Results 126 to 150 of 495
-
04-08-2009, 12:18 PM #126Newbie
- Join Date
- Mar 2006
- Location
- Blackpool, UK
- Posts
- 26
Chris Daley :: Dwebs Ltd :: Company No. 05603664 :: 0330 22 90 666
https://dhosting.uk - Web Hosting, Manged Servers, Email Hosting
My views are my own and not those of my company.0
-
04-08-2009, 12:20 PM #127Disabled
- Join Date
- Oct 2005
- Location
- Six Degrees From You
- Posts
- 1,079
0
-
04-08-2009, 12:20 PM #128Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
0
-
04-08-2009, 12:20 PM #129WHT Addict
- Join Date
- Jun 2008
- Location
- Atlanta, Georgia
- Posts
- 111
I agree that everything should be taken offline, put old HD's in a safe and rebuild the infrastructure...
0
-
04-08-2009, 12:23 PM #130Aspiring Evangelist
- Join Date
- Oct 2005
- Posts
- 397
I don't even have to say agree, thats just common sense. Anytime a hacker gets root, or you think he did, the OS should be reinstalled. If he is smart enough to hack in, he is smart enough to create a backdoor and/or install a rootkit.
Does anyone know if Inet has fired their system/security admin(s)?0
-
04-08-2009, 12:25 PM #131Web Hosting Master
- Join Date
- Aug 2004
- Location
- Houston, TX
- Posts
- 1,405
Ya, I talked to Amex, and they said their will be some pretty heft fines for WHT already. I told them, I wanted to make sure iNet was fined out the a$$.
This is ridiculous. I had hundreds of auto bills on our corporate amex, and there it was in plain text.Eleven2 Web Hosting - World-Wide Hosting, Done Right!
Shared Hosting | Reseller Hosting | Dedicated | Virtual Premium Servers
Server Locations in: Dallas | Los Angeles | Singapore | Amsterdam0
-
04-08-2009, 12:25 PM #132Engineer
- Join Date
- Jan 2005
- Location
- Scotland, UK
- Posts
- 2,681
Dennis, the reason for asking such a question is this means your developers clearly are incapable dealing with such an incident to make such a judgment. You cannot be 100% convinced and then be wrong as being 100% convinced would indicate you have evidence to support that conclusion. Instead it leads to you personally being left to post factual inaccuracies.
It is very frustrating to see the way this is being handled, even the manner in which it's being "announced" it's continually played down and as I have said several times, full of inaccuracies that are blatantly wrong - even I as an onlooker can see so why can't you?
A very key part of the problem here is the fact you have "developers" performing the job of "system administrators".Server Management - AdminGeekZ.com
Infrastructure Management, Web Application Performance, mySQL DBA. System Automation.
WordPress/Magento Performance, Apache to Nginx Conversion, Varnish Implimentation, DDoS Protection, Custom Nginx Modules
Check our wordpress varnish plugin. Contact us for quote: sales@admingeekz.com0
-
04-08-2009, 12:26 PM #133WHT Addict
- Join Date
- Jun 2008
- Location
- Atlanta, Georgia
- Posts
- 111
The site is hosted by rackspace which I think is managed hosting so is it inet server admins or rackspace server admins
0
-
04-08-2009, 12:26 PM #134Web Host
- Join Date
- Jun 2002
- Posts
- 1,798
I serously doubt anyone is getting fired, although I've seen at least one rude poster to this thread get fired so far
Also keep in mind - the 10,000 hack attempts that didn't work out.0
-
04-08-2009, 12:27 PM #135Web Host
- Join Date
- Jun 2002
- Posts
- 1,798
0
-
04-08-2009, 12:27 PM #136Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
0
-
04-08-2009, 12:28 PM #137cout << m_subtitle;
- Join Date
- Jan 2007
- Location
- /dev/null
- Posts
- 3,700
0
-
04-08-2009, 12:28 PM #138WHT Addict
- Join Date
- Feb 2007
- Posts
- 107
I still think this is an april fools joke.
0
-
04-08-2009, 12:32 PM #139Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
statements aren't right when they're missing a word. :blush:
Last edited by SoftWareRevue; 04-08-2009 at 12:38 PM.
There is no best host. There is only the host that's best for you.0
-
04-08-2009, 12:36 PM #140Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
If you read the entire post content, you'd have read that the snipped bit was a quote of a deleted (yes deleted) post that was made by a troll.
why hide it from your user base?
