1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Advice for you guys who are hosting with big companies.

Discussion in 'Web Hosting' started by ghostpix777, Jul 23, 2010.

  1. ghostpix777

    ghostpix777 Registered Member

    Joined:
    May 3, 2010
    Messages:
    68
    Likes Received:
    26
    Hey all, those of you who know me know that I work as an admin for one of the big hosting companies. So heres a little common sense advice.

    DONT leave blackhat files outside of the public_html directory and think they wont be found and for the love of god at least rename the damned things. We tend to notice shit like "NULLEDRANDOMcrack.exe" I cant count how many sites ive disabled due to this. In the name of everything holy use a bit of common sense and your sites will be fine and stay up.

    Thank You
     
    • Thanks Thanks x 5
  2. No Limits

    No Limits Junior Member

    Joined:
    Feb 20, 2009
    Messages:
    111
    Likes Received:
    79
    That's great advice that should never have to be given. I'm always surprised when people do such stupid things. No brains. Thanks for the tip.
     
  3. johnwho

    johnwho Regular Member

    Joined:
    Sep 19, 2009
    Messages:
    255
    Likes Received:
    36
    Occupation:
    freelancer
    Location:
    Republika ng Pilipinas
    Nice advice. I will keep this in mind. Since Im using HG and host couple of my site there. Of course sometimes I use NULLED scripts. :p
     
  4. ghostpix777

    ghostpix777 Registered Member

    Joined:
    May 3, 2010
    Messages:
    68
    Likes Received:
    26
    No problem using nulled scripts here and there, I think we have all done that, just make sure the file is renamed to something like superhappycatfuntime.exe or something else not so obvious.
     
  5. MarketerMac

    MarketerMac Regular Member

    Joined:
    Oct 26, 2009
    Messages:
    247
    Likes Received:
    101

    HAHA! Thanks for making my afternoon with that.
     
  6. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,148
    Since when are web scripts .exe?????
     
  7. scubasteve

    scubasteve Junior Member

    Joined:
    May 10, 2007
    Messages:
    164
    Likes Received:
    77
    Wait a moment here. So if something is stored outside of the public_html directory, then that person is not using their account to provide access to whatever tool they have; they are simply storing it there.

    So what you are saying is that you are like Nazi Germany, going into people's homes without their permission, just to see if MAYBE they own something that COULD be used to break the 'law' (terms of service)?
     
  8. scubasteve

    scubasteve Junior Member

    Joined:
    May 10, 2007
    Messages:
    164
    Likes Received:
    77
    Wait a moment here. So if something is stored outside of the public_html directory, then that person is not using their account to provide access to whatever tool they have; they are simply storing it there.

    So what you are saying is that you are like Nazi Germany, going into people's homes without their permission, just to see if MAYBE they own something that COULD be used to break the 'law' (terms of service)?
     
  9. qwidjib0

    qwidjib0 Newbie

    Joined:
    Jun 22, 2010
    Messages:
    43
    Likes Received:
    5
    That's one way to look at it, but unfortunately it can't be avoided on a shared server on any sizable hosting operation. Usually admins are more concerned with stuff like like eggdrops and xss exploit scripts though.. if we shut off every account that uploaded something questionable pro-actively, we'd lose 90% of the clients out there. :)

    Still, better safe than sorry, if you have a choice of uploading something with a sketchy filename vs. not, choose not. That goes for inside or outside your public_html, egrep will find both just as well.
     
  10. Alexd10

    Alexd10 Newbie

    Joined:
    Jun 23, 2010
    Messages:
    42
    Likes Received:
    73
    lol quite funny common sense advice. Thanks
     
  11. Peepers

    Peepers Junior Member

    Joined:
    Jul 7, 2009
    Messages:
    145
    Likes Received:
    73
    This is one of the few times I've laughed today. Thanks for that! I'm truly tickled.
     
  12. ghostpix777

    ghostpix777 Registered Member

    Joined:
    May 3, 2010
    Messages:
    68
    Likes Received:
    26
    Thats exactly what im saying. Have you ever read the TOS your agreeing to when you sign up with the big companies. I really feel sorry for anyone who actually agrees to it. But hey thats what you give up to pay 4 bucks a month for hosting, you have to realize your basically giving the hosting company power of attorney over anything you host on THEIR servers.

    Again read what your agreeing to when you sign up. If you dont like it dont sign it.
     
  13. paincake

    paincake Power Member

    Joined:
    Aug 18, 2010
    Messages:
    716
    Likes Received:
    3,099
    Home Page:
    Eggdrops can't even be launched on most shared hosts
     
  14. ghostpix777

    ghostpix777 Registered Member

    Joined:
    May 3, 2010
    Messages:
    68
    Likes Received:
    26
    Im not just talking about webscripts. We just nuked someones site who had the following stored in his cgi-bin of all things.

    SeNukex.xxnull.exe
    Kaboommailbomb.exe
    ScrpBoxnullV1.exe

    he had many others also

    but the best one of all.

    renamethisfiletosomethingrandomsoitdoesntdrawattention.exe
     
  15. appleman

    appleman Regular Member

    Joined:
    Oct 30, 2009
    Messages:
    358
    Likes Received:
    97
    why dont you mention the company name so we stay away from it?
     
  16. ghostpix777

    ghostpix777 Registered Member

    Joined:
    May 3, 2010
    Messages:
    68
    Likes Received:
    26
    The legal problems of me breaking their non disclosure agreement for starters . I have given quite a few hints as to what company it is most people here have already used them from what i've seen.

    I'll tell you this though, If you are with ANY US based budget host i.e. you pay $6 a month for hosting, I would suggest you read all the fine print in the TOS that you agreed to when you signed up.
     
    • Thanks Thanks x 1