Re: [Audyssey] a reminder to secure your sites
well phillip a site darkerprojects.com was briefly hacked a couple days ago but was fixed later that day through no action of the owners. So I suspect that the company was or is part of bluehost, they probably used an infected backup or something looks like its been resolved. but this is sloppy if anything, you'd think they would perge all backups from when the infection happened, ie delete everything from the day the infection came up to and when it started from to that date then pulled origional stuff back to their backups. At 03:29 a.m. 2/07/2010, you wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall - Original Message - From: Thomas Ward thomasward1...@gmail.com To: Gamers Discussion list gamers@audyssey.org Sent: Thursday, July 01, 2010 5:02 PM Subject: Re: [Audyssey] a reminder to secure your sites Hi Hayden, The security of a web site is up to the company who happens to be hosting the website not the person paying the monthly bill for the web hosting service. If a person happens to be paying somebody like Blue Host for web space and a website gets hacked that is Blue Host's fault for poor security. All the person paying Blue HOst has to do is upload the web pages, files, and manage his/her control panel to set up e-mail accounts, blogging software, shopping cart, whatever. However, security is the hosting companies domain. Smile. On 6/30/10, Hayden Presley hdpres...@hotmail.com wrote: Hi, Again? Gees. Best Regards, Hayden --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. Internal Virus Database is out of date. Checked by AVG - www.avg.com Version: 8.5.432 / Virus Database: 271.1.1/2662 - Release Date: 02/01/10 12:37:00 --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched
Re: [Audyssey] a reminder to secure your sites
worse are the companys that are part or use it. dreamhost which does the darkerprojects site seems to be part of bluehost so is hostmonster. so you have to secure yourself and keep watching things because your parent company sucks rear big time, all the time. At 03:50 a.m. 2/07/2010, you wrote: Hi Philip, Sad to say your's isn't the only case like that I heard of. Blue Host, in my opinion, is crap. They regularly have security problems, sloppy security, and then they always blame the user if anything goes wrong. Yet it really is their responcibility to see that their servers are up to date, secure, and virus free if possible. On 7/1/10, Philip Bennefall phi...@u7142039.fsdata.se wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
thats true there are a couple sites I thought would get hacked but these are running on their own servers. At 03:59 a.m. 2/07/2010, you wrote: In my opinion, the best solution is to get your own custom vps or virtual server if you can. That way people will not target you if they decide to go against certain hosting company. In my experience, me and the person i share a linnode with have been running websites for more than a year on the same server and we've never had any issues. On 7/1/10, Thomas Ward thomasward1...@gmail.com wrote: Hi Philip, Sad to say your's isn't the only case like that I heard of. Blue Host, in my opinion, is crap. They regularly have security problems, sloppy security, and then they always blame the user if anything goes wrong. Yet it really is their responcibility to see that their servers are up to date, secure, and virus free if possible. On 7/1/10, Philip Bennefall phi...@u7142039.fsdata.se wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi Hayden, The security of a web site is up to the company who happens to be hosting the website not the person paying the monthly bill for the web hosting service. If a person happens to be paying somebody like Blue Host for web space and a website gets hacked that is Blue Host's fault for poor security. All the person paying Blue HOst has to do is upload the web pages, files, and manage his/her control panel to set up e-mail accounts, blogging software, shopping cart, whatever. However, security is the hosting companies domain. Smile. On 6/30/10, Hayden Presley hdpres...@hotmail.com wrote: Hi, Again? Gees. Best Regards, Hayden --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall - Original Message - From: Thomas Ward thomasward1...@gmail.com To: Gamers Discussion list gamers@audyssey.org Sent: Thursday, July 01, 2010 5:02 PM Subject: Re: [Audyssey] a reminder to secure your sites Hi Hayden, The security of a web site is up to the company who happens to be hosting the website not the person paying the monthly bill for the web hosting service. If a person happens to be paying somebody like Blue Host for web space and a website gets hacked that is Blue Host's fault for poor security. All the person paying Blue HOst has to do is upload the web pages, files, and manage his/her control panel to set up e-mail accounts, blogging software, shopping cart, whatever. However, security is the hosting companies domain. Smile. On 6/30/10, Hayden Presley hdpres...