Jose (72.29.75.47) : Shared

**Kayla** · July 30th, 2003, 4:58 PM

This thread is a timeline for all events occuring to the server Jose.

Each time this server has an issue it will be posted here.

If you cannot access your site, and there is no announcement here, the reason for it is not caused by this server or our network. You must email support@surpasshosting.com to find the root of your problem.

Thank you.

DNS FOR THIS SERVER:

ns725.dizinc.com
ns726.dizinc.com

**Kayla** · March 12th, 2005, 10:23 PM

Please read the information below carefully if you are located on server:

jose.dizinc.com

The old IP is 66.194.40.189

The new IP is 72.29.75.47

VERY IMPORTANT STEP:

If you do not get to complete this step, your site will not go down, but we would appreciate it if you make the change (as explained here in Extra Notes: IP Changes : ns100/ns101).

Please update your domain's DNS to the following:

ns725.dizinc.com
ns726.dizinc.com

Any domain you host on this server, whether it is parked or add-on, please change the DNS of that domain to the DNS above.

If you registered the domain with us you can make this change at
http://www.surpassdomains.com

Otherwise, you need to make this change at the site where you registered the
domain.

If you go to your site and you see a cPanel page that reads "No website configured at this address" that means your local computer
is trying to load your site on the old IP. Simply restart your PC, modem or router so it can release it from cache.

P.S. If you are using an SSL or have a static IP email e[at]surpasshosting.com with your domain name so we can assign you a new static IP and make sure your SSL is working correctly.

**Kayla** · July 17th, 2005, 4:28 AM

Tonight, previous versions of phpBB (using a database that read 2.0.14 or older) were disabled on this server. This was done so they cannot be used by outsiders to spam or launch any attacks. "Disabled" as in if you visit your /forum path, you will see a message instructing you to perform an upgrade to 2.0.16. We thank you for your cooperation and help during this clean up operation. The majority of the installations were installed more than a year ago and left behind. Due to all of the various versions and the amount of servers that need to be "patched" a mass system scan was basically our only solution. What will result from this clean up? Optimized server performance! Please help us in keeping all programs up to date.

On Jose:
63 vulnerable forum paths were disabled

Fantastico in your cPanel contains version 2.0.16.
Optionally you can visit,
http://www.phpbb.com/downloads.php

**Kayla** · July 20th, 2005, 1:26 PM

Vulnerable form mail scripts have been disabled on this server.
Additional info here:
http://www.surmunity.com/showthread.php?t=14609

**Kayla** · March 8th, 2006, 5:27 PM

If you use any of the following scripts:

FA-PHPHosting
PHPClique
PHPCalendar
PHPCurrently
PHPFanBase
PHPQuotes

Please disable them immediately or use the fix specified below. There are serious exploits going around the net right now and have been for the past few months. All of these scripts are made by http://codegrrl.com/ and have a ridiculously easy hole in them:
"
@include($logout_page);
"
This allows an attacker to include whatever code they wish into the php file and run the commands.
To avoid getting your site defaced, we recommend you either remove the protection.php file asap, or edit it and remove that line above.

July 30th, 2003, 4:58 PM	#1 (permalink)
Kayla バタフライ Joined in May 2003 Lives in Orlando 23,560 posts Gave thanks: 885 Thanked 706 times Blog Entries: 28	Jose (72.29.75.47) : Shared This thread is a timeline for all events occuring to the server Jose. Each time this server has an issue it will be posted here. If you cannot access your site, and there is no announcement here, the reason for it is not caused by this server or our network. You must email support@surpasshosting.com to find the root of your problem. Thank you. DNS FOR THIS SERVER: ns725.dizinc.com ns726.dizinc.com

July 17th, 2005, 4:28 AM	#3 (permalink)
Kayla バタフライ Joined in May 2003 Lives in Orlando 23,560 posts Gave thanks: 885 Thanked 706 times Blog Entries: 28	Tonight, previous versions of phpBB (using a database that read 2.0.14 or older) were disabled on this server. This was done so they cannot be used by outsiders to spam or launch any attacks. "Disabled" as in if you visit your /forum path, you will see a message instructing you to perform an upgrade to 2.0.16. We thank you for your cooperation and help during this clean up operation. The majority of the installations were installed more than a year ago and left behind. Due to all of the various versions and the amount of servers that need to be "patched" a mass system scan was basically our only solution. What will result from this clean up? Optimized server performance! Please help us in keeping all programs up to date. On Jose: 63 vulnerable forum paths were disabled Fantastico in your cPanel contains version 2.0.16. Optionally you can visit, http://www.phpbb.com/downloads.php __________________ theWHIR.com/kf My Surmunity Profile Page!

July 20th, 2005, 1:26 PM	#4 (permalink)
Kayla バタフライ Joined in May 2003 Lives in Orlando 23,560 posts Gave thanks: 885 Thanked 706 times Blog Entries: 28	Vulnerable form mail scripts have been disabled on this server. Additional info here: http://www.surmunity.com/showthread.php?t=14609 __________________ theWHIR.com/kf My Surmunity Profile Page!

March 8th, 2006, 5:27 PM	#5 (permalink)
Kayla バタフライ Joined in May 2003 Lives in Orlando 23,560 posts Gave thanks: 885 Thanked 706 times Blog Entries: 28	If you use any of the following scripts: FA-PHPHosting PHPClique PHPCalendar PHPCurrently PHPFanBase PHPQuotes Please disable them immediately or use the fix specified below. There are serious exploits going around the net right now and have been for the past few months. All of these scripts are made by http://codegrrl.com/ and have a ridiculously easy hole in them: " @include($logout_page); " This allows an attacker to include whatever code they wish into the php file and run the commands. To avoid getting your site defaced, we recommend you either remove the protection.php file asap, or edit it and remove that line above. __________________ theWHIR.com/kf My Surmunity Profile Page!

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Rate This Thread
Rate This Thread:

March 12th, 2005, 10:23 PM	#2 (permalink)
Kayla バタフライ Joined in May 2003 Lives in Orlando 23,560 posts Gave thanks: 885 Thanked 706 times Blog Entries: 28	Please read the information below carefully if you are located on server: jose.dizinc.com The old IP is 66.194.40.189 The new IP is 72.29.75.47 VERY IMPORTANT STEP: If you do not get to complete this step, your site will not go down, but we would appreciate it if you make the change (as explained here in Extra Notes: IP Changes : ns100/ns101). Please update your domain's DNS to the following: ns725.dizinc.com ns726.dizinc.com Any domain you host on this server, whether it is parked or add-on, please change the DNS of that domain to the DNS above. If you registered the domain with us you can make this change at http://www.surpassdomains.com Otherwise, you need to make this change at the site where you registered the domain. If you go to your site and you see a cPanel page that reads "No website configured at this address" that means your local computer is trying to load your site on the old IP. Simply restart your PC, modem or router so it can release it from cache. P.S. If you are using an SSL or have a static IP email e[at]surpasshosting.com with your domain name so we can assign you a new static IP and make sure your SSL is working correctly.

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)