Majestic

Fucker from Georgia bruteforced me and deleted all my accounts on my whm and backups :/. I had 3 adult sites and 4 product sites and alot of random sites. Also had my school final was on that server that's due later this week. How do you biggerboys deal with this shit?

papill0n

I would contact my host immediately.

CYF

that sucks man.

Didn't you have offsite backups? Maybe your host has a backup?

__________________
Webmaster Coupons Coupons and discounts for hosting, domains, SSL Certs, and more!
AmeriNOC Coupons | Certified Hosting Coupons | Hosting Coupons | Domain Name Coupons

Majestic

No didn't have offsite backup. I talked to my hosting and everything . Shit sucks, gonna be working on all my sites for spring break instead of going to the beach and getting fucked up

TeenCat

bruteforced? man then i am sorry to say but lesson learned. also deleted server and also backup ... another lesson learned, do not put the same password on important places. welcome to the internet

__________________

CYF

myabe archive.org has a copy? Or google cache?

hopefully you have files on your computer, or can get images from the designer? etc?

__________________
Webmaster Coupons Coupons and discounts for hosting, domains, SSL Certs, and more!
AmeriNOC Coupons | Certified Hosting Coupons | Hosting Coupons | Domain Name Coupons

Majestic

Yeah man! I use same password for all my cpanels too :/. Lesson learned indeed

TeenCat

another thing is, if you are bruteforced, it is targetted attack, so someone have been looking for datas, or it was a reaction for something. if he will be looking for data, he will leave server as it is. server deleted means it was reaction for something. or there is new hackers "timewasters"

__________________

Jakez

Blows. Been there more than once. Just tell your teacher a hacker ate it? lol

Do you have cPanel? Either way I'm sure your hosting has some kind of backup method, you have to make sure you download a regular backup. Any time I make a major update or just do anything on my hosting that I wouldn't want to have to do again, I make sure I create and download a backup.

I leave the latest 1-2 backup files in my main hosting directory, I also keep the latest 2-3 backups on an external hard drive, and at least a couple of the latest ones on the main hard drive for my laptop. Just in case any of them are corrupted.

Edit: as suggested, check archive.org, you might not get everything you want but that site has saved my ass a lot of time more than once.

__________________
[email protected] - jakezdumb - 573689400

Killuminati

Majestic

Yea it was cPanel :/

free seo

By avoiding shitty hosts.

HandballJim

I work on my websites on my computer...and then upload the files to my host...so I always have a copy. It takes longer to update though. I also burn copies or transfer my webs folder to scan drive. good luck

__________________
HOW I MAKE LOTS OF $$$

Majestic

:/ I will get a dedicated once I learn how to manage everything myself. I'm very noob to this hosting and server stuff

FrozenJag

Which is even more reason to get a good server with a host that offers full management.

Stick to what you are good at and what makes you money. Leave the hosts and server techs to handle that part of your business. Your not utilizing your time right as it is and now its even gotten worse.

Just my

Sorry to hear about this though. :\

free seo

No, if you manage yourself you're gonna get owned again.

Go with a good company that offers full management.

Grisey

Before i moved to natnet i was hacked badly lost about 70% of my income from my traffic sites because of it, never seemed to recover after that. Natnet helped me sort my sites out and get them back in working order but never had the same sales/traffic again.

Natnet rocks

__________________
Segpay Suck Ass Worse Billing Company
Allurecash Scammers and don't pay

ladida

This has no relevance to someone getting hacked. I know only of one company that can say this. If i told you to name them, i'm pretty sure you'd be wrong.

__________________
agentGFY *at* gmail.com

Klen

Well i dont do backup on my servers,but again my servers are well secured since i dont use insecure shit like whm and apache.

TurboAngel

When you want the BEST go with NatNet, I had all my domains stolen so I moved to NatNet and I know 100% that will not happen again.

BestXXXPorn

You should never be brute forced....

I would take steps to secure your own boxes. To protect against brute force on a server level, if you're running *nix... I recommend R-fx Network's free:

http://www.rfxn.com/projects/

APF (Advanced Policy Firewall)
BFD (Brute Force Detection)

Installs in minutes with good install files to help you get it done Anyone with basic *nix skills can do this in a matter of minutes.

__________________
ICQ: 258-202-811 | Email: eric{at}bestxxxporn.com

CIVMatt

passwords usually dont matter... I had my whole box and all sites hacked by a Palestinian group over a year ago, rewrote all my sites with anti Israel stuff and dead babies

__________________
Make easy money with Webcams

halfpint

yep Iv been hacked as people on here already know..Always keep a hard backup of everything on a computer cause it dosent matter how secure you think your shit is, there is always a way round it.

