dselvey
30-11-2013, 15:49
Its vKimsufi Server running Debian 6.
Anti-Hack Protection!
NeddySeagoon
30-11-2013, 14:55
dselvey,
Eventually, you will be able to get control of your box in rescure mode and grab an image of the VM for analyisis.
Don't boot the image anywhere it can get on the internet. Its just a forensics exercise.
What OS were you running and what virtualisation did you use.
Eventually, you will be able to get control of your box in rescure mode and grab an image of the VM for analyisis.
Don't boot the image anywhere it can get on the internet. Its just a forensics exercise.
What OS were you running and what virtualisation did you use.
dselvey
30-11-2013, 12:40
Originally Posted by ctype_alnum
dselvey
30-11-2013, 12:36
Originally Posted by NeddySeagoon
I think its lack of communication thats really bugging me.
ctype_alnum
30-11-2013, 12:23
Good advice and also make sure you have learned something from this.
NeddySeagoon
30-11-2013, 11:15
dselvey,
If you have really been hacked, you need to wipe the box and reinstall from trusted backups. You cannot safely salvage anything since you cannot tell were any backdoor(s) have been installed.
Its not harsh at all. The alternative is about the same for you and much worse for all of the rest of OVH,s customers. That is, the rest ot the internet blacklists OVH.
If you have really been hacked, you need to wipe the box and reinstall from trusted backups. You cannot safely salvage anything since you cannot tell were any backdoor(s) have been installed.
Its not harsh at all. The alternative is about the same for you and much worse for all of the rest of OVH,s customers. That is, the rest ot the internet blacklists OVH.
dselvey
29-11-2013, 23:19
Hi,
I'm really stuck at the moment my VPS has been offline for days and all my websites are down due to the anti-hack protection. I got the message with some logs in it, i replied to it asking what the next steps should be to gain access to the server to patch the problem, but got no reply. I then contacted customer service that told me i need to send an explanation on how i'm going to sort out the server in the reply to the alert, which i did. (Nowhere did it tell me this.) This has however got me nowhere.
I think that just "pulling the plug" is a bit harsh, particularly if there is no way to resolve it quickly. Instead i have to sit back and do nothing while my years of hard work i've put in to building up the websites contained on the VPS slips away.
Its punishing the victim.
I'm really stuck at the moment my VPS has been offline for days and all my websites are down due to the anti-hack protection. I got the message with some logs in it, i replied to it asking what the next steps should be to gain access to the server to patch the problem, but got no reply. I then contacted customer service that told me i need to send an explanation on how i'm going to sort out the server in the reply to the alert, which i did. (Nowhere did it tell me this.) This has however got me nowhere.
I think that just "pulling the plug" is a bit harsh, particularly if there is no way to resolve it quickly. Instead i have to sit back and do nothing while my years of hard work i've put in to building up the websites contained on the VPS slips away.
Its punishing the victim.