Hostfresh Featured On F-Secure
Mar 14, 2009
The type of spam runs we saw late last year (Obama and BofA) are starting to pick up again in volume. We've seen Classmates being used as a theme and two days ago it was fake Facebook messages. Today it's back to fake Bank of America certificates.
As in all previous spam runs it leads to a site prompting you to download a fake Adobe Flash player. This malware steals confidential information and sends it to a web server.
In previous attacks this server was in Ukraine but it has now been moved to Hong Kong. If you see network traffic to the IP address 58.65.232.17 it's a bad sign.
View 2 Replies
ADVERTISEMENT
Feb 2, 2014
We have access to apps enabled in subscriptions, but we only see Drupal as the Featured App. In all other Plesk servers, we've installed, it showed at least Drupal, WordPress and Joomla. How do we add Apps to the Featured section of Applications?
View 1 Replies
View Related
Sep 11, 2008
I am currently hosted with HostFresh on their HongKong sever (Shared Hosting) and my site has been down for 7 days now!
I tried emailing them for several days, before calling their US phone line 3 days ago, which I was told they could not help and had to wait for an emailmwhich i replied I had been waiting 3 days for a reply..... later that day I finally get a response for my email which asked what the hell is wrong and when it will be fixed, the simply say- site was nullrouted and have to wait for it to come online
this was 3 days ago now... I have sent 1 (sometimes 2) emails per day since, I currently have 8 open tickets, all ranging from the last 6-7wks - YES... I had open tickets when this all began t do with me paying my bill twice, which i heard nothing for weeks so I did a charge back through PayPal.. another mater.
Does anyone else have this problem with support there?
and with the site?
is there a way I can get my files of the server and DB?
can someone please advise what I should do?
I am hopeless with out them as they have my site files, otherwise i would have dumped them days ago!
by the way, I have emailed them number of times, they just ignore me, I am going to be calling again t the U.S in the morning, though they have no idea, and frankly nor do I - I need my DB it has my whole site for the last 18mths on it - over 10,000 members info.
View 14 Replies
View Related
Nov 10, 2007
I have noticed over 10 sites hosted on HostFresh which are abusing my copyright and stealing softwares from a company which I'm affiliated with I sent hostresh email to abuse@ however no actions was taken its been almost a month since I sent the email out.
I asked them nicely to remove that infringing site but they do nothing I sent them another email today Waiting to see what happened and I wanted to bring this here for some advice what should I do if they do nothing after another month? I'm not much expierenced with this but the company is loosing a lot of money and I'm being pressured, hiring a lawyer is a lot of money too so I tried to get it fixed with emails but they dont want to help me solve this.
I know theres a hostfresh rep here
View 14 Replies
View Related
Jul 30, 2008
I purchased some services from hostfresh.com but after waiting 3 days for my hosting to be set up (just basic web host space) i decided to switch to wrzhost.com where i was ready to go within 10 min of buying the services. I sent a support ticked to hostfresh(before i asked for the refund) and a lady told me to contact sales , when i told her i was getting no reply she again told me to contact sales so i bought else where. I emailed sales and billing 2 times each and sent 2 support tickets to them over a week and a half but have gotten no reply at all and when i sent a ticket to the lady that was actually replying , she now wont reply to my tickets also.
Anyone else have a problem with them and how did you get your refund?
Paypal was used to pay
View 14 Replies
View Related
Apr 25, 2008
I recently, 3 days ago, paid for a advanced package for 3 months ($47.85 USD)
Since my debit card appears to be expired, I decided to transfer the money directly from paypal. So I did, and sent a ticket in their billing system with the transfer details.
Yet, I havenīt received any sort of response ever since.
Sent two emails regarding the situation in their billing system, and three more in their support service aswell.
Nothing has happened, I have asked for refund obviously, maybe they have some kind of problem right now. But that is no excuse for not replying whatsoever.
View 14 Replies
View Related
Jul 26, 2009
how can i secure my tmp on vps?
mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
it isnt work on vps and i have this error:
[root@ dev]# mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
mount: could not find any device /dev/loop#
View 4 Replies
View Related
May 5, 2009
i want to secure my /tmp and do this:
so i try this link
[url]
so:
cd /dev
dd if=/dev/zero of=tmpMnt bs=1024 count=150000
/sbin/mke2fs /dev/tmpMnt
cd /
cp -R /tmp /tmp_backup
mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
but i have this error:
root@server [/]# mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
mount: no permission to look at /dev/loop#
View 4 Replies
View Related
May 13, 2009
when I get a dedi server for shared hosting. I secure it as much as i can and then just incase I miss stuff etc I hire 2 other companys to check over everything. Since I bought a vps from fsckvps are there any guides to secure and optimize a vps other then the one located in the vps section? thanks. I Dont feel like spending 50+ dollars on securing a vps that costs less then 15 a month.
