[Spedrick]

Philip Dansk is his name. He is the owner of paytoclick.biz and he is a scumbag. I don't know if you have ever seen my website SpedBux.com but don't bother looking for it now if you haven't. It's gone and it's because of Philip Dansk. He hacked it over and over again until I finally just gave up and took it down.

I know you probably don't give a damn but I just want everyone on his site to know what kind of a person he really is. I know it is Philip that kept hacking into my site because we have exchanged emails via paypal when I billed the email address he used and set up as admin on my site. The dummy left his real email address and he responded.

I set up spedbux because I work over 50 hours a week and live paycheck to paycheck. I wanted to make some extra money to give my wife and kids a better life. This past christmas was the worst one ever since gas prices and electricity has gone up so much in the Baltimore Maryland area. No gifts for my wife or kids and I couldn't even afford to buy them a christmas tree. I've never seen them so sad before.

Anyway, I sent Philip Dansk an email telling him why I set up the site and that he won, that I had no idea how to protect the site from hackers and if it got hacked into one more time I'd have to shut it down for good. I thought he might think of my wife and kids and leave the site alone but he didn't. This last time he not only hacked into my site, he deleted most of my 1000+ members from the database. I guess I was wrong about him. He is a real dick who cares about nobody but himself.

So I've given up on my bux site but I want to tell everyone on his site exactly the kind of person they are making money for. If you'd care to comment, you can email me at spedrick@breakthru.com

If anyone can hack his site and delete his entire database, that would make my year a great one. Or just tell me how I can do it.

[puravida]

Wow, spedrick. That's really sad to hear. Sorry you had those troubles.

I have to agree that hackers and wanna-be hackers are my number one headache in running my online businesses. I have managed to get it to only take up a few hours every couple of months, but I still hate having to deal with those kinds of people.

-Brandon
p.s. Best of luck to you and your family

[ciber8mx]

puravida, on Feb 20 2008, 06:32 PM, said:

Wow, spedrick. That's really sad to hear. Sorry you had those troubles.

I have to agree that hackers and wanna-be hackers are my number one headache in running my online businesses. I have managed to get it to only take up a few hours every couple of months, but I still hate having to deal with those kinds of people.

-Brandon
p.s. Best of luck to you and your family

Brandon,

How do you protect yourself from hackers? - I don't have any experience dealing with hackers although my sites probably are not worth hacking.

What I do now is just backing up files and database regularly, also make sure no one has write permission of directories and files. What else can I do? I am not hosting my sites myself.

Thanks for any advice in advance.

ETA: spedrick. sorry to hear the trouble, best wishes to you and your family.

Mei

[puravida]

ciber8mx, on Feb 21 2008, 07:35 PM, said:

How do you protect yourself from hackers? - I don't have any experience dealing with hackers although my sites probably are not worth hacking.

I operate about half a dozen dedicated servers, so basically I just try to keep up on all the securities and some mods such as mod_security (since I run Apache).

However, it's when those do not work that I have my headaches. Someone runs a DDoS attack to bring down a targeted site of one of my hosting customers or something like that. The only way to mitigate those kinds of attacks is by using a firewall with active DoS monitoring and intrusion detection enabled. Although, if you don't have a firewall (and sometimes they fail to work -as I've seen), you sometimes just have to block the offending IPs (or temporarily a whole block -as in the whole country of China) until it is over.

From my experience, most attacks are automated, so if you can just thwart the attack and wait it out, the "attacker" will usually move on. As for my sites, the only real attacks I've seen have been on this forum, GPH, and on my PTC site, smoothlinks. Sites in these niches are prone to attack. However, I've been very fortunate *crosses fingers* that no one has yet been able to hack in or bring down either of these sites.

Other than that, I'm not sure what else to say. Hacking techniques change daily because they have to, so a preemptive method of blocking hack attempts can only be effective to a certain extent.

Cheers,

Brandon

[ciber8mx]

Thanks very much Brandon for your response.

So it seems that (based on my understand on what you mentioned) protection are mainly done on the server level (correct me if I am wrong). Since I host my sites on my hosting company's server, I wonder what else I can do except what I have already done. I think I need to spend some time on Apache to have a better ideas. :) Thanks again!

[puravida]

ciber8mx, on Feb 21 2008, 11:09 PM, said:

So it seems that (based on my understand on what you mentioned) protection are mainly done on the server level (correct me if I am wrong). Since I host my sites on my hosting company's server, I wonder what else I can do except what I have already done. I think I need to spend some time on Apache to have a better ideas. :) Thanks again!

Yes, if you are hosting with someone else, the headache really lies on your hosting company. I don't think there is much you can do. When it comes to that, you are relying on the quality of service and response times of the hosting company you choose.

Cheers,

Brandon