domenehotellet.no

[Bjørn Christiansen]

If you visited my homepage yesterday, you maybe noticed that it was down. No page was showing and the connection was reset. I apologize and explain why.

 

A few weeks ago, my homepage was hacked by somebody I don?t know. He changed my index-file and wrote his signature in haxxorlanguage. Congratulations! I feel very safe now and trust my host very much (NOT)!

 

How did I notice this? Well, I got this email form a couinter-hackergroup with some interesting information about my domain had been listed on a hackersite of somekind and they were willing to help me for some US$$.

I emailed my host about this incident and attached the mail from that CH group and told them my page had been hacked. They rejected my email and told me that the email I got from the CH group was just a fake and I hadn?t been hacked. I sent them a new asking them why my indexpage had been changed? They asked me to send them the file that had been changed and told me that they were going to look into the ?problem?.

The line went quiet. I didn?t hear from them in a while, so I sent them an email asking them what was going on and why their customers support was so bad. I didn?t get any replies until I sent them a second email this Monday asking them why the CHMOD on all my files and folders had been set to 755 and why my page was down.

They told me that they had taken a backup of all my files and given me a new webspace, login and password to play with. They did all this before consulting me. Service, ey? They had made no progress in finding out why and how my page had been hacked.

So, yesterday I was fixing the CHMOD on the files that needed to be re-chmoded and re-script some of my programs because the server I had been moved to, was to sensitive for my PHP-programs.

I sent them an new email asking why this was happening and got the reply that somebody had been into my files and changed something in all my PHP-programs. This I say was not in the contract when I signed up.

 

I have been working on some new PHP-programs / script that will make my homepage more dynamic and better. The new version isn?t to be released before January 2004, when I change my host to a more secure one and the service and maintenance on the server is made after the serverdrifter has told me he his going to change something.

 

I tell you people, you should stay away from nsn.no and domenehotellet.no. I had other problems with them earlier with my emailservice and hosting. And each time they first reply was rude and not very welcoming. My tolerance can be stretched very far, but this time they went over the edge. How can you trust a firm that is snooping around in _your_ files, changing things without even telling the costumer that some changes has been made and don?t believe in their costumers?

 

See you around!

 

---

Mvh

Bjørn

www.bj0rn.net