news Spammers hijack 1000s of domains exploiting a vulnerability in Godaddy's DNS setup process

Castion

Level 8
Joined
May 9, 2006
Messages
1,322
Reaction score
830
Feedback: 62 / 0 / 0
Wow indeed. I only heard of this today, Godaddy did a pretty good job of not making this a big story.
 

jaydub

Level 10
Joined
Jul 1, 2004
Messages
5,865
Reaction score
543
Feedback: 396 / 0 / 0
It may gain traction now.... nice find Lars. People need to know these vulnerabilities are out there.
 

onlinetv

Level 4
Joined
Sep 22, 2007
Messages
183
Reaction score
8
Feedback: 1 / 0 / 0
I have only one website under the godaddy dns services. They gave me the free website because I was a pro reseller. At first I hosted the site I use to sell domains. It was hacked in a couple months. Simple wordpress site. Somehow they hacked right in and took over the whole deal placing a gay porn site on it. The web site got banned on all services because of the malware on it. It took me days to clean it up. I still have their source in a zip file. I did nothing with the site for a long time and then I hosted another game site, selling weather prediction devices, as it was basically a one page site that did sales. It too was hacked within a couple months, and that was this year! I cleaned up the site, remade it new, and locked it down with every trick I knew and new tools. It still uses their dns servers, but it has been okay since renewed and locked down. No users, no rss feeds, nothing for interaction. It should just be an html site but you can strip most of the interaction stuff out of wordpress if you want and it is a good CMS. When the seconds hack came there I knew it had something to so with GoDaddy and not the software. I have 100 other sites on other hosts, and through the years many, many hosts. Never had this kind of problem, never hacked, until one under godaddy. If you use them BEWARE and watch your site closely. They are really big and that is the reason they are a big target.
 

Mr. Deleted

DNForum.com
Joined
Jul 24, 2004
Messages
4,054
Reaction score
477
Feedback: 58 / 0 / 0
I have also been hacked on Hostgator and they are big, but also I am not sure what the deal was, but some host I had with Phpbb forums and they kept getting hacked all the time. That software was just not secure at all. And then I tried for 2 weeks to move my sites from HostGator to another host, and they noticed ONE adult domain and in an hour or so I was offline, permanently suspended. I still have the files so I can move my sites again, but I wanted off Hostgator, so now I am not sure what to do. Any cheap good plans out there?
 

onlinetv

Level 4
Joined
Sep 22, 2007
Messages
183
Reaction score
8
Feedback: 1 / 0 / 0
I have also been hacked on Hostgator and they are big, but also I am not sure what the deal was, but some host I had with Phpbb forums and they kept getting hacked all the time. That software was just not secure at all. And then I tried for 2 weeks to move my sites from HostGator to another host, and they noticed ONE adult domain and in an hour or so I was offline, permanently suspended. I still have the files so I can move my sites again, but I wanted off Hostgator, so now I am not sure what to do. Any cheap good plans out there?
I have had great experience with Hostgator, they are big and cheapest of them. The hack? Oh yeah that phpbb is a pistol! I was hacked on that several times before I gave it up. I dont know why it is such a big target but everytime I used it, it got hacked.
I had a problem only two times with Hostgator. Once because I had a conspiracy site and some idiot complained. They told me to get that site off the account and the account would not be suspended. I had been with them about 8 years at that time so they were kind to me. I moved it to free hosting for freedom of speech sites.
Also left Hostgator when they would not give out the free SSL, about 2 years ago, and went to Dreamhost because Hostgator only offered paid options. After a year and a half they realized they have to offer the free ssl so I returned. Dreamhost is okay if you know UNIX or its' derivatives. The sites respond slower and they bug you constantly to upgrade to your own server, but they are okay.
I would talk to Hostgator and work it out (I had a site that was used for "escorts" and they did not seem to bother but maybe never noted it. They really have the best for your buck. and Find something else instead of phpbb! It seems it is a hacker magnet for some reason.
 
Top Bottom