Comments on: E-Gold Hacker Warning!! http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/ the latest HYIP community updates, from readers, to readers Thu, 09 Feb 2012 14:46:28 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Gray Eminence http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47584 Gray Eminence Mon, 26 Mar 2007 14:38:29 +0000 http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47584 You can add this Yahoo suer ID, he contacted me to offer this hacking solution juer_juerii You can add this Yahoo suer ID, he contacted me to offer this hacking solution

juer_juerii

]]> By: allinvain http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47315 allinvain Sun, 25 Mar 2007 05:28:04 +0000 http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47315 You are quite right Dan. Having a publicly accessible site with a backend that is database is just not safe. Perhaps the only safe bet would be to go private and setup a mechanism where people have to enter a certain ssl key or maybe a password to first of all have access to the site. Also it might help if the IP to the server is kept private and distributed to members via e-mail (preferably encrypted). All of this might seem a bit extreme, but I suppose a better safe than sorry policy is best. I might also add that admins should be a bit more proactive and ask their hosting provider about what version of mysql they're running (if they're willing to divulge that info), and then check mysql's website for security holes. However, I doubt that most admins would go to such lengths. I dunno, what do you people think would be the safest administrative practices? You are quite right Dan. Having a publicly accessible site with a backend that is database is just not safe. Perhaps the only safe bet would be to go private and setup a mechanism where people have to enter a certain ssl key or maybe a password to first of all have access to the site. Also it might help if the IP to the server is kept private and distributed to members via e-mail (preferably encrypted). All of this might seem a bit extreme, but I suppose a better safe than sorry policy is best. I might also add that admins should be a bit more proactive and ask their hosting provider about what version of mysql they’re running (if they’re willing to divulge that info), and then check mysql’s website for security holes. However, I doubt that most admins would go to such lengths. I dunno, what do you people think would be the safest administrative practices?

]]> By: Dan (OptimusLH) http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47193 Dan (OptimusLH) Sat, 24 Mar 2007 12:06:56 +0000 http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47193 Thanks for posting the warning here Sharon! This is one of the reasons why I don't like having a website with online database and back office, it's just not safe; but eventually I will have to upgrade to that. But first I need a good programmer. I had several programmers on my list. If I hear one of their websites or scripts was hacked, I take their name off my list. This way, I ran out of programmers to choose from. lol Be well, be safe! Dan Thanks for posting the warning here Sharon!

This is one of the reasons why I don’t like having a website with online database and back office, it’s just not safe; but eventually I will have to upgrade to that.

But first I need a good programmer. I had several programmers on my list. If I hear one of their websites or scripts was hacked, I take their name off my list. This way, I ran out of programmers to choose from. lol

Be well, be safe!
Dan

]]> By: JoseLeon http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47180 JoseLeon Sat, 24 Mar 2007 10:30:59 +0000 http://hyipblog.nobshyip.net/2007/03/24/e-gold-hacker-warning/#comment-47180 Nobody is safe in this online world, and for example there are new vulnerabilities in php now that need to be fixed. I don't believe in databases, there are a lot of bugs inside them, but sometimes they are necessary. Sometimes the problem is that your server (when you have your hosting) doesn't update these new bugs, and some crackers out there can gain access and destroy your forum, blog, and so on. If we talk from hyip,s then it's more serious with many people investing their money and their personal and account information. In this case I suppose that e-gold is updating their servers, but as you know when a new bug is found a cracker needs to break a server before it is updated. And of course there are some exploits or vulnerabilities that nobody knows. Some crackers find these bugs and share them in secret. One thing that I don't like from e-gold is using windows servers :( But perhaps these accounts were hacked because their owners didn't setup his e-gold security to "high" level. Nobody is safe in this online world, and for example there are new vulnerabilities in php now that need to be fixed. I don’t believe in databases, there are a lot of bugs inside them, but sometimes they are necessary.

Sometimes the problem is that your server (when you have your hosting) doesn’t update these new bugs, and some crackers out there can gain access and destroy your forum, blog, and so on. If we talk from hyip,s then it’s more serious with many people investing their money and their personal and account information.

In this case I suppose that e-gold is updating their servers, but as you know when a new bug is found a cracker needs to break a server before it is updated.

And of course there are some exploits or vulnerabilities that nobody knows. Some crackers find these bugs and share them in secret.

One thing that I don’t like from e-gold is using windows servers :(
But perhaps these accounts were hacked because their owners didn’t setup his e-gold security to “high” level.

]]>