How Was My Server Hacked? Alan Ogden posted this on

With the advent of virtual computing or more commonly referred to these days as cloud hosting, it’s possible for more people to run ‘full’ servers as the costs have come down. Frequently these servers are Linux servers of one flavour or another depending on the experience of the user.

Virtual platforms deploy ‘servers’ as default (and sometimes outdated) systems. Whilst these systems are set up for ease of use they are not set up for security. Mainly this is because each situation that someone may want a server for is different. There is no magic bullet or blanket ruleset in terms of securing a server.

With Linux in mind there are common issues that contribute to the insecurity of a server.

  • Old or insecure daemons that have not been updated
  • Weak access passwords and methodology
  • Users

In terms of common hacks these days it’s really the last two points that have most relevance.

Read More

Plesk Server Hacked Alan Ogden posted this on

Plesk, a feature rich GUI control panel made by Parallels, is a common webserver control panel enabling easy access to server functionality.

This ease of use can come at a price. Ease of use means stability, and stability can sometimes mean out of date components, moreso if the control panel is not updated regularly.

If a server component is compromised, plesk can be difficult to troubleshoot if the customer is not familiar with command line interfaces / shell.