Tuesday, December 20, 2011

20th December 2011 - Another Update

Dear InterN0T'ers and guests,

As you may know, we've had trouble transfering our domain name from 1and1 to another registrar, and we still do, which explains the 301 (permanent redirect) from intern0t.net to intern0t.org as that is registered with another registrar.

On December the 14th, the domain should've expired.

On December the 15th, there is still no answer from 1and1's department that should help transfer domains, but somehow, they don't have any SLA as I've waited over a week, perhaps two or more so far. One thing that did happen though, was that the domain was updated to last yet another year, meaning that intern0t.net is at least not completely lost, yet.

Currently I'm on vacation, meaning I am barely working on the website at the moment. However I will continue the work, next week of course. Before I went on vacation, I ensured that it was okay to host "hacking content" at our new provider, so I won't have to deal with that when I start working.

I also managed to get most of my e-mails back, before removing them completely from 1and1's servers, as they've apparently not deleted my data yet, which makes me wonder, what are they doing with it, and for what purpose? (It seems like the account is only suspended, not permanently deleted.

One thing that may interest, is the responses at The Ethical Hacker Network, which you can see at the link below: http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,8227.msg45553/topicseen,1/

What interests me the most, is that the security team recently, said the following:
As long as a customer site does not violate our terms and conditions regarding adult content, the abuse department does not care what the content of the site is.
Even if it is a hacker forum, it's not going to matter to us, as long as you are not hacking with our equipment. You can say what you want, publish what you want, and do what you will with your own computer, but you may not use any of our equipment for hacking. If we discover you doing this, it can lead to the locking and/or termination of your account.

And then, one week later, 1and1 claims the website above, got attacked and therefore it had to be disabled? My condolences to Group51.org, who may have suffered the same fate as InterN0T. I hope not of course.

One funny fact, is that even SANS has dealt with 1and1 in the past: http://isc.sans.edu/diary.html?storyid=11338

In short: They hosted a malware sample (a PE file) for a reverse engineering quiz, and after they initially said their servers had been "hacked", because this file was there, SANS responded with that it was for a reverse engineering quiz, and then they got an "template reply" back saying everything is fine. (A "template reply" at helpdesks is a standardized reply they use to save time but is often not related to the case at all. Furthermore, if the template is not edited in any way, it actually lowers the customer experience, well, enough about that.)

Some time later, they published the reply from 1and1, and suddenly they received an e-mail, stating they would have to remove the executable Windows file now, or their servers would be disabled and locked down instantly. (They had 12 hours to remove this file.)

What kind of hosting is 1and1, or has it become? I've heard that hosting providers like XLhost, is much more tolerant with hacking content, as long as the actual servers you use, are not used for hacking.

Merry X-mas to all of you!

Best regards,

No comments:

Post a Comment