View 14 Replies
View Related
Aug 7, 2008
vbulletin.com/forum/showthread.php?t=281011
How secure is my VPS? Anyone who has some free time and is reading this thread could please try to do some penetration-testing or something related (I really do not know much about network security) in order to know if my server configuration could be the problem?
Do you find any way to download the full database without login on the system (cPanel or phpMyAdmin)?
View 3 Replies
View Related
Sep 8, 2008
i'v been Installed all these In my VPS server
1)Disable Functions:
system,system_exec,shell,shell_exec,exec,passthru,escapeshellarg, escapeshellcmd,proc_close,proc_open,ini_alter,dl, popen,parse_ini_file,show_source
and Enable The Safe_Mode.
---------------------------------------
2)Hide_your_apache_Version
---------------------------------------
3)Install LogWatch in a Server
---------------------------------------
4)Mod-Security-Install
---------------------------------------
5)Root-Login (IP Sent).
---------------------------------------
6)Disable Login Root and Change SSH Port .
---------------------------------------
7)Installing eAccelerator .
---------------------------------------
8)Install Nobody Check
---------------------------------------
9)Updateing All of
/scripts/upcp
/scripts/updatenow
/scripts/sysup
/scripts/fixeverything
/scripts/exim4
/scripts/easyapache
/scripts/securetmp
----------------------------------------
but doesnt know yet what the better to secure my vps ..
and about Firewall two .. wich firewall better
CSF or APF+BFD ..
View 4 Replies
View Related
Mar 27, 2008
I have an application that requires a Secure FTP connection to a server to work. I am having trouble connecting to one server, a windows based server, while the CentOS Linux server is working fine.
Does anyone know where I can find test Secure FTP locations so I can determine if the issue is with misconfiguration or with an incompatibility of the program with windows Secure FTP sites?
I am able to connect to both sites using WinSCP and choosing Secure FTP.
View 1 Replies
View Related
Aug 30, 2007
Check out this blog and suggest what thing more can be added to secure the vps and i think this information database can be helpful for newbies and intermediate users which like to secure the VPS.. which sometimes exploited due to bad scripts.
[url]
View 2 Replies
View Related
Nov 11, 2007
Ive been using Dreamhost for years and there great however, One of my clients needs has drastically changed and they are now required to comply with the Data Protection Act.
In particular this bit make Dreamhost a bit of a no go due to them being in California:
"Personal information may not be transmitted outside the EEA unless the individual whom it is about has consented or adequate protection is in place, for example by the use of a prescribed form of contract to govern the transmission of the data."
Unless my client goes and asks all 1000+ customers they are kinda in a bit of a quandary. So here's what im looking for:
Secure UK Datacenter, eg Easynet, Blue Square etc
128mb RAM, 256mb Burstable, 20GB storage, 500GB transfer
LAMP Environment
Support within Business Hours
Control Panel
View 6 Replies
View Related
Feb 4, 2007
So I just got SVN installed on my server, and now I'm wondering about the best way to go about securing it. This is what I've had done so far
the executables were installed to /usr/bin as ROOT
Then I created a directory in /usr/local/svn as ROOT to hold the svn repositories (the conf folders, etc).
I've decided that I'd like to use the SVNSERVE tool rather than have to run Apache2 which my current VPS provider does not provide any support for.
So I've run SVNSERVE like so:
svnserve -d -r /usr/local/svn --listen-port=7126
Then for each repository within the /usr/local/svn folder I've gone into the conf folder and added:
anon-access = none
auth-access = write
password-db = passfile
realm = myrealm
The passfile is located in the same directory (ie. /usr/local/svn/test) and contains my users in the format:
[users]
harry = harryssecret
sally = sallyssecret
I then run my checkouts like so:
svn checkout svn://mysite.com:7126/test
Now my question is how secure is this. I was tempted to use svn+ssh but I couldn't seem to figure out how to get it configured. Is the protection I have adequate? How easily can this be compromised? What steps should I take to lock it down further. Can I limit the connection to SVNSERVE to only come from certain specific IP's... similar to how apache does:
Order deny,allow
deny from all
allow from 192.153.123.12
View 10 Replies
View Related
Feb 22, 2007
What would be the most secure free CMS at the moment? I ask this because im looking to setup a website, and i dont have enough money to invest in a custom coded website, so to start out with ill use a free CMS, but i dont want to be hacked.
Now i know that because the CMS's are open source, they can still be hacked, what im looking for is something that is the most secure, preferably with sql injection protection.s?
View 11 Replies
View Related
Apr 15, 2007
Secure FTP?
Entirely dependent on Client Software or do we need to buy an SSL certificate and install it on our server as well?
How it works?
View 1 Replies
View Related
Jun 25, 2007
[url]
i followed the guide, after done I reboot the server then it gives me these errors:
Quote:
mounting local filesystems: Failed
mounting other filesystems: /dev/tmpMnt: No such file or directory
View 5 Replies
View Related
Nov 3, 2009
What is best method to secure the tmp?
1. /tmp mounted as noexec,nosuid?
2. creating /usr/tmp directory?
View 1 Replies
View Related
Mar 25, 2009
i have question about securety of our DNS Server.
View 8 Replies
View Related
Jun 13, 2007
I am looking for antivirus under linux like f-secure scanning php shell files scripts but free
i am facing many problems here from these shell files ....
View 0 Replies
View Related
Mar 15, 2007
recently I got a VPS from cheapvps.co.uk and so far so good. Im getting used to the VPS enviroment. I tried to follow several guides about how to secure with noexec and nosuid the /tmp and /var/tmp and it did not work.
in http : / / www . webhostingtalk .com/showthread.php?t=474681&highlight=tmp points it must be done from the hosting. Same is said in http : // kb . swsoft . com/article_130_648_en.html.
I asked the hosting to do it and they told me as I got an Unmanaged VPS they cant do it for me.
Do anyone know how can be done ? I dont want to use tmpfs as it uses main memory.
View 1 Replies
View Related
Jan 16, 2009
In terms of the secure domain, if I had a secure site and wished to access some information on a web page that was from a NON-SECURE domain or at least duplicate the non secure information on to the secure page, does the user need to click acknowledge buttons to go in and out of the secure areas? Can I copy or transfer information [eg goggle search results] onto the secure page without this necessity?
View 6 Replies
View Related
Jun 8, 2009
My requirements are 500MB, 5GB bandwidth, rails and postgres, $5-6 per month. It looks like there are many providers out there that are offer that.
However the only uploading method shared hosters seem to offer - or at least the only method they advertise - is FTP. Coming from a university and sysadmin background, I thought that anything that sends passwords over the wire unencrypted had died long ago (except HTML forms and legacy systems).
Are there any shared hosting services that allow a more secure upload method (e.g. scp, rsync-over-ssh, even webdav-over-ssl)?
View 4 Replies
View Related
Jun 7, 2008
am getting this repeated error line in in log/secure
Quote:
Jun 7 18:19:38 host sshd[15751]: warning: /etc/hosts.allow, line 7: can't verify hostname: getaddrinfo(ev1s-209-85-4-32.ev1servers.net, AF_INET) failed
Jun 7 18:19:38 host sshd[15752]: Connection closed by 209.85.4.32
here is my host.allow:
Quote:
#
# hosts.allow This file describes the names of the hosts which are
# allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
ALL: localhost
ALL: 62.215.149.53
ALL: 70.84.160.0/24
ALL: 66.98.240.192/26
ALL: 216.12.192.107
ALL: 12.96.160.0/255.255.255.0
ALL: 67.19.0.0/255.255.255.0
ALL: 216.234.234.0/255.255.255.0
ALL: 70.85.125.0/255.255.255.0
ALL: 70.84.160.0/255.255.255.0
ALL: 216.40.193.0/255.255.255.0
ALL: 66.98.240.192/255.255.255.192
ALL: 209.85.4.0/255.255.255.192
ALL: 209.85.4.32
ALL: 75.125.126.8
View 2 Replies
View Related
Mar 28, 2008
all we know that perl language its using in alot of scripts and alot of system admins stop it why this why u dont try stopp the problems from it and make ur client have perl to used it in scripts lets try this if some one need to see passwd he will do cat /etc/passwd what about make this chmod 700 /bin/cat and he will used wget to get files what about this chmod 700 /usr/bin/wget and lynx what about chmod 700 /usr/bin/lynx in this case we make root only can using this commands any system admin sure know now the idea and he can use it as he want ,, this secured method not only in perl its in another programing language put i give this as a clear exampel.
View 5 Replies
View Related
May 26, 2008
I was just wondering the top 3 best ways to secure your business ( not legal) just the servers.
View 3 Replies
View Related
Apr 25, 2008
My server hacked!
my server hacked for tow time in less than one month (both times they were similar to each other), and my previous securing company work on my server in previous hack but the server hack again!
anybody can work on my server? this is very URGENT because my server and all of our sites are down!
View 3 Replies
View Related
May 7, 2008
Is it good security wise?
View 11 Replies
View Related
Feb 7, 2008
I'm building an ASP.NET 2.0 web app on a shared hosting plan. It looks like I have two good places to store my database. One is the App_Data folder that my .NET training tells me is the place to store databases. However, like many shared hosting plans I have a directory above the publicly accessible webroot folder with serves as my application root. Right next to my webroot folder is a databases folder which my web host apparently sets up as a default location for databases. So which is more secure? My App_Data folder? Or a "sibling" folder to my webroot?
If it matters, I have an Access .mdb, which I may upgrade to a SQL server .mdf.
View 2 Replies
View Related
