[ubuntu-uk] Website Hacked.....

[Sean Miller]

412 sites on a shared server is pushing it a bit.

I have 4 servers that I administer.  The most difficult to deal with
is the one where customers install their own software, such as phpBB.
I have no control, and so fight a continuous battle against hackers
etc.

The easiest is the one that only runs software that I or my colleagues
have written.  Every one of the 60 or so sites has been either written
by myself or one of two others using software that we are relatively
sure is secure.  Because they're all bespoke there is no opportunity
for the hackers to install their own version locally and find the
vulnerabilities and then to come and hack us.  This is a reassurance,
and  a good argument against using "off the shelf" CMS or Forum
software.

This is clearly not an option for you, on your shared hosting with all
those other 400+ sites that you have no control over.

If you can I'd recommend you purchase a VPS or something - they start
at only about £15/month.   Then at least you're in control and aren't
at the mercy of other customers of your supplier in the way you are
with shared hosting.

I could show you CGI scripts that actually give access to the entire
server from a hacked site.   And that doesn't have to be one of YOUR
sites.

Be aware of this.

Sean