Did we store CC numbers? Yes. Are you supposed to store CC numbers? No. And this serves as great example why.There is no best host. There is only the host that's best for you.0
-
04-08-2009, 12:39 PM #141Problem Solver
- Join Date
- Mar 2003
- Location
- California USA
- Posts
- 13,681
Steven Ciaburri | Industry's Best Server Management - Rack911.com
Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance0
-
04-08-2009, 12:40 PM #142Newbie
- Join Date
- Jun 2002
- Posts
- 26
Agreed. All payment data should be cleared. All affected systems should be reinstalled with a fresh OS and all code should be rechecked out from the development environment to ensure that any compromised code and/or installed rootkits are removed. Whichever employee(s) developed and managed the affected systems should be replaced if iNet wishes to restore confidence in their community. Additionally I am sure many in the community would like to see a formal plan put forth by iNet's CEO/President detailing how they are going to prevent/respond to this type of incident in the future, including how they plan to secure sensitive data.
On a side note not related to the quoted post. all of these "zomg i'm going to sue you, blah blah i know internet law" posts are getting old. I'm sure iNet knows what they did was fing stupid. I'm sure the community knows what they did was stupid. I'm sure their merchant provider is going to ream them a new one. If you aren't satisfied by the situation, let them know by canceling your advertising and/or premium membership. Let's focus on how we can gain confidence in this community once more and let's hope every single company on this forum learns something from this. (tl;dr drop the drama posts)0
-
04-08-2009, 12:41 PM #143Evenly Divided
- Join Date
- Aug 2001
- Posts
- 4,028
0
-
04-08-2009, 12:42 PM #144Engineer
- Join Date
- Jan 2005
- Location
- Scotland, UK
- Posts
- 2,681
You should have the people who are actually feeding you the information reply instead of you. I, along with most people have no problem at all with you Dennis.
To me it seems you are out of your depth answering things you are not qualified to do so - and shouldn't have to.
The part of your post I made bold is wrong. You are permitted to store CC information encrypted, you are not permitted to store sensitive authorization information.Server Management - AdminGeekZ.com
Infrastructure Management, Web Application Performance, mySQL DBA. System Automation.
WordPress/Magento Performance, Apache to Nginx Conversion, Varnish Implimentation, DDoS Protection, Custom Nginx Modules
Check our wordpress varnish plugin. Contact us for quote: sales@admingeekz.com0
-
04-08-2009, 12:42 PM #145Problem Solver
- Join Date
- Mar 2003
- Location
- California USA
- Posts
- 13,681
Steven Ciaburri | Industry's Best Server Management - Rack911.com
Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance0
-
04-08-2009, 12:43 PM #146Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
0
-
04-08-2009, 12:46 PM #147Dennis Johnson
- Join Date
- Jun 2001
- Location
- Kalamazoo
- Posts
- 33,412
0
-
04-08-2009, 12:48 PM #148Problem Solver
- Join Date
- Mar 2003
- Location
- California USA
- Posts
- 13,681
Last edited by Steven; 04-08-2009 at 12:52 PM.
Steven Ciaburri | Industry's Best Server Management - Rack911.com
Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance0
-
04-08-2009, 12:51 PM #149Newbie
- Join Date
- Mar 2006
- Location
- Blackpool, UK
- Posts
- 26
Chris Daley :: Dwebs Ltd :: Company No. 05603664 :: 0330 22 90 666
https://dhosting.uk - Web Hosting, Manged Servers, Email Hosting
My views are my own and not those of my company.0
-
04-08-2009, 12:53 PM #150Web Hosting Master
- Join Date
- Mar 2009
- Location
- Texas
- Posts
- 942
I was about to post the same thing, I can't read all these posts and refresh, and read more and keep up lol.
I don't hold any illwill to dennis personally and hope WHT/iNET can get this fixed. I was actually about to grab a few servers from iNET to broaden my base, but, well, the hack happened and I wanted to wait. After seeing the credit card details were stored on teh server I have decided not to do that and will be going elsewhere.
I just think Dennis should get some of the Chief Executives to come in here and give us EVERYTHING they know, suspect, or even have an itch to believe, happened or could happen. They need to come up with a security, explain it in RELATIVE detail (because its stupid to post the specifics on a public forum) and just start working at gaining everyone's trust back.0