GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Tech Web Hosts, Server Admins, ISP Owners

HairyChick · 11-30-2018, 09:39 PM

IMPORTANT

If you have access to your company’s list of domains .... names, not IP .... you may have a compromised account or box.

I get 1-2,000 failed logins on one blog. There are five, yes 5, captcha questions there. Three math, one question and one other I forget. These bots are somehow getting by the captchas or I only get notifications on failed logins.

Today I’ve gotten 1,455 so far. I’ve compiled a list for the past two hours of named domains only. A dozen or so are static but the rest are dynamic IP. I’ll do the IP numbers if people want it. Lots of people, not just one!

I was going to post 101 from today but I don’t want to give the keys to the hackers. If you want the list, I can email it to you.

Several are ns.* boxes, some mail servers and some have over 100 tries. They’re blocked at five attempts so this botnet is big.

Lots of open ports out there. I’m hoping to do this daily in a single thread, but again, security is not to be fucked with.

PM me here with an email address. I’ll send a list, whether once or daily. If this is shown to be helpful, I’ll probably start posting on a password-protected blog. I’ve got a spare domain and since this only text for under one hundred people, the bandwidth should be minimal. Or if popular and one of the administrators would give me space on a box they run, I’ll set up the blog with them.

There isn’t a central place for us to post open servers or accounts. It won’t take me much time to scan emails and post if I do it during the day as well.

My host blocks about one hundred already and I can add those to the list.

If you think this idea sucks, tell me why. I’m open to suggestions but if you’re on ignore, ask another to post for you. This isn’t so you can add to .htaccess but it works. The idea is to get admins to tighten their open holes, so to speak.

I’m off to dream of secure servers, hackers locked out, and webmasters giving a fuck about security. You might think your blog is secure but the server box might not be secure. Your paysites might be open. Why chance it? Free software tells you of hacking attempts; help the industry as a whole be safer and aware. Everyone competes but together we cAn make a change.

*stepping off my glittery starry ladder after throwing sparkles on all* and no, I’m not high, just trippin’ on a good idea.

11-30-2018, 09:39 PM
HairyChick Slowly dying Industry Role: Join Date: Sep 2012 Location: Padanaram Posts: 3,091	Web Hosts, Server Admins, ISP Owners IMPORTANT If you have access to your company’s list of domains .... names, not IP .... you may have a compromised account or box. I get 1-2,000 failed logins on one blog. There are five, yes 5, captcha questions there. Three math, one question and one other I forget. These bots are somehow getting by the captchas or I only get notifications on failed logins. Today I’ve gotten 1,455 so far. I’ve compiled a list for the past two hours of named domains only. A dozen or so are static but the rest are dynamic IP. I’ll do the IP numbers if people want it. Lots of people, not just one! I was going to post 101 from today but I don’t want to give the keys to the hackers. If you want the list, I can email it to you. Several are ns.* boxes, some mail servers and some have over 100 tries. They’re blocked at five attempts so this botnet is big. Lots of open ports out there. I’m hoping to do this daily in a single thread, but again, security is not to be fucked with. PM me here with an email address. I’ll send a list, whether once or daily. If this is shown to be helpful, I’ll probably start posting on a password-protected blog. I’ve got a spare domain and since this only text for under one hundred people, the bandwidth should be minimal. Or if popular and one of the administrators would give me space on a box they run, I’ll set up the blog with them. There isn’t a central place for us to post open servers or accounts. It won’t take me much time to scan emails and post if I do it during the day as well. My host blocks about one hundred already and I can add those to the list. If you think this idea sucks, tell me why. I’m open to suggestions but if you’re on ignore, ask another to post for you. This isn’t so you can add to .htaccess but it works. The idea is to get admins to tighten their open holes, so to speak. I’m off to dream of secure servers, hackers locked out, and webmasters giving a fuck about security. You might think your blog is secure but the server box might not be secure. Your paysites might be open. Why chance it? Free software tells you of hacking attempts; help the industry as a whole be safer and aware. Everyone competes but together we cAn make a change. stepping off my glittery starry ladder after throwing sparkles on all and no, I’m not high, just trippin’ on a good idea. __________________ ***************************************** Anti-Semites have Small Penis Syndrome. The only known treatment is electroshock therapy combined with cerebellum removal. Fortunately, it’s a tiny procedure. *****************************************