@hotmail.com wrote: Hi, Again? Gees. Best Regards, Hayden --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. Internal Virus Database is out of date. Checked by AVG - www.avg.com Version: 8.5.432 / Virus Database: 271.1.1/2662 - Release Date: 02/01/10 12:37:00 --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall - Original Message - From: Thomas Ward thomasward1...@gmail.com To: Gamers Discussion list gamers@audyssey.org Sent: Thursday, July 01, 2010 5:02 PM Subject: Re: [Audyssey] a reminder to secure your sites Hi Hayden, The security of a web site is up to the company who happens to be hosting the website not the person paying the monthly bill for the web hosting service. If a person happens to be paying somebody like Blue Host for web space and a website gets hacked that is Blue Host's fault for poor security. All the person paying Blue HOst has to do is upload the web pages, files, and manage his/her control panel to set up e-mail accounts, blogging software, shopping cart, whatever. However, security is the hosting companies domain. Smile. On 6/30/10, Hayden Presley hdpres...@hotmail.com wrote: Hi, Again? Gees. Best Regards, Hayden --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. Internal Virus Database is out of date. Checked by AVG - www.avg.com Version: 8.5.432 / Virus Database: 271.1.1/2662 - Release Date: 02/01/10 12:37:00 --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi Philip, Sad to say your's isn't the only case like that I heard of. Blue Host, in my opinion, is crap. They regularly have security problems, sloppy security, and then they always blame the user if anything goes wrong. Yet it really is their responcibility to see that their servers are up to date, secure, and virus free if possible. On 7/1/10, Philip Bennefall phi...@u7142039.fsdata.se wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
In my opinion, the best solution is to get your own custom vps or virtual server if you can. That way people will not target you if they decide to go against certain hosting company. In my experience, me and the person i share a linnode with have been running websites for more than a year on the same server and we've never had any issues. On 7/1/10, Thomas Ward thomasward1...@gmail.com wrote: Hi Philip, Sad to say your's isn't the only case like that I heard of. Blue Host, in my opinion, is crap. They regularly have security problems, sloppy security, and then they always blame the user if anything goes wrong. Yet it really is their responcibility to see that their servers are up to date, secure, and virus free if possible. On 7/1/10, Philip Bennefall phi...@u7142039.fsdata.se wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi, I didn't catch the beginning of this thread either, but I agree with Oriol's post, a vps, it's more expensive, but in my opinion it's worth it. I also avoid control panels whereever possible as I've found, that yes you can set something up quickly, but if there's a flaw in that panel chances are your going to get hit. Also, if your using php code or some other server or client scripting on your site, separate from what your host provides, making sure that's as up to date is also critical. Hth Dave. On 7/1/10, Oriol Gómez ogomez@gmail.com wrote: In my opinion, the best solution is to get your own custom vps or virtual server if you can. That way people will not target you if they decide to go against certain hosting company. In my experience, me and the person i share a linnode with have been running websites for more than a year on the same server and we've never had any issues. On 7/1/10, Thomas Ward thomasward1...@gmail.com wrote: Hi Philip, Sad to say your's isn't the only case like that I heard of. Blue Host, in my opinion, is crap. They regularly have security problems, sloppy security, and then they always blame the user if anything goes wrong. Yet it really is their responcibility to see that their servers are up to date, secure, and virus free if possible. On 7/1/10, Philip Bennefall phi...@u7142039.fsdata.se wrote: Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Well, wasn't bluehost rude? Oh, yeah? Your the host blue hoste, your the main part of it, you ikspekt people to figure it on their own where they don't no the stuff and not even bother to fix a singol problem? In my oppinyin, blue hoste was quite rude to you Philip. Ok, they could of said we don't no, but they were still rude to you. My audio games for the blind group. Discussions off topic are welcome in the holidays. Talking about games is welcome, talking about computer problems is welcome when their are know holidays but that's only in easter holidays or know holidays. If you want to joyn, just send a blank email to. audiogamesfortheblind+subscr...@googlegroups.com With the subject subscribe in the subject line. Contact infermation. email: muhamme...@googlemail.com msn: muhammed123...@hotmail.co.uk Skype: muhammed.deniz Klango username. muhammed - Original Message - From: Philip Bennefall phi...@u7142039.fsdata.se To: Gamers Discussion list gamers@audyssey.org Sent: Thursday, July 01, 2010 4:29 PM Subject: Re: [Audyssey] a reminder to secure your sites Hi all, I didn't see the beginning of this thread, but when I see the words Bluehost and hacker security in one and the same sentense I have to react. Smile. I used to love Bluehost. They had everything I needed for a ridiculously low fee, and their customer support was generally acceptable. Then, I had a series of hacker attacks on my website. After the first one I immediately called Bluehost and informed them of the situation, to which they replied that the probable cause was an out of date script that had a security hole. Fair enough, I asked them to make 100 % sure that I had all the latest versions which they also did. Ran upgrades, in other words. Then, about 3 hours later I had a similar attack where every single page of my website got infected. so I pick up the phone and call Bluehost once again, telling them that this was the second attack in one and the same day and that I had previously followed all their instructions to the letter. He basically said well, our servers are secure but we cannot guarantee security of user accounts. Well, then, what on earth is left to be secure? Unless they're refering to someone actually breaking in to the server hall and setting the machines on fire which is obviously far less likely than a hacker attack from the outside. I pointed this out and asked if there was anything they could do to try and help trace the attacker, or anything at all that they could do from their end. The reply was that no, we cannot, that is your own responsibility, start by reading this help desk article with security tips. That was the last straw and I blew my top Silently cursing the tech support team I immediately took my business elsewhere, and haven't had a single problem since. It is about 4 times as expensive but I also get about 4 times the up and downstream speed from their servers. So as regards to Bluehost helping secure websites against hacker attacks, this, in my opinion, is a joke. In the end, you always get what you pay for. Kind regards, Philip Bennefall - Original Message - From: Thomas Ward thomasward1...@gmail.com To: Gamers Discussion list gamers@audyssey.org Sent: Thursday, July 01, 2010 5:02 PM Subject: Re: [Audyssey] a reminder to secure your sites Hi Hayden, The security of a web site is up to the company who happens to be hosting the website not the person paying the monthly bill for the web hosting service. If a person happens to be paying somebody like Blue Host for web space and a website gets hacked that is Blue Host's fault for poor security. All the person paying Blue HOst has to do is upload the web pages, files, and manage his/her control panel to set up e-mail accounts, blogging software, shopping cart, whatever. However, security is the hosting companies domain. Smile. On 6/30/10, Hayden Presley hdpres...@hotmail.com wrote: Hi, Again? Gees. Best Regards, Hayden --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. Internal Virus Database is out of date. Checked by AVG - www.avg.com Version: 8.5.432 / Virus Database: 271.1.1/2662 - Release Date: 02/01/10 12:37:00 --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All
Re: [Audyssey] a reminder to secure your sites
Hi, Running your own VPS is certainly the best solution. I personally love Linode, which I don't find too expensive. By using a VPS, I get full root access to any Linux distribution of my choice (I prefer Debian), and I get to secure the system myself. I won't have to depend on someone to update software, setup security policies, etc. Since I have root access, I have the ability to install or program software. We were able to program, administrate, and run Monopoly (and soon to to be Uno), all through a VPS, which wouldn't be possible on a shared host like BlueHost. I suppose a VPS wouldn't be a good solution for someone who is new to Linux, but someone could always learn. It is not the best idea to be dependent on the shared hosting company to secure the server for you. -Ryan www.rsgames.co.nr Come join Monopoly, winner of the BlindBargain's accessible game of the year, for free, with over 2500 players! 2010/7/1 Oriol Gómez ogomez@gmail.com: In my opinion, the best solution is to get your own custom vps or virtual server if you can. That way people will not target you if they decide to go against certain hosting company. In my experience, me and the person i share a linnode with have been running websites for more than a year on the same server and we've never had any issues. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi, Well, I definitely think a VPS is the best solution, but only if the person is an experienced network administrator. An incompetent VPS administrator is as bad or worse than using something like Blue Host. However, if the person is experienced in setting up and configuring something like the iptables firewall, apache web server, sendmail for e-mail, etc then it is the obvious best solution all around. You can basicly apply security updates as needed, upgrade the system, customize everything your way, and have absolute dominion over every aspect of that server. That's pretty cool, but unfortunately not just anybody can do that competently. Smile. On 7/1/10, Ryan Smith computerwi...@gmail.com wrote: Hi, Running your own VPS is certainly the best solution. I personally love Linode, which I don't find too expensive. By using a VPS, I get full root access to any Linux distribution of my choice (I prefer Debian), and I get to secure the system myself. I won't have to depend on someone to update software, setup security policies, etc. Since I have root access, I have the ability to install or program software. We were able to program, administrate, and run Monopoly (and soon to to be Uno), all through a VPS, which wouldn't be possible on a shared host like BlueHost. I suppose a VPS wouldn't be a good solution for someone who is new to Linux, but someone could always learn. It is not the best idea to be dependent on the shared hosting company to secure the server for you. -Ryan www.rsgames.co.nr Come join Monopoly, winner of the BlindBargain's accessible game of the year, for free, with over 2500 players! --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
Hi, Again? Gees. Best Regards, Hayden -Original Message- From: gamers-boun...@audyssey.org [mailto:gamers-boun...@audyssey.org] On Behalf Of peter Mahach Sent: Tuesday, June 29, 2010 4:27 AM To: Gamers Discussion list Subject: Re: [Audyssey] a reminder to secure your sites yeah, L-works was hacked again, Liam said that he's very much considering leaving bluehost... - Original Message - From: shaun everiss shau...@xtra.co.nz To: gamers@audyssey.org Sent: Monday, June 28, 2010 11:44 PM Subject: [Audyssey] a reminder to secure your sites Hi. looks like the same attacks that happened a bit ago are happening on one my audio sites the same one that got done this time. obviously these guys are crafty. ofcause I can dodge this easily enough but if this guy or guys are back again after their fling with the net we all need to be on guard. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. __ Information from ESET Smart Security, version of virus signature database 5236 (20100629) __ The message was checked by ESET Smart Security. http://www.eset.com __ Information from ESET Smart Security, version of virus signature database 5236 (20100629) __ The message was checked by ESET Smart Security. http://www.eset.com --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
Re: [Audyssey] a reminder to secure your sites
yeah, L-works was hacked again, Liam said that he's very much considering leaving bluehost... - Original Message - From: shaun everiss shau...@xtra.co.nz To: gamers@audyssey.org Sent: Monday, June 28, 2010 11:44 PM Subject: [Audyssey] a reminder to secure your sites Hi. looks like the same attacks that happened a bit ago are happening on one my audio sites the same one that got done this time. obviously these guys are crafty. ofcause I can dodge this easily enough but if this guy or guys are back again after their fling with the net we all need to be on guard. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org. __ Information from ESET Smart Security, version of virus signature database 5236 (20100629) __ The message was checked by ESET Smart Security. http://www.eset.com __ Information from ESET Smart Security, version of virus signature database 5236 (20100629) __ The message was checked by ESET Smart Security. http://www.eset.com --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
[Audyssey] a reminder to secure your sites
Hi. looks like the same attacks that happened a bit ago are happening on one my audio sites the same one that got done this time. obviously these guys are crafty. ofcause I can dodge this easily enough but if this guy or guys are back again after their fling with the net we all need to be on guard. --- Gamers mailing list __ Gamers@audyssey.org If you want to leave the list, send E-mail to gamers-unsubscr...@audyssey.org. You can make changes or update your subscription via the web, at http://audyssey.org/mailman/listinfo/gamers_audyssey.org. All messages are archived and can be searched and read at http://www.mail-archive.com/gam...@audyssey.org. If you have any questions or concerns regarding the management of the list, please send E-mail to gamers-ow...@audyssey.org.
