Recent News about AltusHost

[dotvps]

WHMCS is patched... Unless their is a top secret exploit which nobody not even the good hackers know of then we must all be crazy

Already contacted Matt as im sure he would know if his own system had exploits in , he said no there hasn't been one since 1st Dec.

 

[Loonycgb2]

I thought so. Their is another serious exploit at the moment but it has nothing to do with whmcs..

 

[RobustVPS]

I thought so. Their is another serious exploit at the moment but it has nothing to do with whmcs..

Care to explain?

 

[Loonycgb2]

cPanel hasn't updated their easyapache meaning 5.3.10 is not available.

You can manually upgrade the php install from source, but owners who have not are affected and suhosin does not help. As were are talking about a hosting production not just small sites running cpanel.

So if your not hosting then feel free to contact your host and make sure they have updated if they are affected.

 

[dotvps]

Okay, So if your using CPanel for your main site then you should turn it off is this what your saying? I already had hacking on 1st December so

'Successful!
Virtual server has been shutdown.'


Let me know if this is the case or not asap!

 

[l0calh0st]

Do not forget that SolusVM isn't fully secure like all other software. Don't blame anything on WHMCS.
This also explains why a lot of VPS providers don't provide auto setup VPS anymore.

Note that this is just a personal opinion.

 

[Loonycgb2]

Okay, So if your using CPanel for your main site then you should turn it off is this what your saying? I already had hacking on 1st December so

'Successful!
Virtual server has been shutdown.'


Let me know if this is the case or not asap!

No your not at risked of being hacked, but more of a internal ddos.. If your useing php 5.3.9 either downgrade or upgrade.. Your only 2 choices

 

[Jesse]

Has anyone noticed they're using a unlegit version of WHMCS too? certainly points out that they used a older version.

any excuse to get your signature on another hosts fail thread.

He was right. Saw this on WHT, but never posted it here. They probably bought a license and updated everything now since it has been a couple days since I checked

 

[f0rtune]

 

[THE Bull]

@Jesse - When you checking license, provide a domain name, not subdomain.

@onthread - It's only some excuse for customers, probably. Although, aren't you people learned to do the at least monthly backup of your website? There aren't providers who will give you 100% secured services...

 

[Jesse]

@Jesse - When you checking license, provide a domain name, not subdomain.

http://www.whmcs.com/members/verifydomain.php

How to use this tool:
Enter only the domain name where WHMCS is installed
For example if there was an install @ http://support.whmcs.com/, enter just support.whmcs.com as the domain
The domain should not include the www. prefix


Wasn't licensed then, but is now.

 

[robert420]

Most likely at the time you check Jesse either there license was suspended or they didn't re-issue the license key after moving to a new subdomain or directory on there website.

License Checks out to be valid though

[slide]http://i.imgur.com/WB4R9.jpg[/slide]

 

[Jesse]

Maybe. Maybe they bought from somebody who had an active license and changed the info after. No way to know. Even if they answered, some wont believe the answer.

To be honest, it doesn't matter to me, nor does it effect me either way.