Hetzner attacked by Hackers

[jes]

Hetzner attacked by Hackers

Hetzner hit by network intrusion which may have allowed unauthorised access to hosting management systems

 

[Synthetic_Darkness]

Anyone else smelling an inside job.....Or a disgruntled employee?

 

[TimTDP]

At least Hetzner did not try to cover it up.
They were open and honest about it.
Any reason for using Hetzner!

 

[BGE]

Now here I sit... updating numerous DB connection strings and ftp accounts... not nice... messing with my Friday!

 

[dshutts]

Now here I sit... updating numerous DB connection strings and ftp accounts... not nice... messing with my Friday!

ditto. 18 done so far.

But congrats to them for a mature response to a ****ty situation.

 

[pcwzn]

The guys on the TruServer hosting also where affected by the BACKUP server "co-incidentally" also crashing and there seems to be no backup of the backup. For me this really raises some serious security and infrastructure issues.

 

[BGE]

Hetzner's backups in the dedicated managed environ are not guaranteed... I've learnt this the hard way, to my customers detriment! If you want seriously good service levels from Hetzner you should consider a CHS solution... I believe the MyBB forum is hosted in this environ!

 

[rpm]

Well done to Hetzner for playing open cards - so easy to just wipe this under the carpet and hope nothing serious happen in future.

Custom Hosting FTW - not affected (apart from one TruServ box)

 

[BGE]

This is what I appreciate about them, recently when disaster struck our dedi server, they took the blame and instituted remedial action... our needs have now out-stripped the dedi setup... time to move up to Custom Hosting... can't wait!

 

[who.is.michael]

...most prob. the worst (local) hosting company!

Can't understand why ppl still host with them, after so many issues, power failures, security issues, pricing, service, etc.

Seems locals will support a company no matter what - if the company is perceived to be a big company - they flock like sheep, i.e. MWEB, etc....

no sympathy - do your homework.

 

[BGE]

ditto. 18 done so far.

I'm lagging... done 10...

 

[dagwood4455]

they are a good bunch but sometimes it can get frustrating ... to the point that you want Custom Hosting ... BUT ... it is going to cost you ...

 

[VioAdmin]

Maybe it is because your prices are way and I mean WAAYYYYY too high. I don't understand how people can pay this company all that money when they are so many cheaper and better hosts in the world. They are ripping everyone off! Also, a host admitting they don't know how the hackers got in is not good at all. It only means the hackers still have access and will probably strike again when Hetzner relaxes...

It is time to hire a real Linux Administrator(s) who can trace this down. Changing passwords sounds like a temporarily fix. What if the hackers got in via a bad script on some web site? Or even worse, the hackers have a paid hosting account and are using it to leave back-doors for themselves to gain access to the network??? Have they considered such options?? This happens a lot!

I wish them luck but it is better to learn to block the punch then trying to dodge it all the time.

 

[magneto]

if remember correctly when they posted the article about Hundreds of SA websites hacked http://mybroadband.co.za/news/internet/15271-Hundreds-websites-hacked.html
couple of weeks ago. if u you went hackingstats it listed hetzner.co.za on the server breach list as the lastest. now its has

DataPro.co.za
Latest Server Breach
12 October 2010

 

[BGE]

...most prob. the worst (local) hosting company!

Can't understand why ppl still host with them, after so many issues, power failures, security issues, pricing, service, etc.

Seems locals will support a company no matter what - if the company is perceived to be a big company - they flock like sheep, i.e. MWEB, etc....

no sympathy - do your homework.

Been hosting with them for years... 5+... only had 1 serious issue up till now! So you've done your homework... who do you suggest as an alternative...

 

[w1z4rd]

Very very very serious breach of security.

 

[BGE]

Maybe it is because your prices are way and I mean WAAYYYYY too high. I don't understand how people can pay this company all that money when they are so many cheaper and better hosts in the world.

In my environment server response/speed is crucial. Hosting overseas doesn't do it. Recently we had to setup a system for a Namibian client, due to there poor international connectivity we had to host at AfricaOnline(MWEB Namibia) to ensure the client gets the best possible service. If you want to see rip off prices try them... 4x Hetzners rate for a totally self-managed server, we're basically paying for rack space in their server room!

 

[dagwood4455]

we have 10 managed servers with them (which I think gives me some clout on the matter) and I can say that we are "addicted" to their "speedy and 24/7 support". Yes, sometimes there are niggles or special requirements (that can't be met in a managed environment) but it is not enough to risk going elsewhere.

 

[stricken]

The GLibC vuln. is a zero day. Could have happened to anyone.

 

[screamingelectron]

So, who to go to for decent, local hosting?