Friday, 26 October 2007

Cracked servers

About two years ago I launched an OSCommerce site and blog for a friend.

All has been well for a while, but now the site is down, administratively disabled by the host because “spam and phishing attacks” have started originating from the site. The reasons the site is down could have many reasons, from PHP crack (possible) to just poor administration and security protocols on the part of the host. Come’on, who actually still allows Apache ServerTokens to be reported in a production environment!

Apache/2.0.52 (Unix) mod_ssl/2.0.52 OpenSSL/0.9.7d DAV/2 PHP/4.3.10 Server at Port 80

I’m going to dis on the host here, WebAppCabaret, because they are absent administrators. Emails go unanswered. Phone calls die with no messaging service. Support is shit.

I will never recommend WebAppCabaret (WAC) to another friend. I chose WAC two years ago because they provided J2EE hosting at a reasonable cost.

In the future I will opt for a VPS, like linode, where I can secure the box. WAC has wack service. Stay away.

Posted by caffeinated at 9:58 PM in 0xDECAF


[Trackback URL for this entry]

Your comment:

(not displayed)

Live Comment Preview:

« October »