Results 1 to 3 of 3
  1. #1
    Join Date
    Nov 2002
    Posts
    62

    Security idea?? What do you think..

    Okay so recently alot of people out there have been getting this Grublar virus that steals their password and has bots infect their files.

    I have an idea..

    What if by default SSH/FTP/CPANEL/WHM(Plesk or whatever) were BLOCKED.

    Any legit client(or human) would just need to go to http://SERVERIP or http://SERVERHOSTNAME and it would forward to a webpage like http://access.webhost.com/?SERVERHOSTNAME

    The webpage would contain a captcha and a hidden entry with the server HOSTNAME/IP


    Once the user successfully enters the captcha.. Their IP is whitelisted for those services..

    This would cut down on hack attempts, botnet viruses and such..

    The only drawback is that the client would need to remember to do it.


    What do you guys think??

  2. #2
    Join Date
    Feb 2008
    Location
    Houston, Texas, USA
    Posts
    2,955
    Quote Originally Posted by kantlivelong View Post
    Okay so recently alot of people out there have been getting this Grublar virus that steals their password and has bots infect their files.

    I have an idea..

    What if by default SSH/FTP/CPANEL/WHM(Plesk or whatever) were BLOCKED.

    Any legit client(or human) would just need to go to http://SERVERIP or http://SERVERHOSTNAME and it would forward to a webpage like http://access.webhost.com/?SERVERHOSTNAME

    The webpage would contain a captcha and a hidden entry with the server HOSTNAME/IP


    Once the user successfully enters the captcha.. Their IP is whitelisted for those services..

    This would cut down on hack attempts, botnet viruses and such..

    The only drawback is that the client would need to remember to do it.


    What do you guys think??
    That's a good idea. Except that it could be the same infected PC attempting to login using the captured credentials. So once the user logs into the URL, the virus within the PC gains access too. There's also the risk of PCs sitting behind one NAT address being granted access.

    Regards
    UNIXy - Fully Managed Servers and Clusters - Established in 2006
    [ cPanel Varnish Nginx Plugin ] - Enhance LiteSpeed and Apache Performance
    www.unixy.net - Los Angeles | Houston | Atlanta | Rotterdam
    Love to help pro bono (time permitting). joe > unixy.net

  3. #3
    Join Date
    Nov 2002
    Posts
    62
    Quote Originally Posted by UNIXy View Post
    That's a good idea. Except that it could be the same infected PC attempting to login using the captured credentials. So once the user logs into the URL, the virus within the PC gains access too. There's also the risk of PCs sitting behind one NAT address being granted access.

    Regards
    Yes I considered this, however X amount of PCs behind that NAT are most likely alot less then the thousands of botnet IPs.


    I might consider applying this idea to my shared/reseller services... Im just trying to get input from people

    Thanks UNIXy

Similar Threads

  1. image upload security idea good or bad?
    By Syphic in forum Hosting Security and Technology
    Replies: 4
    Last Post: 03-04-2008, 09:21 PM
  2. Replies: 69
    Last Post: 03-03-2007, 01:48 PM
  3. Got an origional idea for forums? I can help bring your idea to life :)
    By DiverseFlow in forum Other Offers & Requests
    Replies: 8
    Last Post: 05-13-2005, 10:24 PM
  4. Customer Incentives? Good idea or bad idea?
    By PHPGeek2k3 in forum Running a Web Hosting Business
    Replies: 2
    Last Post: 07-04-2003, 12:30 PM
  5. mod_gzip -- Good Idea? Bad Idea?
    By NVB in forum Dedicated Server
    Replies: 18
    Last Post: 01-01-2002, 05:39 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •