Ok so anyone who has hosting with CS may have had some serious security vulnerabilities. I'm still figuring out just how deep it went.. But Yea.. Lets just say JustHost had a hell of a lot more exposed then it should have. I'll send out a big email sometime tomorrow/today depending on your timezone....

Like 3 more sites went down today to 'hackers'.. I quickly ripped Everything off the JustHost server via a backup I made not long ago and moved to my new server(Sorry if you lost anything new posted in the last 24 hours.. it cant be recovered easily, contact me if you must get it). I was hoping I would not have to do it quite so quickly.. but staying there any longer would just mean more compromised sites. I did some preliminary testing and every site I tested was restored successfully this time. (even you noms!) So once dns propagates everyone will be on the new server.

Oh and everyone's account is now free until I have time to rebuild my billing system which is not easily recoverable.

Please report any bugs, issues, general problems, emotions, aches, feelings, etc.

I'm going to say 100% that last announcement about price is amazing. Even though I'm free-riding right now, you're who I'm going to recommend in the future for web hosting. Admitting these problems and giving customer-friendly solutions to them is what makes you really stand out.

Note that if one does not use chemicalservers nameservers - change of the "A" records on the other nameservers is needed.

69.175.4.118 ==> 173.242.127.6

Users websites on previous server still works, so no-one should have a downtime.
Access to FTP and cPanel is possible, too, (on both servers) for a case someone has some modified files/database since the time of zzbomb's global backup.



On my side - monitoring both servers at the moment, and I will display results from both after some needed change of my code in an hour or two. edit 10 hours later: ooops, not yet displayed both, sorry


------------------------
edit:

Can I ask for how long your JustHost account is granted (paid)? So one can assume - at own risk, of course - for how long users websites in there will be still functional. I use xname.org nameservers for one of the domains and recently updating anything on these is very problematic and may take many days.

Note that if one does not use chemicalservers nameservers - change of the "A" records on the other nameservers is needed.

69.175.4.118 ==> 173.242.127.6

This is true. So go update your A records.

Users websites on previous server still works, so no-one should have a downtime.

Heh. It may have gone down for a few seconds when I rebuilt apache for the fourth time..
Access to FTP and cPanel is possible, too, (on both servers) for a case someone has some modified files/database since the time of zzbomb's global backup.

Can I ask for how long your JustHost account is granted (paid)? So one can assume - at own risk, of course - for how long users websites in there will be still functional. I use xname.org nameservers for one of the domains and recently updating anything on these is very problematic and may take many days.

As early as the 26th. Although It could be several days later. So if you do have anything left there I advise moving immediately. The advantage to it being turned off soon is it will force the switch and anyone still using that wont get screwed up later, since I already just got all of the files.

Quote from: zzbomb on October 21, 2011, 11:44:01 PM

Oh and everyone's account is now free until I have time to rebuild my billing system which is not easily recoverable.

What do you mean by that? just wondering... tho i never saw any downtime on the paid service for someone else i am just wondering...

Anyone who was paying me... No longer needs to, and can consider it free until I bring billing back online in a few weeks. This does not count for my VPS users, this did not affect them, it'll just be a delayed charge.

Quote

SSL encryption is required for access to this server.

Log in using SSL.

... this is annoying...

That is annoying.. Poof. It's gone.


Anyways yea. I'm tired I work too much.

PS. I'm rebuilding apache.. right now. Sorry if stuff goes down for a few minutes.

cool thanks oh...

Quote

Login Attempt Failed!

lol want me to put in a ticket?

im also going to back up from the old server as its still sending me updates XD

Edit:

Quote

Account Suspended

-.-' yet it still says active...

Sure, or I am currently and for a few more hours available in #chemical on freenode.

lol irc chat for me is unreliable... ill submit a ticket

Edit:
#961336

kk ill let you know soon.

Quote from: gamerz300 on October 25, 2011, 07:44:18 AM

lol irc chat for me is unreliable... ill submit a ticket

Edit:
#961336

kk ill let you know soon.

k thx im backing up the db everyday as i kinda need too when the server goes down i guess ill need to do it on this pc manually...

cool thanks

everything looks intact except cron which could be just the psp...

oh has the server time changed

edit:

Free clients may signup if they wish in order to submit support tickets.

... i guess when i re register i wont see my services lol...

Holly crap 9 hours change O.o is that 4 real?

Oh ummm lol... i cant find a password for another one of my hosts in my email.... so i cant edit it XD not a issue right now as it works >.> so ill let it sit for a while in case some other more inportant issues arise.

oh has the server time changed

edit:

Quote

Free clients may signup if they wish in order to submit support tickets.

... i guess when i re register i wont see my services lol...

Holly crap 9 hours change O.o is that 4 real?

Oh ummm lol... i cant find a password for another one of my hosts in my email.... so i cant edit it XD not a issue right now as it works >.> so ill let it sit for a while in case some other more inportant issues arise.

Your cron should.. SHOULD be intact.
No you wont see the product, but any NEW products will be visible there. It's too much effort to migrate all of the free clients over. (Perhaps if I get bored I'll write an SQL query for it.. But for now.. Na.)
Woops thanks for pointing out the time... Updated server time to EST.

Which password? I'll reset it and send you an email.

---

i changed the A record and its resolves to wayne nj. can you tell if my site is on the new server? maybe i f**ked up something?
www.paulrokicki.com

Quote from: zzbomb on October 26, 2011, 10:51:49 AM

Quote from: paulspage on October 26, 2011, 08:33:46 AM

is the new server in wayne NJ?

No... http://ipinfodb.com/ip_locator.php?ip=zzstack.com

@gamerz300 I've gotten your account running. Sorry for the inconvenience.

Looks fine to me. It's directed properly. Where are you seeing Wayne NJ? geoip has it pretty clearly...

IP address : 173.242.127.6
Country : US
State/Province : PENNSYLVANIA
City : CLARKS SUMMIT

yea crons are intact the psp just dont show them

im not overly all concerned about seeing the products as long as i know they exist which they do

the one i dont have the pass for is game.chemicalservers.com

and lol at time... i just updatted my crons accordingly >.< oh well...