New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
No sign of intrusion in my VPS so far, qemu-guest-agent purged and private key only ssh but otherwise a default debian image.
Going to live dangerously and leave it running, it's only a wireguard server so what's the worst that can happen...
In $CURRENT_YEAR any entity that doesn't hash and salt account passwords must obligatory deadpool out of existence from the face of the Earth. Computing power is cheap enough now to run bcrypt or whatever for a few rounds.
And I was about to sleep! ๐ตโ๐ซ
Just curious, is LET hosted on CC?
digitalocean
Pheww!
Eh fuck it. Might as well ask. @SolidSeoVPS willing to do dedi refugee offer? I currently have a $100/yr dedi from them. Just in case something happens to colocrossing?
YABS
Link to offer
If colocrossing start cleaning up and find like half of HBO's tv show collection in my vps it's not me it's the hacker he put it there, he's also seeding it for some reason
+1 save me @SolidSeoVPS
Great, add it to the list of why I don't like Virtualizor.
It doesn't ultimately matter to me, but just shows the importance of using (randomly) generated passwords. Password re-use is killing
I thought we were all deleting qemu-guest-agent once we got a new machine?
Do we know what the warning was that was sent? How much time was CC given?
I have a VPS that is under virtualizor but it's not with CC... (That VPS is also going to be decommed this weekend).
You do it
Login passwords seem salted, it's just a pure mess, some stuff is, some isn't, ...
how did you know?
Right, okay. That's... something, at least.
and where us softaculous based out of lmao? what a surprise
Does it touch ColoCrossing resellers?
happy birthday @beanman109
The entire DB is touched, so yes, they are touched too.
thanks
Why does this always happens to me... I bough a VPS on OVH a couple of weeks before their datacenter burned down a few years ago. I bought a domain on Epik and they got breached a month after that. I buy a VPS on CC literally three days ago and now this... I think I'm cursed...
Is there a way to tell if a VPS is under virtualizor? I have a couple more with other providers and now I'm starting to worry they might also get breached if they use virtualizor...
Please buy iHostART. Verry god servic.
@Calin when migrating off Virtualizor?
stop buying vps!! you're dooming all the normal users
Not really. Only if you were a "HostPapa" affiliated company (e.g HudsonValleyHost) customer.
(basically, if your Virtualizor domain points to portal.allsitecontrol.com you're fucked.
RackNerd, ServerHost, ... are CC resellers and they're fine
Please stop touching me
Probably if they run on the dedi portal.
However maybe Colocrossing may also given out reseller accounts.
@Ernie can we get an update on this?
Ernie:
From my point of view, you and other thug scum like you can - and should - get a bullet to the head, problem solved. Simple as that.
But there's one single good thing, this heinous crime brings: a severe warning shot at all providers.
Providers, remember: major parts if not all of your software is based on crappy code in a crappy language. So you'd better at least do anything possible to tighten your ship as best can be done!
@jbiloh a lot of us, and especially your customers, are waiting for a clear, transparent, and honest statement!