__________________

Get FREE website listings on Cryptocoinshops.net

cyco_cc

Always, always, always keep offsite backups. Just get a (couple) external HDs which serve no other purpose but to backup your sites. Data is another thing but if your data isn't changing very often, DB backups of 2-3 weeks is usually fine. In the worst case, you lose some data but not the entire site.

raymor

$6 for top of the line offsite backup in a highly secure data center - we're even getting ready to
open the second facility in the underground nuclear bunker:
https://www.bettercgi.com/clonebox/

__________________
For historical display only. This information is not current:
support@bettercgi.com ICQ 7208627
Strongbox - The next generation in site security
Throttlebox - The next generation in bandwidth control
Clonebox - Backup and disaster recovery on steroids

Klen

I actually use CSF/LDF combo which also prevent scanning and hacker attempts plus stop bots and ddoss attacks,but csf sometime goes wild and can either block your own ip from accessing or even total server traffic.

Dirty Lord

oh dude....its really awful been deleted

__________________

Majestic

Thanks everyone. Yea I really learned my lesson and now I'm gonna get a couple of EHD's >_>

tiger

WHM has a bruteforce detector built in. Also you should do manual backups to your pc and off site backups as well. Other then that just make sure you aren't running insecure scripts or using crappy passwords and you will be fine most of the time.

__________________

Spudstr

that detector is disabled by default.

__________________
Managed Hosting - Colocation - Network Services
Yellow Fiber Networks
icq: 19876563

V_RocKs

Hmm.. clonebox looks interesting!

st0ned

Agreed. Anyone using it currently?

__________________
Conversion Sharks - 1,000+ adult dating offers, traffic management, and consistently high payouts.
We will guarantee and beat your current EPC to win your dating traffic!
Skype: ConversionSharks || Email: info /@/ conversionsharks.com

StrokeKing

i haven't experience being hack. but i know it is really an awful experience. it is necessary to have backup at all time.

__________________
Adult Reviews by the Stroke King.

The Porn Nerd

Random post

__________________
My Affiliate Programs:
Porn Nerd Cash | Porn Showcase | Aggressive Gold

Over 90 paysites to promote!
Skype: peabodymedia

directfiesta

- Firewall ( like http://configserver.com/cp/csf.html )
- Change your ssh port from 22 to any other thing ( reduces the attempts )
- change the default login name of WHM from " root " to " gtdsiOph " or similar .. ( after all, why give away the first half of the login )
- use a unique root password meaning nothing : random upper - lower cases with numerical and characters . Change it every 30 days
- do the same for Cpanel/Ftp
- Configure your backup drive to unmount once the backup is done ( prevents the b.u. to be wiped ).
- check logs for some nasty shell scripts such as r99 and c57 . Check for root kits.
- Check your PC for trojan ( sniffers, keylogger, etc ..)

and so on .

__________________
I know that Asspimple is stoopid ... As he says, it is a FACT !

But I can't figure out how he can breathe or type , at the same time ....

dickjay

bad host sounds like

amvcdotcom

a bit odd that you also just posted this: http://www.gfy.com/webmaster-q-and-fuckin-a/959148-hosting.html

__________________
Email only: allen at/ amvc dotcom

Joshua G

oh shit!

plsureking

those "i need hosting" threads should be moved to a spam section. same salesmen whores post the same thing every time. they probably just watch for those threads. anyone posting a new "i need hosting" thread is just too lazy to use SEARCH and should be banned.

regarding hacks, u are better off not using a cp. just configure a server manually. then they have to hack ssh to make a change. not impossible but adds difficulty. nothing is hackproof tho.

__________________
#

Sabby

People are such dicks.


Sabby

__________________
Fuck off

Sabby

my server is pretty secure i hope and i dont have much on it anyway that cant be replaced.

Most annoying fuckers I have had lately is having my yahoo msgr hacked. Found a program to cure it.

Bowing to the programer GODS...


Sabby

__________________
Fuck off

raven1083

dude, too sorry to hear that

__________________
Femdom Stories | Bound BBW Blog and Videos |Bondage Sex Videos and Pictures

Hardcore Japanese Bondage | BDSM Movies And Galleries Mistress Cuckold CBT

johnnyloadproductions

I love the fact that I'm in school for computer science/engineering, it all pays off.

Sabby

i have a great story... brb.


Sabby

__________________
Fuck off

bbobby86

what a signature papill0n...

__________________

raymor

Absolutely. I'm a big do it yourself person - I do my own car repairs, including replacing
engines, and all kinds of other DIY. Server admin, particularly when it comes to security, is
NOT a good place for DIY, though, not if the server is for your business.

We regularly have to educate hosts about what we consider to be fairly basic server admin.
Even those who have been doing it professionally for years have a LOT still to learn. It's NOT
something to learn a little bit in your spare time and do it yourself.

__________________
For historical display only. This information is not current:
support@bettercgi.com ICQ 7208627
Strongbox - The next generation in site security
Throttlebox - The next generation in bandwidth control
Clonebox - Backup and disaster recovery on steroids