Results 76 to 100 of 537
Thread: Recent WHT down time
-
03-23-2009, 02:15 PM #76WHT Addict
- Join Date
- Feb 2004
- Location
- Australia
- Posts
- 121
0
-
03-23-2009, 02:17 PM #77Web Hosting Master
- Join Date
- Jan 2004
- Posts
- 1,184
This is very said.... not the hack but the backup part....
The hack can happen to anyone but not having backups and making it securely it's a BIG mistake....
Mable it's a fall that needed to be taken to learn the lesson.
Any way good luck guys!
PS: Mind telling us how heavy is wht (backup wise curios)?0
-
03-23-2009, 02:17 PM #78Web Hosting Industry Expert
- Join Date
- Dec 2007
- Location
- Indiana, USA
- Posts
- 19,178
Or the security wasn't as good as it should have been (i.e. publicly available DB servers). Who knows, it's pure speculation at this point and I'm sure WebHostingTalk isn't going to publicly admit to any fault - it's not a wise business decision to do so.
Sure█ Michael Denney - MDDHosting.com - Proudly hosting more than 37,800 websites since 2007.
█ Ultra-Fast Cloud Shared and Pay-By-Use Reseller Hosting Powered by LiteSpeed!
█ cPanel • Free SSL • 100% Uptime SLA • 24/7 Support
█ Class-leading support that responds in minutes, not days.0
-
03-23-2009, 02:19 PM #79Engineer
- Join Date
- Jan 2005
- Location
- Scotland, UK
- Posts
- 2,681
My question is, if you flick your mind back to the password reset it was never answered weather inet wanted to steal our passwords or if someone accessed the server and changed login.php. I guess we have the answer to this now but there are some serious questions inet need to answer for themselves,
What was actually done when the page was first compromised back then, from here it just sounds like it was brushed off.
How on earth was someone able to access your database and backup systems, why are these even accessible to the public internet?
What is the point in me even typing more, frankly you didn't take the first warnings seriously enough and you are solely to blame for this compromise. That is all there is to it.0
-
03-23-2009, 02:22 PM #80-=*/E=-
- Join Date
- Sep 2005
- Location
- In canada
- Posts
- 3,374
O no bunny infractions are back !! Opening a ticket now, what did bunny do to deserve this
12+ years -same website , new server [SSD Inside] providing shared/reseller hosting only !
These things we do not provide/offer : Unlimited Storage ! Unlimited Bandwidth ! But Why? Cause, we were unable to put such a large number on our pages, it just would not fit.
So check out the numbers that actually fit >> << the page as well as your budget too !0
-
03-23-2009, 02:23 PM #81Web Hosting Industry Expert
- Join Date
- Dec 2007
- Location
- Indiana, USA
- Posts
- 19,178
I don't know that you'll get any useful information.
My guess is that the webserver/s was/were compromised and then used to access the backup servers. This would have allowed the hacker access to the backup servers over private lan and allowed them to do what they needed.
Who knows, this could be an entirely different attack of an entirely different manner. If it is the same thing then perhaps - but I'm sure nobody is going to say it is.█ Michael Denney - MDDHosting.com - Proudly hosting more than 37,800 websites since 2007.
█ Ultra-Fast Cloud Shared and Pay-By-Use Reseller Hosting Powered by LiteSpeed!
█ cPanel • Free SSL • 100% Uptime SLA • 24/7 Support
█ Class-leading support that responds in minutes, not days.0
-
03-23-2009, 02:24 PM #82Engineer
- Join Date
- Jan 2005
- Location
- Scotland, UK
- Posts
- 2,681
0
-
03-23-2009, 02:25 PM #83Web Hosting Master
- Join Date
- Jan 2004
- Posts
- 1,184
It's because of this that people have no respect our morals anymore.
I will place my bet on that girl that found the Intel bug..... (That hacked wht)
Also I would place the image verification stuff everywhere in WHT (search/login/register and etc) to stop the automated vul. searches.
Good luck and hope the person that did this get's little punished like Kevin did in the 90’s.0
-
03-23-2009, 02:25 PM #84Temporarily Suspended
- Join Date
- Apr 2008
- Location
- Bury St Edmunds
- Posts
- 160
0
-
03-23-2009, 02:33 PM #85Junior Guru
- Join Date
- Sep 2008
- Posts
- 191
0
-
03-23-2009, 02:34 PM #86Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
Well, you know what they say about assumptions ...
And you're right. I'm not going to address your posts. You obviously didn't read mine.
I have no qualms about stating exactly what happened. But the truth is, we may never know.
Of course, we hope we can get the information off the drives. But I'm certainly not going to state that we will. And without that information, I can't state that we'll post how someone gained access, because it's possible we won't know.
Now move on with the conspiracy theories, please.There is no best host. There is only the host that's best for you.0
-
03-23-2009, 02:38 PM #87Web Hosting Master
- Join Date
- Jul 2005
- Posts
- 3,784
Any plans to update vB if it's not already the latest?
0
-
03-23-2009, 02:38 PM #88Web Hosting Industry Expert
- Join Date
- Dec 2007
- Location
- Indiana, USA
- Posts
- 19,178
█ Michael Denney - MDDHosting.com - Proudly hosting more than 37,800 websites since 2007.
█ Ultra-Fast Cloud Shared and Pay-By-Use Reseller Hosting Powered by LiteSpeed!
█ cPanel • Free SSL • 100% Uptime SLA • 24/7 Support
█ Class-leading support that responds in minutes, not days.0
-
03-23-2009, 02:38 PM #89Web Hosting Master
- Join Date
- Sep 2006
- Location
- Cardiff - United Kingdom
- Posts
- 1,569
I've read all of this thread (and the 17 page monster before, the one which the idiot hacker posted in), however I'm still a little unclear on the following (sorry if I missed it):
*If* the data in the backup server cannot be salvaged for whatever reason (which really wouldn't be your fault), would WHT stay as it is currently (i.e. at an October 2008 revision on many things)?0
-
03-23-2009, 02:40 PM #90Junior Guru
- Join Date
- Aug 2008
- Posts
- 176
All I can say is this can not happen again.
I understand the staff is doing there best to fix things as quickly and completely as possible.
But really I don't think many will tolerate another issues like this.
I know if I was new member I might leave because of this.
I'm not of course. I know stuff can happen.
But i'm just repeating myself.Last edited by HNLV; 10-14-2008 at 08:40 PM.
0
-
03-23-2009, 02:40 PM #91WHT Addict
- Join Date
- Jul 2008
- Location
- France
- Posts
- 105
The negative feedback here is a waste of time. WHT is more aware of the **** up then anyone else since its happened to them. If you not here to offer help then why bother posting? We get it, your upset, get over it and help fix things.
Site guy whoever you are, its a long shot but see if you can retrieve anything using tools like gpart you might get lucky. Do it on the backup server as well. Tracing them...you'll have more luck telling us where the dbase has been posted even more luck finding them if you can tell us where it was posted first. Someone will be bragging about this sooner or later but even if you do find them its not gonna help much.
In case you don't already do this... make a simple local backup nightly as well holding back 7 days if you can. Remove any trusted ssh keys from the backup server to this one unless they are totally nessessary and lastly... think about hiding this server from both the backup server and the rest of the world it will give you an extra layer of protection and you no doubt daily hacker wannabe attempts a dud host to exploit that holds no information whatsoever of any importance. Also try not to use remote sql backup software as this often requires too much access level to complete its jobs, rather do em locally and have the backup pick them up securely with no relationship to sql.
For everyone it's easy to criticize someone else's security until it happens to you and until it does you have no idea how vulnerable you really are. Remember, if someone wants to hack you and they are good enough... they will hack you eventually. After all, isnt that how we progress in the field of security..
