homepage Welcome to WebmasterWorld Guest from 54.205.193.39
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Visit PubCon.com
Home / Forums Index / WebmasterWorld / Webmaster General
Forum Library, Charter, Moderators: phranque & physics

Webmaster General Forum

    
NetworkSolutions Outage & Hack Intrusions
started Thurs 3/15, continues as of 3/18
dibbern2




msg:4430619
 6:13 pm on Mar 18, 2012 (gmt 0)

On 3/15, 4 of 5 sites (my clients) hosted at NetworkSolutions went down.

All four of those hit were on Linux servers. The one site using a Windows server went untouched. The NetSol tech helpline ackowledged that there was an outage accross multiple sites.

On Friday, 3/16 service was spotty with many page requests suffering from latency issues.

On Saturday it seemed everything was back to normal, except that I found all FTP passwords had been reset to random generated pws. Their system would not allow pws to be changed back to old original.

As of today, 3/18, I have discovered that .htaccess files were overwritten early this morning, redirecting traffic to an address in The Netherlands.

I am no expert on these issues, but my guess is that NetSols servers were attacked on Thursday. I am thinking that they changed ftp pws as a security measure, and banned the use of old pws because they suspected --or knew-- that the old pws had been compromised.

The worst news is that the new security parameters were breached, apparently, in the .htaccess hack that I discovered this morning.

Does this interpretation of the events make sense? Should those of us with NetSol hosting beware of new hacks tomorrow?

BTW, NetSol help lines, which are usually pretty quick to answer, are encountering wait times of about an hour as I write this.

 

lucy24




msg:4430641
 7:33 pm on Mar 18, 2012 (gmt 0)

Urk. Something of the same kind happened at Dreamhost... a month back? Two months? They didn't get as far as actual damage-- at least not in my corner of the farm-- but I remember the password-resetting part. File under: better safe than sorry.

I'm thinking it could be the internet equivalent of locking the door while the thief is still hiding in the attic?

shman




msg:4430648
 8:19 pm on Mar 18, 2012 (gmt 0)

Hi dibbern2,

I work for Network Solutions. These types of issues are very concerning. Please send me details of what you observed so that I can pass it on to our tech and security teams, it would be greatly appreciated. smedia at network solutions dot com

Thanks,

Shashi

dibbern2




msg:4430678
 11:43 pm on Mar 18, 2012 (gmt 0)

Thanks Shashi, I'll contact you.

UPDATE: My NetSol site monitoring service ($$$ per year add-on service) reports that sites were down again today for an hour.

I chose NetSol after dealing with many snaller host companies that couldn't control outages. Its been very reliable... Up To Now.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Webmaster General
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved