of jumped ship a few months ago.
P.S The kernel that was installed on this most recent server, is known for being one of the most compromiseable kernels for linux servers. Nice.....
We've lost over 35 customers over this mess, which heck.. I don't blame them. If I was a customer of my service, i'd cancel also. And its really sad for us, as we have no control over this right now. But... looks like we'll go with another company, and i'm sure it will be better.
I'll post back if in the morning, they still have yet released the server. I won't be too surprised if its not done then.
MOD EDIT: url removed to avoid since its irrelative to the thread goal.Last edited by Bashar; 11-08-2005 at 02:54 AM.
█ www.JGRoboMarketing.com / "Automate. Grow. Repeat"
█ Office: (800) 959-0182 / A KEAP Certified Developer (KCD)
-
11-08-2005, 02:35 AM #2Retired Moderator
- Join Date
- May 2004
- Location
- Toronto, Canada
- Posts
- 5,105
Please remove that link.
CloudNexus Technology Services
Managed Services
-
11-08-2005, 02:51 AM #3Web Hosting Master
- Join Date
- Jun 2003
- Location
- Istanbul
- Posts
- 662
Agreed, the link have to be removed.
-
11-08-2005, 02:59 AM #4Web Hosting Master
- Join Date
- Jan 2004
- Posts
- 1,184
Sorry but RHE is pretty secure you just need to know what you are doing.
All my TP servers can with the latest up2date (kernel) installed.
Yeat it have been ages since my last os reload but last os reload took about 1-3 hours if I remeber correctly.
Any way good luck...! I hope you find what your looking for...
-
11-08-2005, 04:01 AM #5Web Hosting Master
- Join Date
- Jun 2003
- Location
- Tampa FL
- Posts
- 2,380
was your server managed or unmanaged?
Last edited by anon-e-mouse; 11-08-2005 at 10:29 AM.
-
11-08-2005, 10:30 AM #6Retired Moderator
- Join Date
- Nov 2002
- Location
- WebHostingTalk
- Posts
- 8,901
Originally Posted by RealtorHost
TAKE RESPONSIBILITY FOR YOUR BUSINESS.
On the note of the O/S reloads, not much to say there... that has been an ongoing issue for quite some time. I am not looking forward to the day that I need an O/S reload, for fear that I will be in the same situation as you.
SiriusI support the Human Rights Campaign!
Moving to the Tampa, Florida area? Check out life in the suburbs in Trinity, Florida.
-
11-08-2005, 11:36 AM #7Web Hosting Master
- Join Date
- Jan 2005
- Posts
- 3,403
I'm not happy with TP support too.
Tickets take at least 1 day to be solved.
The last ticket took 2 days and finally i did the job not TP technician (already asked them to use 1 hour admin at the beginning)
-
11-08-2005, 12:27 PM #8Web Hosting Master
- Join Date
- Apr 2004
- Location
- Singapore
- Posts
- 620
Plan ahead. I had do quite a number of Reload at theplanet. And i had projected the time they usually reply with confirmation of start working on the OS reload.. yes.. it can be 10 hours..you just need to observe the time they had those mass reload sessions.
-
11-08-2005, 08:23 PM #9Business Consultant Manager
- Join Date
- Feb 2004
- Location
- Fort Worth, TX
- Posts
- 2,586
Ok... since the URL was removed (im sorry about that) we can all agree its not appropiate, and you'd think TP would take action.
As I am writing this.. no other action has been taken. why???????
TP says they release the server to you updated. When we received the server the kernel wasn't updated. Before we could even secure the server, it was compromised.
And yes we do have a managed server with them....█ www.JGRoboMarketing.com / "Automate. Grow. Repeat"
█ Office: (800) 959-0182 / A KEAP Certified Developer (KCD)
-
11-08-2005, 10:59 PM #10Business Consultant Manager
- Join Date
- Feb 2004
- Location
- Fort Worth, TX
- Posts
- 2,586
Originally Posted by PremiumHost█ www.JGRoboMarketing.com / "Automate. Grow. Repeat"
█ Office: (800) 959-0182 / A KEAP Certified Developer (KCD)
-
11-09-2005, 12:55 AM #11Newbie
- Join Date
- Nov 2005
- Posts
- 5
Your lucky, One time a freind's company was hacked by some .pif's files. They shut them down for security reasons and took over 3+days to get an Secondary HD and OS reload. The Secondary HD was installed pretty fast, but the OS Reload has taken over 24hrs+. Everytime he called them up, They told "OS Reloads are not a guaranteed 24hrs installation, We try to get them done within 24hrs but sometimes they do take longer" and All they did was an automatic OS reload, why would they had that done that earlier is my freinds question.
Sometimes, TP does mess up and most of them it is always when you need them the most. Isnt it great how that turns out?
Ben
-
11-09-2005, 02:39 AM #12Junior Guru Wannabe
- Join Date
- Sep 2004
- Posts
- 53
It's been some time since I needed an OS reload there but they had been relatively quick unless I told them to wait till late afternoon or evevening. I have noticed some complaints of late mentioning slower ticket response times and there was recently some major changes in management there maybe related, maybe not.
-
11-09-2005, 09:05 AM #13WHT Addict
- Join Date
- Mar 2003
- Location
- London, UK
- Posts
- 170
If TP are putting unpatched servers online then you should take that up with their technical support. Managed or not, one should not be expected to rely on blind luck to get a server patched and rebooted before one of the thousands of automated scanners finds it and installs a backdoor.
There really is no good argument for not performing a full system update before the machine receives connectivity to anything but the update server.
-
11-09-2005, 10:22 AM #14Carpe Diem
- Join Date
- Jul 2003
- Location
- Connecticut
- Posts
- 3,038
I thought getting support back on track was the reason they stopped sales?
-
11-09-2005, 11:07 AM #15WHT Addict
- Join Date
- Mar 2004
- Posts
- 126
Originally Posted by Defcon|Rich
Once you get your server back, yes, it is your responsibility to secure it yourself.
Saying that it's their responsibility, is like saying a computer manufacturer like Dell or Gateway should be responsible for updating the system for every single microsoft update on every single brand new computer they make. Guess what? They are not responsible because of the time and effort that would have to go into updating every single brand new box.
It's the same for TP. They'll probably update their reloading system maybe once every few months, but not al the time because an update might screw up their automated reload system, and they probably don't want it broken every other day.
~Garrett
-
11-09-2005, 11:19 AM #16Retired Moderator
- Join Date
- Jan 2003
- Posts
- 9,049
Our own experience is about 24+ hours the last time one of our clients had a harddisk failure at ThePlanet. Repeated calls, etc is useless. You would just be fed the standard line that reloads are done in the order it is received etc and that there is no guarantee of how long it takes.
Well for sure they won't get any of our budget with that kind of procedures. To me, I fail to see how datacenters can treat OS reloads as something they can do on their own sweet time especially since in the case of a harddisk failure (or in this case, a bad root compromise), your server is effectively offline. We are even willing to pay more if that's needed to guarantee a SLA, but there isn't even such an option and to meet their promises of course. In fact, ev1 took about 10-12 hours (just 2 months ago) on one of the 2 last servers we have there when we had a harddisk failure and now we have zero servers there.••• Like us on Facebook to qualify for discounts! •••
••• http://www.sprintserve.net •••
••• Offering: | Internap FCP Bandwidth! | Rebootless Kernel Updates! | Magento Optimized Hosting | Wordpress Hosting | •••
••• Services: | Managed Multiple Cores 64bit Servers | Server Management | •••
-
11-09-2005, 11:32 AM #17Carpe Diem
- Join Date
- Jul 2003
- Location
- Connecticut
- Posts
- 3,038
I don't know how other DC's do it but I would think if there are that many requests then allocating a few folks or hiring additional staff to just doing reload requests would be something to think about for TP as it appears to be something that gets asked for quite often.. I read a month or two ago where TP setup 500 servers for one company in 24 hours so according to that it seems like they are more then capable of getting this done.
I am surprised that they tell you to 'get in line'. As you said a reload should be something that gets done asap. It's tough to run a business and be worried that if something goes wrong it might take a day or two to get sorted out. That's definatly not a good situation for anyone IMO.