If theres anything you need at WHT, help or whatever, im available and no this aint a sales pitch lol i just want to see your vast database restored to its former glory it would be a shame to permanently loose all that data.0
-
03-23-2009, 02:41 PM #92Web Hosting Guru
- Join Date
- Sep 2006
- Posts
- 286
I am happy to see WHT back online (again)
But it is really depressing to see that WHT has backed up DB using such an old backup. (I mean, com’on; Octoer 2008 ) I am sure it’s not just the post count that others are complaining about; we have lost so many valuable and informative threads.
I still hope that iNet staff will be able to recover most (if not all) data.Find solution to every problem ---> Google.com0
-
03-23-2009, 02:46 PM #93Junior Guru
- Join Date
- Aug 2008
- Posts
- 176
Agreed it doesn't sound good.
I would argue its time for a complete review of the setup WHT uses.
With all do respect. WHT should not have this kind of issue. They have more than enough resources at their disposal.
Rack space and iNet should be able to prevent issues like this from happening. Or at least have better ways to deal with it. Its obvious one back up server isn't enough. Among various other problems.
This is at least the second time WHT has been hacked. I think we all know that WHT is targeted. We can assume that partly from he use of proxy shield.
This is most defiantly a big black eye to the forum.0
-
03-23-2009, 02:49 PM #94Web Hosting Master
- Join Date
- Feb 2006
- Location
- Philadelphia, PA
- Posts
- 612
I guess iNet is working to make sure it doesn't happen to any of their other sites as well now, since I would imagine some of them use similar setups .
0
-
03-23-2009, 02:50 PM #95Disabled
- Join Date
- Oct 2004
- Location
- San Francisco, CA
- Posts
- 394
I noticed a lot of people complaining about their post counts and a lot of people telling them that it's merely a number and there's more to WHT. But, it's not the number that mattered, it's the information that was posted and is now lost. I've lost almost 20+ reviews...
I wish all the luck to the WHT staff in getting things restored because there was a lot of valuable information lost. Not just the post number...
If I ran a company that has as much earning power as WHT, I would make sure to invest a good amount into state of the art security and backup solutions.0
-
03-23-2009, 02:51 PM #96Web Hosting Guru
- Join Date
- Feb 2006
- Location
- Pakistan/India/USA
- Posts
- 322
Re:
Dear Dennis,
Take a look into /var/logs may be you can get some informative information there. I know you have good team but if you need assistance do let me know.
Best Regards.Tom F - VCA-WM, VCA-Cloud, VCA-DCV, CISSO, CPTE, OSCP, RHCE, RHCT
Maxim Support - Hosting Solutions & Server Management
Email : tom@maximsupport.com
Web : http://www.maximsupport.com0
-
03-23-2009, 02:53 PM #97Junior Guru
- Join Date
- Aug 2008
- Posts
- 176
0
-
03-23-2009, 02:53 PM #98Aspiring Evangelist
- Join Date
- Dec 2004
- Location
- Netherlands
- Posts
- 384
If a "hacker" (I dont think that that term qualifies here!) doesnt delete the logs after cleaning the house he/she got to be quite retarded...
Good luck to the site team to recover this forum!
Sh*t happends, unfortunately. I just hope I dont get swamped with spam...
Sincerely,
- Liroy0
-
03-23-2009, 02:57 PM #99Web Hosting Master
- Join Date
- Jan 2005
- Posts
- 2,203
I can't believe there was no recent local backup of the database. Hope you can recover most of the data.
0
-
03-23-2009, 03:02 PM #100Web Hosting Master
- Join Date
- Jun 2006
- Posts
- 1,112
This surely reflects negatively against RackSpace. Nobody knows exactly what Rackspace provide iNet with (if anything? I don't know) but having that lovely "powered by" icon now doesn't look so good.
I'm wondering where the 6 month backup was stored and why there couldn't have been at least a monthly backup along with it.
This is all very worrying, alot of information lost and the company image has a big dent in it. When was that last hacking attempt, you know when we had to change our passwords all of a sudden? Not so long ago!
Ah well, it doesn't effect me too much just p***ed me off a bit.
I look forward to seeing the missing posts put into place but by that time no doubt more discussions will have made me forget about whatever was here previously.0