Page 5 of 9 FirstFirst ... 2345678 ... LastLast
Results 101 to 125 of 213
  1. #101
    Join Date
    Jun 2008
    Posts
    97
    SWR - when this dude is found can you stick him up so every member of WHT can kick the crap outta him
      0 Not allowed!

  2. #102
    I am sorry to know about this

    This is very bad situation... I hate these hackers very much. They can spend lots of time doing bad coding but can't spend few hours to do some good thing?

    I hope WHT will be more safe now and the team will be able to restore all data.
    Professional Banner Design :: Complete Satisfaction & Fast Turnaround
    InspireFusion.com :: Art, Design & Inspiration Blog
      0 Not allowed!

  3. #103
    In my websites, i do the backups with the cpanel and i send it to a remote ftp server, hackers can't access to them because it is password protected, they never have been hacked it.
      0 Not allowed!

  4. #104
    Join Date
    Mar 2008
    Location
    Los Angeles, CA
    Posts
    555
    Quote Originally Posted by mistervb View Post
    In my websites, i do the backups with the cpanel and i send it to a remote ftp server, hackers can't access to them because it is password protected, they never have been hacked it.
    Well just running an FTP server you are still in danger of being hacked. Also when you need to make backups often (every day) you really have to find a way to automate it. I think its best to automate it from the remote side because then you can run it from a machine which is completely firewalled and doesn't allow any connections from the outside.
      0 Not allowed!

  5. #105
    Join Date
    Mar 2008
    Location
    SEO cyberspace
    Posts
    423
    I am sure that this will serve to alert all of use to review our backup plans and tighten them up.

    If your backups are not too large a spare copy burned on a set of DVDs is hard to hack. Backing up to an offsite server via scp or ssh is fast but does leave foot prints.

    Good luck with your restorations, I know what a hard job that can be.
    I plan to live forever - so far so good
    Expert SEO |Sash Windows London
      0 Not allowed!

  6. #106
    Join Date
    Apr 2002
    Location
    AU
    Posts
    1,049
    All backup procedures seem insufficient when you have to restore from one. argh!
      0 Not allowed!

  7. #107
    Good idea, i can burn it on a DVD or i can transfer it to a firewalled ftp that only acept conections from the website host.
      0 Not allowed!

  8. #108
    Join Date
    Sep 2007
    Location
    UK
    Posts
    49
    Quote Originally Posted by mistervb View Post
    In my websites, i do the backups with the cpanel and i send it to a remote ftp server, hackers can't access to them because it is password protected, they never have been hacked it.
    That is not secure - in FTP, passwords are sent in plain text, and it's possible for someone to "sniff" the connection and grab the details.

    Anyway, having had a server broken into a few years ago, I know what it's like. I hope WHT find out who's responsible and recover without pulling too much hair...
      0 Not allowed!

  9. #109
    Join Date
    Mar 2009
    Location
    East Borneo
    Posts
    12
    Yup, better burn it on dvd for couple months.
      0 Not allowed!

  10. #110
    Join Date
    Jun 2001
    Location
    Kalamazoo
    Posts
    33,412
    Quote Originally Posted by jani View Post
    ... I hope WHT will be more safe now ...
    I know we'll be. And I know that this incident has others looking at their own infrastructure to make it more secure as well.

    It's unfortunate this happened. But we'll all be stronger from it.
    There is no best host. There is only the host that's best for you.
      0 Not allowed!

  11. #111
    Join Date
    Jul 2007
    Location
    Pennsylvania, USA
    Posts
    686
    I have a quick suggestion. Has anyone considered allowing IP by IP access to the servers? Such as only the IP addresses of iNet staff and coordinators are allowed to access the servers, and if this happened, they'd know it was a 'inside job.' .
      0 Not allowed!

  12. #112
    But the hacker will inject a malicious code in the WHT server to hack the backups.
      0 Not allowed!

  13. #113
    Join Date
    Jul 2007
    Location
    Pennsylvania, USA
    Posts
    686
    Quote Originally Posted by mistervb View Post
    But the hacker will inject a malicious code in the WHT server to hack the backups.

    You can't do that without having access in the first place (limiting it by only iNet Staff IP's).
      0 Not allowed!

  14. #114
    Join Date
    Jul 2006
    Location
    World Wide Internet
    Posts
    27
    This is the reason why big forum like WHT need to make automatically backup each hour and saving it into remote location which doesn't connected to the internet at all. hacking is only manner of time and money , that's all. if hacker want to hack and it's made his target then if he has the money = time then he will succeed. because of that I suggest to use remote backup which doesn't connected to the Internet at all. this is my advice.
    WinnerServ , Web Hosting & VPS Provider
    http://www.wserv.co.il/he/
    World Wide infrastructure , Get A VPS and WebHosting Services across the globe from 1 centralized provider.
      0 Not allowed!

  15. #115
    Join Date
    Sep 2007
    Location
    UK
    Posts
    49
    Quote Originally Posted by igoldman View Post
    This is the reason why big forum like WHT need to make automatically backup each hour and saving it into remote location which doesn't connected to the internet at all. hacking is only manner of time and money , that's all. if hacker want to hack and it's made his target then if he has the money = time then he will succeed. because of that I suggest to use remote backup which doesn't connected to the Internet at all. this is my advice.
    But if it's a remote location, how do you connect to the backup machine if it's not connected to the internet?

