Comments on: Epic fail from a hosting company involving bad customer support and a critical security issue http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/ Into The Void Wed, 10 Mar 2010 15:34:22 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Hossam http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/comment-page-1/#comment-262825 Hossam Fri, 16 Oct 2009 07:00:10 +0000 http://www.void.gr/kargig/blog/?p=833#comment-262825 About ii) It really strikes me as odd that the attacker knew the exact time and IP of the box at the seconds of the Plesk installation. I know this might sound like a conspiracy theory, but there’s a good chance that the engineer who handled the first installation was somehow involved with the attack. I can ensure you that this is a conspiracy theory indeed. There is a security vulnerability within plesk, at least in version 8.2, as once I installed it on a new fresh server it got hacked exactly the same way in a matter of hours. I can't think of anything other than hackers being widely scanning port 8443 to find the vulnerability and exploit it. About ii) It really strikes me as odd that the attacker knew the exact time and IP of the box at the seconds of the Plesk installation. I know this might sound like a conspiracy theory, but there’s a good chance that the engineer who handled the first installation was somehow involved with the attack.

I can ensure you that this is a conspiracy theory indeed. There is a security vulnerability within plesk, at least in version 8.2, as once I installed it on a new fresh server it got hacked exactly the same way in a matter of hours. I can’t think of anything other than hackers being widely scanning port 8443 to find the vulnerability and exploit it.

]]> By: mmc http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/comment-page-1/#comment-262681 mmc Tue, 13 Oct 2009 09:19:21 +0000 http://www.void.gr/kargig/blog/?p=833#comment-262681 As President of the Committee for the Liberation and Integration of Trolls and there Re-introduction Into Society I object to your generalization. As President of the Committee for the Liberation and Integration of Trolls and there Re-introduction Into Society I object to your generalization.

]]> By: Epic fail from a hosting company involving bad customer support … « Blogging http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/comment-page-1/#comment-262221 Epic fail from a hosting company involving bad customer support … « Blogging Sun, 04 Oct 2009 20:40:15 +0000 http://www.void.gr/kargig/blog/?p=833#comment-262221 [...] See the rest here:  Epic fail from a hosting company involving bad customer support … [...] [...] See the rest here:  Epic fail from a hosting company involving bad customer support … [...]

]]> By: Panagiotis Atmatzidis http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/comment-page-1/#comment-262210 Panagiotis Atmatzidis Sun, 04 Oct 2009 13:48:31 +0000 http://www.void.gr/kargig/blog/?p=833#comment-262210 I don't want to be evil or pedantic here, but I think that you should at least send an email and report this to the tech manager. Maybe the tech support had a bad day, or you find the only guy who was not able to pay attention, however if you pay for a service and you don't get it. You should at least *say something*. It's part of the Greek culture to consider *reporting* a problem <strong>worse</strong> than the actual problem. I don’t want to be evil or pedantic here, but I think that you should at least send an email and report this to the tech manager. Maybe the tech support had a bad day, or you find the only guy who was not able to pay attention, however if you pay for a service and you don’t get it. You should at least *say something*.

It’s part of the Greek culture to consider *reporting* a problem worse than the actual problem.

]]> By: Epic fail from a hosting company involving bad customer support and a critical security issue | Linux Articles http://www.void.gr/kargig/blog/2009/10/04/epic-fail-from-a-hosting-company-involving-bad-customer-support-and-a-critical-security-issue/comment-page-1/#comment-262208 Epic fail from a hosting company involving bad customer support and a critical security issue | Linux Articles Sun, 04 Oct 2009 13:15:05 +0000 http://www.void.gr/kargig/blog/?p=833#comment-262208 [...] from:  Epic fail from a hosting company involving bad customer support and a critical security issue Bookmark It Hide Sites $$('div.d7242').each( function(e) { [...] [...] from:  Epic fail from a hosting company involving bad customer support and a critical security issue Bookmark It Hide Sites $$('div.d7242').each( function(e) { [...]

]]>