Results 1 to 7 of 7
  1. #1
    ABW Ambassador Snib's Avatar
    Join Date
    January 18th, 2005
    Location
    Virginia
    Posts
    5,303
    Oh my god, these past 24 hours have been a nightmare. Yesterday around 6:30pm somebody hacked into my server and deleted some very critical files. My server was basically gutted, but apache and mysql were still holding on by a thread. I couldn't make any new ssh connections and had one already connected from earlier in the day. With that one connection I was able to zip up all my sites, dump my databases and send them all off the server. After that I ordered a new web server and got that about midday today. I used the new server to grab the zip files and databases in order to reinstall all of my sites, databases, email accounts and what-have-you. I can finally announce that my new server is up and running!! The old server needs to be formatted and reloaded with a fresh OS. I managed to pull this off all in 24 hours with absolutely 0 down time, whew!! Of all times for this to happen. I would have lost some good revenue if the server had totally gone down. What's worse is I could have lost all my data!! Just be warned that security is no joke, be careful with your servers and make sure you don't have any exploitable flaws. I'd like to thank The Planet for helping me get my new server up and running with such short notice. I hope everybody has a better start on the holidays than me!!



    Merry Christmas!
    - Scott
    Hatred stirs up strife, But love covers all transgressions.

  2. #2
    Crazy like a fox suzigeek's Avatar
    Join Date
    January 18th, 2005
    Posts
    1,096

    Glad to here it wasn't a wash!

    I'm totally paranoid now.
    Hopefully I'll find the time to secure my sites better.
    Suz~~GearGirl~~

  3. #3
    Content $ Queen Ebudae's Avatar
    Join Date
    January 18th, 2005
    Location
    Texas
    Posts
    2,823
    eeekkkk - what a thing to have happen!!

    Glad you got it all worked out!!
    Ebudae


  4. #4
    ABW Ambassador
    Join Date
    January 18th, 2005
    Location
    Palm Springs, CA
    Posts
    866
    Yikes! Talk about close calls. How did they get in?

  5. #5
    ABW Ambassador Snib's Avatar
    Join Date
    January 18th, 2005
    Location
    Virginia
    Posts
    5,303
    Turns out my cPanel system came with PHP Nuke which has phpBB which had a security fault. Make sure if you're using this software that you keep it up to date. Also be sure to lock down your 777 modded directories:

    /tmp
    /var/tmp
    /var/spool/samba
    /var/spool/vbox
    /var/spool/mail
    /usr/local/apache/proxy
    /var/cpanel/Counters

    ex. chmod o-w /tmp

    This will remove public write access to these directories. If you haven't done this, be warned.

    - Scott
    Hatred stirs up strife, But love covers all transgressions.

  6. #6
    ABW Ambassador
    Join Date
    January 18th, 2005
    Location
    Palm Springs, CA
    Posts
    866
    Scary. I've got an email into my server guys now to see if I'm protected. Sorry you were hit but thanks for sharing the info.

  7. #7
    Outsourced Program Manager Chris -  AMWSO's Avatar
    Join Date
    January 18th, 2005
    Location
    Bangkok
    Posts
    11,273
    Youch, not a good time to be hacked, not that any time is a good time!

  8. Newsletter Signup

+ Reply to Thread

Similar Threads

  1. Ravens/Steelers - Good Call or Bad Call?
    By dyiadom in forum Virtual Family and Off-Topic
    Replies: 12
    Last Post: December 16th, 2008, 03:46 PM
  2. Google "HELL"o and Goodbye??? Is Hell Finally Going Away?
    By Rollerblader in forum Search Engine Optimization
    Replies: 6
    Last Post: December 20th, 2007, 04:10 PM
  3. Replies: 4
    Last Post: December 2nd, 2004, 07:14 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •