IX Web Hosting - Possible Worst Host Ever? Deny Access To Your Files!
Nov 6, 2008
I signed up for hosting with IX Web Hosting in April of 2007. There have been two occasions that they provided the perfect example of Terrible Customer Service. So much so, my last pony ride with IX Web Hosting was my last. I decided to call it quits and move my account to Host Gator.
I keep my most important sites on a dedicated server at Servint.net. If you are interested in a dedicated server or VPS, I highly recommend Servint. You will not beat the level of service and professionalism this company offers. But that’s another post in itself.
The point is, I had some SEO tests I wanted to perform and I was looking for a hosting company that would allow me to host 10 different domains in the same account on different ip addresses. IX Web Hosting had the plan I was looking for. So in April of 2007, I signed up for a hosting account.
Overall, I was pretty satisfied with the server performance at IX Hosting. I experienced very little if any downtime from server issues. They don’t offer a standard cpanel interface like most web hosts. It appears to be a proprietary / in house control panel.
It was pretty straight forward and with a little time I was up to speed.
Then on June 5, 2008, I got the following email from a System Administrator at IX Web Hosting.
---------------------------
Hello,
My name is Anthony, and I am a system administrator at IXWebhosting. I’m here to ensure a reliable and fast hosting / e-mail environment. This is the reason why I ask you to get in touch with us.
We have received numerous complaints from third-parties about spam originating from your website. As you may know, spam is an on-going problem for all internet users, hence all companies have very strict rules against spam. I am here to ensure that neither you nor any other customer is facing any downsides which could be the result of these spam regulations.
We ask you to immediately cease and desist any such activities. If you are unaware of this activity, please contact me or any of my colleagues via this ticket, phone or live-chat so that we can find the reason for the spam activity together and fix the issue instead of the symptom. Viruses and things of that nature may be installed on your computer and will cause the spamming. We recommend that you run an anti-virus program. If you currently do not possess an anti-virus program, you may download a free version. Please just follow the link below to find Google’s best links for free anti-virus software:
google.com/search?q=free+anti-virus+software [url]
In order to ensure your hosting and mail environment is working flawlessly, we ask you to get in touch with us within the next 72 hours. I highly appreciate your time.
Best Regards,
Anthony Washington
System Administrator
IXWebhosting
-----------------------------------
They identified the domain as bestadtracking.com. This is a domain I own but have never promoted. Not only had I not sent spam through IX Web Hosting, I averaged less than 200 sent email a month on all the domains on my account. So on June 6, 2008 I responded to IX Web Hosting with the following two messages.
-----------------------------------
Hi Anthony,
I can assure you I am not sending spam from this domain or any others. I’m a little surprised that this domain is in question? I set it up over a year ago and haven’t ever promoted it. I don’t send any type of email over this domain. I have no reason to. It gets no traffic or inquiries.
Are you sure there isn’t some type of mistake? Otherwise, there are a couple of php style contact forms on that site. Could a hacker use that sort of thing to send spam? How can we track this down?
Thanks,
Brent Crouch
615-389-XXXX
-----------------------------------
Here is the second email I sent on the same day.
-----------------------------------
Hi Anthony,
I am using AVG on my computer and the scan completed finding no viruses. Besides that, I am using Outlook to manage the mail on several of my domains. I don’t even have a send account setup for bestadtracking.com on my computer. As I stated in the previous reply, I have no reason to since this domain is not promoted.
Can you give me the IP address of where the spam originates? I’d like to compare that to my IP address here at home and office.
Thanks,
Brent Crouch
-----------------------------------
I had no information to track the issue any further. The lack of response from IX Web Hosting left me to believe the issue had been resolved or there had been a mistake. Then 4 days later on June 10, 2008 I got this message.
-----------------------------------
Brent
We tried to reach you today in order to resolve this issue, but unfortunately it has been well over 72 hours since this ticket was placed. We must sadly suspend your services, please do not hesitate to call us at 1-800-385-0450 any time, day or night.
Best Regards
Ian
-----------------------------------
Amazing! They give me no information to solve this problem. On top of that, they don’t respond to my ticket in 4 days and because I didn’t answer the phone when they called they suspended not only the domain in question but every domain listed in my account.
I called in and spoke to a tech support guy who allowed me to remove the domain in question and in return, he restored my other domains. He also left a message to have the tech support manager call me the following day.
The manager I spoke to apologized for the way the ticket was handled and the lack of information that was given. He said he would follow up with the employees that were responsible for the ticket and make sure it never happened again. He was helpful in looking at the server logs and determining how someone had loaded a spam bot onto my site.
Apology accepted. Stuff happens. I considered it water under the bridge and not a big deal. Not so much…..
After my first run in with IX Web Hosting, I wrote the whole incident off as a fluke. The manager I spoke to seemed very sincere and assured me that wasn’t proper protocol and wouldn’t happen again. I was trucking right along until I got this email from them on October 26, 2008.
-----------------------------------
Dear Brent Crouch,
We have received notification of phishing material in your account. Phishing files are usually placed through some type of exploit of out dated code, weak file and folder permissions. Packaged shopping carts and photo galleries are usual sources as hackers find exploits and developers fix them almost daily, so unless you constantly update the software or completely secure it things like this can happen.
You must agree to remove this content and update any software that has resulted in security holes. To protect your account from further action you must agree to our request for compliance. Please respond to this message stating your intent to do so. You may either log into your control panel with us, and access this ticket via the 24/7 help desk, or provide this ticket number to our Live Chat or phone representatives. Failure to respond to this message within 72 hours will result in the suspension of the affected domain with us until such a time as this matter is resolved.
Michael
-----------------------------------
The email gave me no indication of which domain had been hacked. When I wrote to live help and gave them the ticket number, I spent 10 minutes waiting only to be told they didn’t know which of my domains had been effected. They recommended I reply to the online support ticket.
Here is the email I sent them in response on October 27, 2008.
-----------------------------------
I replied to live help and they could not find any information. So far you haven’t told me which domain is a problem.
Please give me the info I need to correct this problem and I’ll take care of it.
Brent Crouch
615-389-XXXX
-----------------------------------
Eight hours later, I was able to find the problem by viewing all the files on my domains and looking for the files that had been recently changed. It turned out my brentcrouch.com domain had been hacked and setup with all sorts of eBay and bank phising pages. The site operates on a Wordpress platform which is widely used and is a big target for hackers.
[url]
I wrote back to IX Web Hosting for a second time on October 27, 2008.
-----------------------------------
I found the problem on my brentcrouch.com domain. I updated the wordpress software to the latest and cleaned up the problem. The only exception is the brentcrouch.com/forum directory. I am unable to delete this directory as the hacker has removed my access. Please delete the directory.
Thanks,
Brent Crouch
-----------------------------------
The following day, here is the email I got back from IX Web Hosting.
-----------------------------------
Brent:
Thank you for your attention to this matter. Per your request we have removed:
/brentcrouch.com/forum - deleted
We will be closing this ticket at this time. If you have any questions please feel free to contact us. We will be happy to assist.
Please note that this is the second time this problem occurred. Unfortunately, I have to bring to your attention that as per our terms of service a third instance will result in immediate account termination without notice. No backups will be provided. If you have any questions about how to avoid this from happening again our support team will be glad to advise.
Respectfully
Frankie
Support Tech Representative
-----------------------------------
When I seen that response, I was pissed! I run my own server at Servint.net. I’ve hosting accounts at several other hosting companies. I’ve never had a site hacked except from IX Web Hosting.
In 4 months, I’ve had two sites hacked. In both instances, IX Hosting was zero help in locating the source of the problem. In the first incident, they didn’t even reply to my ticket for 4 days. In the latest incident, they couldn’t even tell me what domain was hacked.
Then they send me an email telling me if it happens again not only will they suspend my account, they’ll deny me access to my files! Huh?
That’s not a risk I’m willing to take. With the high costs of obtaining customer’s in this business, I’m a little surprised they don’t do a better job of trying to retain them. In my opinion, this policy is unacceptable and makes IX Web Hosting one of the worst hosts I’ve ever dealt with.
I just signed up for a hosting account with Host Gator and have already moved all my domains over. So far, so good.
What’s your experience with IX Web Hosting?
View 14 Replies
ADVERTISEMENT
Apr 29, 2009
how can i deny all of ip instead 2 ip to access to some website?
because these are priv8 website and personal .
i thin that .htaccessis good.
can nany one creat it for me and ist good or use another method?
View 4 Replies
View Related
May 23, 2008
Is there a way to prevent accessing the website using the domain.com/~username/
Currently on most (all?) cpanel hosting plans it's possible to access the site via [rl].
Maybe there is something to prevent that as it could cause very serious duplicate content issues.
Moreover, I think it's a global bug that affects millions of hosting accounts. Yahoo, for example, many times indexes wrong URLs because of that... In many situations, if I knew your cpanel username, I could link to it instead of your domain to remove your site from search engines..
View 5 Replies
View Related
Jul 18, 2007
INTRODUCTION
As owner of a hosting provider company, I face the problem of abusive users almost every day. More than 90% of all abuse on my server comes from free trial accounts. I offer free trial access to my servers for people who want to try things out before they purchase a hosting package, but off course this attracts spammers. To prevent trial users from using my server for spamming purposes, I modified my exim.pl file to prevent trial users from accessing the Exim mail server.
Please note that this tutorial has been written for cPanel servers. If you want to use it on a server with a different control panel, you'll need to modify the cpgetpack.c source. If you do so, please share your work with the community by posting it in a reply here.
STEP ONE
First you’ll need to download, compile and install my cpgetpack.c application. Here’s how:
Code:
gcc cpgetpack.c -o cpgetpack
mv cpgetpack /usr/bin/
chown cpanel:cpanel /usr/bin/cpgetpack
chmod +s /usr/bin/cpgetpack
STEP TWO
Now open the /etc/exim.pl file in your favorite text editor (make a backup first) and look for the following inside the checkuserpass subroutine:
Code:
$trueowner =~ s////g;
$trueowner =~ s/..//g;
if (isdemo(${trueowner})) {
return('no');
}
Below, paste the following code:
Code:
my $name = getpwuid($uid);
open(UP, "cpgetpack $name|");
my $userplan = <UP>;
close(UP);chop($userplan);
if ($userplan eq "radix_FreeTrial") {
return "no";
}
You will have to replace the radix_FreeTrial string with the package you assign to your trial users. This will prevent trial users from authenticating which prevents them from sending mail remotely.
STEP THREE
Users are now still able to send mail locally (for example using the PHP mail() function), so here’s what to do next.
Find the checkdemo subroutine in the exim.pl file and replace the complete subroutine with:
Code:
sub democheck {
my $uid = Exim::expand_string('$originator_uid');
if (isdemo($uid)) { return 'yes'; }
my $name = getpwuid($uid);
open(UP, "cpgetpack $name|");
my $userplan = <UP>;
close(UP);
chop($userplan);
if ($userplan eq "radix_FreeTrial") {
return 'yes';
}
return 'no';
}
STEP FOUR
Now just restart Exim:
Code:
service exim restart
It might be a good idea to create a trial account and see if it’s working. Enjoy!
REFERENCE:
Original post: [url]
Best regards,
Josh Burt
View 0 Replies
View Related
Jun 21, 2014
I would like to deny access to .log
View 1 Replies
View Related
Jan 28, 2013
I have recently had number of websites that link directly to images from my website. This is not hotlinking, it is direct server request. As an example: on the linking website there is image gallery script with thumbnails and when the visitor clicks on the thumb it calls the image from my website.
I block their IP-s in .htaccess, but it is not the best way to stop them since IP change. Is there any way, similar to anti-hotlinking, to deny such direct access to my images by domain name i.e. to allow only from my website and deny from all others. Or something else that could work in my case with .htaccess.
View 8 Replies
View Related
Sep 21, 2006
Hello, I recently got myself into an unmanaged VPS package and I noticed in my log files, countless attempts to ssh into the system. After a bit of searching, fail2ban looked like a good way to ban the brute force attacks automatically.
My question is what should I configure it with? There's the option for iptables or host.deny. I've read that iptables are not fully supported under Virtuozzo but the stuff I've read are a bit dated. Are there still some issues with iptables under Virtuozzo?
What I'm using now:
*Virtuozzo 3 -not sure on exact version. Whatever SolarVPS is using.
*Signed up with centos4
*uname -r = 2.6.9-022stab078.14-enterprise
View 7 Replies
View Related
Jun 5, 2009
What is the worst host for Joomla?
Had a problem with your Joomla site? Which host were you with and what was the problem?
View 14 Replies
View Related
Jan 23, 2008
One of my domain names will expire in a day and a half. I've already paid to OnSmart for the domain renewal about a month ago, however they still haven't renewed it. Their ticket support system hasn't been working for the past couple of days (when I go to the support system it says "ERROR: Invalid License Key (Time Period Expired)"), I also can not access my Account Billing Manager (same problem, the message I get is "ERROR: Invalid License Key (Time Period Expired)"). Their live chat support also isn't working any more, instead, you can only send them an email, which I have done 4 times and received no reply.
They already had this "Invalid license key" problem about a month ago, it lasted for about 7-10 days, and then was resolved.
So, I have no way of contacting them at the momen and my domain will expire in a day and a half.
I have contacted the domain registrar whose reseller OnSmart is - that's Enom, in hope they will be able to help me renew my domain. I talked to some guy over the phone, and he said he will forward my issue to the customer support people who deal with this type of issues (resellers that can not be contacted or are out of business). Hopefully they can help me, but if not, I have 2 questions:
1) Since I can not get in touch with Onsmart, and my domain name will expire in 2 days, is there any way for me to reserve it somehow, so that when it expires, I would get a notification and immeadiately register it again through someone else? And how do I in the process avoid having any downtime?
2) What is the procedure for switching to another web host? I have 2 web sites I would like to move away from OnSmart. How do I do it so that I diminish/avoid any web site downtime?
View 19 Replies
View Related
Mar 28, 2008
Just signed up with PC-Core net yesterday.
Everything was smooth, untill I found out just now that my website is down: finchmall.com
This website is also down.. all because I was generous of giving smaller companies a chance..
View 14 Replies
View Related
May 5, 2008
" Worst service ever experienced.
1. tech support is ill equipped
2. no one answers questions
3. they loose data in transfers
4. rude support persons
5. down time is extremely high
6. server goes down atleast once a day.
Please please dont go for apthost you will regret if you signup with apthost
View 12 Replies
View Related
Feb 9, 2007
I edited the /etc/apf/deny.hosts_rules files, then removed all lines from the file and finally restarted apf so it can restart with no deny host listed. But that is not working... the file appears empty or again with the rules removed before.
iptables -L -n shows the same banned hosts as dropped.
I already tried.. remove the deny hosts IPs from the file, then ran "iptables -F", then "service iptables save", and finally restarted apf and the deny IPs still there
View 6 Replies
View Related
Jul 23, 2008
I have read a few of the threads here bashing 1&1, and have just had my own problems with them culminating to today. If you are thinking of purchasing from 1&1 don't do it!
In the fall of 2007, a friend and I where going to start a small local website. We found 1&1 which offered cheap hosting with all of the server specs that we needed. I purchased 6 months of hosting from them using my CC. Unfortunately our website did not last any longer than a few months, and by the time those 6 months where up I no longer needed the hosting. Thinking that the host would simply expire (unless I authorized another payment) I just let it go, only to see a charge for another $29.95 on my bank statement.
I called them, and was sent to cancel.1and1.com (a URL that is suspiciously absent from their website) and followed the instructions to cancel the account. I requested that the site be canceled at the next billing date (figured I could use it as a development server or something since I had already paid for it).
In January of 2008 (1/22/2008 to be exact) I received yet another charge from them! I called again explaining my situation, and said I had tried to use the online cancellation form but apparently the account was not canceled. The customer support representative requested information from me, and verified that he had personally canceled the account and that I would be receiving a full refund. I was satisfied (at the time) and rather naively forgot about the whole ordeal.
Today (July 22, 2008) I received ANOTHER charge for another 6 months of hosting. Keep in mind I haven't used this account since January . . . I requested a refund for January - July (as I didn't want, nor did I use this account). I was told my name wasn't on file and therefore I couldn't cancel it. Despite the fact that I was told the account was canceled twice, and I had the credit card information, billing address, and security questions (among other things) to prove I was the owner of the account.
One representative in particular even yelled at me, and basically told me I was incompetent. So I asked to speak to her supervisor. Her supervisor wasn't any more helpful and he told me: "I will not be canceling your account and I will not be giving you a refund. I'm not continuing this conversation" and hung up on me.
I have filed a credit dispute with my bank, and had to change my credit card number to prevent them from charging me again. I also filed a complaint with the BBB (not surprisingly they have an 'unsatisfactory' rating there), The Federal Trades Commission, and sent a letter to the Attorney General.
Now i'm waiting for my collections letter . . . as so many of you have received before. Absolutely ridiculous and unacceptable. No other hosting company has ever come close to being this much of a hassle!
I have submitted my story to Digg if anyone is interested:
digg.com/tech_news/1_1_Internet_Inc_Something_must_be_done
View 14 Replies
View Related
Mar 11, 2009
I sign up iPower Hosting package since 5th march 2009, and trying to migrate my database from my current cpanel over their control panel but thing does not works, and I have submit the ticket over there. but the respond from them very slow, and each reply does not help much.
the question has asking repeat again and again, the information I provide also again and again.
see how their respond time for my ticket ...
View 14 Replies
View Related
Nov 24, 2008
I opened an account as a reseller with DSI hosting. Moved all my accounts over to them.
Within a week of the final move I started getting down times Every night for about half an hour or so. So I dropped them an email kindof hey guys is this some kind of reboot time nightly or what this downtime is making me look bad. After 450 minutes of downtime in the first week of November I get this email from them.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Due to recent employee changes and continuous server attacks we regretfully have to discontinue service.
We can no longer provide reliable customer service and server uptime. All servers will remain up for a period of 10 days from this notice for clients to generate backups and remove their accounts. You should due this ASAP.
Server port 80 is under constant attack and will be kept up as much as possible, all other ports including whm, cpanel, ftp and webmail have been going all along with no interruption (as of today).
There is no easy way to resolve these issues without destroying customer data and assigning new ips or just blocking all server access.
With this being said this is the best solution for our current clients. Please backup and remove all data ASAP.
Regards,
Ryan Gadmin@dsihosting.net
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Now the website says nothing about them closing. In fact everything looks Business as Usual.
I have been doing this a couple of years now mostly just for friends but can only imagine how devestating something like this would be to someone who has quite a few accounts.
Just beware that if you are wanting a host this is not the one to choose.
View 11 Replies
View Related
Jul 15, 2008
I bought a hosting package from Yahoo Small Business India.
Initially i was happy because the package was cheap and had good features. Database was easily set up I installed php admin tool also with one click install. No other packages are available. One has to manually upload and install.
I tried to upload phpbb but i wasn't able to upload some files. I emailed them and asked why the server gives an error while uploading .htaccess files, the reply was we don't support it. I uploaded it without .htaccess and installed it. I installed wordpess and wanted to have clean URLs but yahoo does not support mod rewrite. I don’t know much about php and databases.
9th July 2008: While I was learning I modified some tables due to which my database administrator permissions were lost. I was able to login using phpadmin but unable to create new databases and modify previously created databases and tables. I emailed customer care regarding the problem and got a useless reply on 10th July that I should change the password of the database administrator.
I changed the password but the problem was not resolved. On 11th I again emailed the problem in detail with screenshots to the customer care. On 12th, I got a reply “we have forwarded this issue to the technical team and we will inform you once this issue is resolved.”
On 12th I emailed to ask when the problem will be resolved but got no reply from them. Till date (15th July) the problem is not resolved. No one even wants to reply to emails.
See below my emails and replies given by yahoo customer care:
********************************************************
My email to yahoo customer care on 9th July:
I have some problem with database. By mistake i modified my original user name which i created while setting up the database. Now i can't access the tables that were created with previous user name. When i log in using phpadmin and try to see any tables i get the message. Access denied. Moreover, I also cannot create any new tables. I have NOT modified the yroot user;. Can it be recovered.
Please help.
*********************************************************
Reply to the above query from Yahoo India on 10th July
From: Yahoo! India Small Business <in-cs-ysb@cc.yahoo-inc.com>
Subject: Re: Troubleshooting (KMM90534089V76144L0KM)
To: "Vinay Chhabra"
Date: Thursday, July 10, 2008, 1:19 PM
Hello,
Thank you for writing to Yahoo! India Customer Care.
With regards to your query, follow the below steps to assign a new user
name and password to access your database:
1.Logon to your "web hosting control panel".
2.Go to "create and update" tab.
3.Select "MySql databases".
4.Select "database administrator" and assign your user name and
password and click "submit".
For further assistance please write to us.
Thank you again for writing to Yahoo! India Customer Care.
Regards,
Pruthvi
Senior Customer Care Specialist
Yahoo! Customer Care
********************************************************
My email to yahoo customer care on 10th July:
Dear Sir,
Thanks for your reply. I have already done that from database administrator link but the problem is not resolved. This problem has started since yesterday because of my mistake. I modified the original database administrator "user name" from the database "mysql". After modification all my permissions have lost. I have not modified the yroot user. So can you grant the administrator permissions to new user The problem is that after logging in using phpadmin i don't have permission to create a new database. The databases and tables that I created earlier are also not available to me. I am also attaching the screenshot (.gif) of what error i am getting. When i click any database in phpadmin i get the following message:
SQL query:
SHOW TABLE STATUS FROM `wpress` ;
MySQL said:#1044 - Access denied for user to database 'wpress'
If there is no solution then please reset the database, so that MySQL database can be set up again.
Regards,
(Vinay Chhabra)
********************************************************
Reply to the above query from Yahoo India on 11th July
From: Yahoo! India Small Business <in-cs-ysb@cc.yahoo-inc.com>
Subject: Re: Troubleshooting (KMM90547155V54693L0KM)
To: "Vinay Chhabra" < >
Date: Friday, July 11, 2008, 11:09 AM
Hello Vinay Chhabra,
Thank you for writing to Yahoo! India Customer Care. With regards to your mail, we have forwarded this issue to the technical team and we will inform you once this issue is resolved. Thank you again for writing to Yahoo! India Customer Care.
Regards,
Pruthvi
Senior Customer Care Specialist
Yahoo! Customer Care
********************************************************
My email to yahoo customer care on 12th July:
Dear Sir,
When can i expect the problem to be resolved. I reported the problem on 9th. Today is 12th. If there is problem in resolving then please reset the database. I think it will be much more faster.
Regards,
Vinay Chhabra
********************************************************
I have emailed them several times but no replies……………………
If you want good customer support then do not buy any package from Yahoo.
Technical service: 0 out of 5
View 8 Replies
View Related
May 20, 2008
I am an established web developer and a project manager in one of the TOP e-commerce company. Just giving you these details so that you can ACCOUNT and RELY on my review.
I have signed up with Hostforweb.com on 26th April 2008
On weekends I work for my business (my own not the company's for which I work full time).
Uploaded the few websites that were lying there for quite some time.
On 29 th April the websites went down, for which I opened a ticket with hostforweb.com support and got a reply from them saying that
"there was some mis configuration in the nodes which is rectified."
Today all of the sudden they suspended the account and sent a message saying they got a message from "Bank of America" (because of phising activity)
One of my business staff phoned me to my work place and informed about this and for which I was like "WHaTTTT"
I am being in the online business since 1998 and never had a complaint from any of my previous hosting or present hosting providers other than this silly service.
After reaching home from office (which is an 1hr 15minutes ago), I opened a ticket in their support section and the ticket was forwarded to account & billing department by level2 support person.
Later I got a reply from their accounts & Billing department which had a reply saying ...
View 14 Replies
View Related
Mar 25, 2009
So far 1and1.com seems to be the worst I've ever dealt with. I think they should fire the call centers they're hiring and actually find people to represent their company who actually care about their customers. All the people they are currently using sound so ignorant that I feel like I'm speaking to a robot. Through your personal experience, who do you think is the worst?
View 14 Replies
View Related
Apr 6, 2008
Well friends I was just ruunning an blog facing 60% of downtime daily over months , but this was an small part of disaster waiting for me ahead as i tried to use some of the fake bandwidth they pretend to give , and i uploaded few files next day I find my sites suspended ,Reason being
"It is not allowed to host filesharing services on our servers. Reason beeing that such sites are often used to share copyrighted material."
Well thats what writen in there TOS itself.
Without file sharing how can one imagine to use 5000 GB/month + with the limit of 4lacks click also there.
Servage is my worst Nightmare come true.
Why one should not host on Servage.net ??
1. Fake stats they overcount the bandwidth and space.
2. 4 lacks hit limit after that your site gets suspended in real its only 4000 thanks to there fake stats once again.
3. Sql errors ,thats became part of daily life once you host on servage.
4.servage 404 not found page everywhere ,well they would not miss an single opertunity to advertize from your site , whenever they like they would put there own 404 not found page and wait for you to complain. This is the way this cheap hosting gorws.
View 14 Replies
View Related
Oct 14, 2009
Ticket ID : #919385
---------------------------------------
We have serveral vps servers from dmehosting.com. I would say never choose dmehosting.com for your sites. A vps server is down for more than 14 hours and still down. They do not reply to my tickets. They do not inform about the issues.
I had have many issues with them like 1 - 2 hours downtime but that's not really matter.
Now the server is down for more than 14 hours and still not up. I have even asked them to transfer this vps server to another working node but they are not responding.
DON'T CHOOSE DME HOSTING .COM FOR VPS SERVERS........IF YOU NEED HIGH UPTIME AND SECURE DATA.
View 14 Replies
View Related
Apr 3, 2007
here at work theres a little situation with access privs. im in web and my image upload script places files on the server as www user (i understand that). however, if im working on this script and need to either delete these files or archive them then i dont have privs with my account.
how would one go about giving my account access to delete and modify files the www user has uploaded?
View 1 Replies
View Related
Oct 12, 2009
i m a part of development team and i can't find way to test site url while defining website on DW when it says whats your site url. what the other guys r entering are my ip and folder name like [url]is this the right way?
View 7 Replies
View Related
Aug 15, 2007
I am actually very inexpirience in server management. I have a small - I believe - problem. I need to get config file onto my computer from my root server. I can access it through terminal, but it is not very confortable. The config file is on root server.
the file is located at //etc/xxx.conf
Do I need to use web browser to do it? If so how?
Or is there a way that I log to my root server through ssh and transfer onto my computer?
View 2 Replies
View Related
May 24, 2007
1. If I recompile my mysql, can that potentially harm any of my database / table / data?
2. Here is a list of files. [url]. I guess, I have the same in my server. Any idea how can I access to these files?
Here is what I got -
root@usr [/]# find myisam
find: myisam: No such file or directory
View 13 Replies
View Related
Mar 6, 2014
When a user enters the whole url to a file on the webserver he/she can view this file. I want to prevent this and only allow access to the files from within the application (under apache). How can I do that? I already tried:
<Directory /var/www/html/folder/files>
order deny,allow
allow from localhost
</Directory>
This works BUT the file also isn't viewable from within the application anymore.
View 1 Replies
View Related
Feb 18, 2007
I have download manager script that I use for my customers to download products right after the purchase.
Script generates download link that looks like this:
http://www.yourwebsite.com/download/...582921B&p=1840 (where 2YY6582921B is receipt number that is different with each purchase).
All products are placed in one folder. This folder can not be seen in above download url, but can be accessed thru browser and files can be downloaded that way without paying for them.
Can I use .htaccess and if yes how, to protect all product files the way that they can not be accessed directly by visiting url thru browser (in case somebody will find the correct url), they should be allowed for access only for my download manager script.
View 3 Replies
View Related
Jan 14, 2009
I don't really now how this can be done, but as far as I can remember when I was in shared hosting, they always complaint about memory usage.... but they always know what specific files were cosing the most load on the server.
So, I remember I have this count.php file that was constantly hited and the complaint and tell me exactly what file it was cosing the heavy load.
This is just an example, but looks like they always knew the specific files that were cosing problems, so what the hell, this can be done!
Now that I have my own server I would like to know these things as well, so I can know what files need to be optimized.
I searched and searched and searched and... OK, you'll get the point, and I just HAVE NOT find any information on this.
Can someone tell me this "secret"? What do you use to get the files that are cosing the most heavy load on a Linux server?
View 6 Replies
View Related
Feb 8, 2008
transfer a client's site files (over 220 MB) to my server. The client does not use cPanel or have SSH access.
FTP is horribly tedious. I have created the account on my server and have SSH enabled. I have a feeling I can use wget to download the files to the account's home directory, but I am not sure of the correct syntax to recursively download all the directories and the files.
View 6 Replies
View Related
Nov 18, 2014
In web application we are facing high vulnerability issue based on the session validation.
We can download the files from the server whenever we are passing the link even without login. The links are directly hit into the server and download the files any type of files extension such as .txt, .xml, .zip and so on.
Need the solution for this issue: How will we resolve the issue using validate the session in apache side?
Scenario as below:
When user manually passing the request if user logged they should access the files
When user manually passing the request if user is not login they shouldn't access the files
Here both the scenarios they can access the files but we want to restrict when the request is coming to apache without login.
EX: [URL] ....
When i tried above link I can able to view the file in browser. Even able to download all different fies extension which are having in the under tomcat webapps dir.
How we can restrict this in apache code or any other files in apache side or is there any way to validate the request is logged one or not?.
View 3 Replies
View Related
Nov 21, 2014
I have some issues access my files through FTP. I created a new FTP user, that match the domain name, so it is easy for me to terminate access if i choose to delete the domain.
I can only access / see files that i uploaded with that specific FTP user. If i install a plugin inside Wordpress, i can not access those files via FTP.
If i login via SSH, with the root user, i can see all files.
I have tried to add the FTP user to the psacln group, but no luck.
View 2 Replies
View Related