GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Looking for explanation to security breach

VGeorgie · 04-16-2010, 10:31 AM

I left the host several years ago and there's no reason to go muckraking. Needless to say, they have a spotty record here, so if you use them, you'll know by their rep if you should be staying around.

When this happened to me the sale went through, but I caught it early enough to manually fix the problem and I got credited. Don't know if they've changed things since then.

You can look at your CCBill error log (it's in a directory under your CCBill posting script, in your CGI directory) to see if there were problems with other transactions. And, go into your CCBill admin and make sure you are set to get e-mails for posting errors.

(I just checked, and the one place to put in an e-mail for these warnings says it only works with STORED user names. I do use those now, but didn't when I got the error message way back when. You may want to ask Client Support for help here.)

As for a hack changing the permissions to (apparently) make it unwritable, why would they do that? Generally they just try to snag it so they can hack it offline. They don't do anything to make you suspicious that there was a break in. More likely the file was inadvertently changed by someone with authorized access.

04-16-2010, 10:31 AM
VGeorgie Confirmed User Join Date: Nov 2008 Posts: 359	I left the host several years ago and there's no reason to go muckraking. Needless to say, they have a spotty record here, so if you use them, you'll know by their rep if you should be staying around. When this happened to me the sale went through, but I caught it early enough to manually fix the problem and I got credited. Don't know if they've changed things since then. You can look at your CCBill error log (it's in a directory under your CCBill posting script, in your CGI directory) to see if there were problems with other transactions. And, go into your CCBill admin and make sure you are set to get e-mails for posting errors. (I just checked, and the one place to put in an e-mail for these warnings says it only works with STORED user names. I do use those now, but didn't when I got the error message way back when. You may want to ask Client Support for help here.) As for a hack changing the permissions to (apparently) make it unwritable, why would they do that? Generally they just try to snag it so they can hack it offline. They don't do anything to make you suspicious that there was a break in. More likely the file was inadvertently changed by someone with authorized access.