-
11-09-2005, 12:38 PM #18Web Hosting Master
- Join Date
- Aug 2005
- Location
- Oxford, England, UK
- Posts
- 828
Originally Posted by sprintserve
Surely with a harddisk failure if it takes 24 hours thier SLA should compensate you, as hardware issues are expected to be resolved within X hours?
-
11-09-2005, 01:29 PM #19WHT Addict
- Join Date
- Mar 2003
- Location
- London, UK
- Posts
- 170
Originally Posted by GMoore7
It's the same for TP. They'll probably update their reloading system maybe once every few months, but not al the time because an update might screw up their automated reload system, and they probably don't want it broken every other day.
Perhaps the most important factor of all is good old-fashioned technical competence. Giving a server connectivity on your network when you know it to be vulnerable to commonly-scanned exploits is negligent and (evident by this thread) makes your company look incompetent. If my DC can't manage the simplest of procedures when the server is out of my control, why would I trust them to deal with similar situations when I have no access to the server? (following hardware failure, for example)
The overheads of dealing with (potentially unknowingly) compromised systems on your network far outweighs the effort to either develop an unmanaged auto-update solution or to simply have somebody perform the step manually. And let's be honest here; on Linux it's as simple as running an update and reboot command in a one-off script. Perhaps I could be more understanding if this had been a Windows server.
Edit: spelling
-
11-09-2005, 01:47 PM #20Web Hosting Rockstar
- Join Date
- Dec 2001
- Location
- 127.0.0.1
- Posts
- 3,642
Originally Posted by Alex Fernandez
YourHost, care to comment?
-
11-09-2005, 03:36 PM #21Web Hosting Master
- Join Date
- Mar 2004
- Posts
- 1,007
Hopefuly YourHost will clear some things out
Best Regards,
Namesniper
-
11-09-2005, 04:10 PM #22Web Hosting Master
- Join Date
- Aug 2005
- Location
- Oxford, England, UK
- Posts
- 828
Originally Posted by mripguru
Surely SLA covers downtime, and a new disk is no use if the techs cant be arsed to install the OS onto it?
-
11-09-2005, 04:12 PM #23Web Hosting Rockstar
- Join Date
- Dec 2001
- Location
- 127.0.0.1
- Posts
- 3,642
Originally Posted by Alex Fernandez
-
11-09-2005, 04:44 PM #24Junior Guru Wannabe
- Join Date
- Oct 2005
- Posts
- 74
I too agree that a server should not be handed over until it has been updated against major security problems!
And this is nothing like Dell sending unupdated windows.. When you're at home, you're behind your Router commonly, and nobody can connect to your computer directly.. You are also not running Telnet, FTP etc. services!
And MOST of all.. if anything does happen, heck it's your responsibility because it's your computer and you can re-load the OS yourself.
When the server is out of your hands it's much harder to secure remotely while making sure you don't lock yourself out accidently (such as a small misconfiguration in the firewall)
I recently found out that my LT server came with a 'ltsvadmin' account which I was unaware of and apparently might have the same passwd on all LT servers.. this is yet another case of the host introducing security problems.. so now not only you have to secure it, you have to look for security holes they might have created before handing it to you.
I believe the right thing to do would be for hosts to at least use unique passwords all around, and install firewall for everybody.. I had to install it myself.
Then they can use firewall to limit connections only to your IP (if you can provide a static one) .. and when you're ready, you can open up your server yourself to the world.
-
11-09-2005, 04:57 PM #25Web Hosting Master
- Join Date
- Aug 2005
- Location
- Oxford, England, UK
- Posts
- 828
There is a 99.5% Network Uptime Service Level Agreement (SLA), 2 Hour Hardware Replacement SLA, and a 99.9% Power SLA on this serverThe Guarantee
99.9% uptime guarantee. We stand by our SLA. If we fail to deliver the level of service as promised, you get dollars off your bill. It's that easy.
Funny, new site only hasEach server solution in this series comes with a 99.5% network uptime SLA and a 99.9% power SLA
Either way, they do/did state 2 hours hardware. Now, one would think that if its a primary hard drive they are replacing that is 2 hours for them to NOT only put new HDD in but to also install the OS again.