    If someone gains root access to a machine, they can do just about anything. Things like read scripts that control backups and contain addresses and account usernames and passwords, etc., of where those backups are.

    If they have access to the server, they will also be able to connect to a machine that is only connected to the server via a second, private, network connection.

    Perhaps the only "safe" way of backing up is to backup to a tape or CD/DVD drive directly connected (or built in) to the server, and for someone to physically swap the tapes or DVDs on a daily basis.
      0 Not allowed!

  16. #116
    Quote Originally Posted by AndyM2020 View Post
    But if it's a remote location, how do you connect to the backup machine if it's not connected to the internet?

    If someone gains root access to a machine, they can do just about anything. Things like read scripts that control backups and contain addresses and account usernames and passwords, etc., of where those backups are.

    If they have access to the server, they will also be able to connect to a machine that is only connected to the server via a second, private, network connection.

    Perhaps the only "safe" way of backing up is to backup to a tape or CD/DVD drive directly connected (or built in) to the server, and for someone to physically swap the tapes or DVDs on a daily basis.
    I agree with you, that would be the best way to physically swap the tapes or DVDs on a daily basis after making backups.
      0 Not allowed!

  17. #117
    Join Date
    Aug 2008
    Location
    Canada
    Posts
    121
    backup and unplug. Seems like having it off the net would be a plausible step to take.
    No Overselling Guarantee | Now Includes a Free Domain
    █ Shared Hosting • Reseller Hosting • VPS Hosting
    BLD Hosting - Web Hosting | Web Hosting Blog
      0 Not allowed!

  18. #118
    Join Date
    Jul 2006
    Posts
    307
    Quote Originally Posted by andrei155 View Post
    backup and unplug. Seems like having it off the net would be a plausible step to take.
    Make sense.

    Surely WHT would have a spare computer that can just connect at set times to download a backup and then disconnect. It' it's firewalled JUST for outgoing connections one have to break into their offices to get their hands on that backup.

    Suggestion to WHM

    I don't use WHT so much but is it possible to use this incident to start a security channel what users can join to get access to the best and latest server security support?

    There are TONS of security advice, programs and more available and I am sure MOST of the security related time spend by administrators is to decide what's best or necessary or what not.

    I for one WHT member will be more than willing to pay a subscribtion fee to pay for the service of a security expert whose task it is to investigate and suggest a good security system for various server models, cPanel, Plesk etc.
    Frank Coetzee
    SA Internet News Group cc


    "I hear and I forget, I see and I remember. I do and I understand. " - Chinese Proverb
      0 Not allowed!

  19. #119
    Join Date
    Jan 2004
    Posts
    593
    I blame Obama.

    But seriously, this stuff can happen. This makes you wonder how many other websites data theft has happened to, except the difference is that the website owner never knew.
    Check out my new Chrome Extension - Server Admin Tool
    frustratedtech.com - Helpful Server Tech Advice
      0 Not allowed!

  20. #120
    Join Date
    Oct 2001
    Posts
    315
    Well, I'll be darned. I haven't been around much last couple months. (My post count is probably accurate!)

    Thanks for the email, SWR. Things will clearly be fine.
    Adam
    GetWebSpace.com
    Personal Life Timed Out Due To Inactivity
      0 Not allowed!

  21. #121
    That is so unfortunate, I hope you guys are able to restore everything as quickly as possible.
    Services: SMF Theme Creation | Play: Best Text RPG (Browser game)
      0 Not allowed!

  22. #122
    Quote Originally Posted by SoftWareRevue View Post
    I know we'll be. And I know that this incident has others looking at their own infrastructure to make it more secure as well.

    It's unfortunate this happened. But we'll all be stronger from it.
    Yes, it is unfortunate.

    If it had happened to another forum in another topical space it would be one thing. But, given the audience at WHT, it is almost a blessing in disguise.

    This event leaves very little wiggle room with respect to backups and security considerations.

    For a host to now whistle in the dark while looking away from the graveyard would be inexcusable.
    edgedirector.com
    managed dns global failover and load balance (gslb)
    exactstate.com
    uptime report for webhostingtalk.com
      0 Not allowed!

  23. #123
    Join Date
    Apr 2001
    Location
    Il
    Posts
    448
    May I ask, what version of vbulletin this is and if vbulletin has been contacted about this?
    http://www.realwebhost.net
    http://www.realwebhost.net/vps.php
    ICQ 120397604 |MSN : hotmail.com | AIM : rwhsupport | Yahoo: rwhmax
      0 Not allowed!

  24. #124
    Join Date
    Jun 2001
    Location
    Kalamazoo
    Posts
    33,412
    This is nothing to do with vBulletin.
    There is no best host. There is only the host that's best for you.
      0 Not allowed!

  25. #125
    Join Date
    Aug 2003
    Location
    East Coast
    Posts
    2,082
    Has anyone tried to do a data recovery on the backups? I assume the hacker didn't overwrite the drive with data.
      0 Not allowed!

Page 5 of 9 FirstFirst ... 2345678 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •