Wetlook World ForumCurrent time: Sat 20/04/24 06:42:08 GMT |
Message # 2572.1 Subject: Re: Attention other WAM webmasters Date: Tue 04/03/03 17:16:22 GMT Name: french wetlook man Email: daddyfrancois@wanadoo.fr |
Report Abuse or Problem to Nigel at Minxmovies
|
hi, my wetlook website is sleeping for now, but i am very interested by your apache error log because i am helping people to make run small e-comerce websites in non wetlook domain and they could have attcks too.
The special way to attack adult sites is that "they" think that the customers can be shamy and won't complain after an attack.
So, thanks for your job and thanks for taking care with us like that.
As you reach a very good security level, you could offer to sell back memberships and take a little fee for security.
again thanks, regards, françois |
In reply to Message (2572) Attention other WAM webmasters
By Graham (UK) - graham@styxwetworld.com Tue 04/03/03 06:15:01 GMT Website: www.styxwetworld.com 1) During the past few weeks, Styx has seen several unsuccessful attacks to try and break into our members area. We have also seen two attacks (one today) where a robot script has attempted around 10,000 combinations of folder and file name in an attempt to locate security files for all the major security and card systems - where we may be holding members passwords. Note that they cannot get credit card info as we don't hold that. The attacks have been unsuccessful.
If you (as a WAM webmaster) would like a copy of our Apache error log, please let me know. I'm happy to email it to you so that you can check if you would have been vulnerable to such an attack on your server. Then you can take steps to avoid being broken into.
2) Like another WAM site (allwam.net) we have had an instance of someone signing up for membership and using their bank account for payment. As such verification takes a few days (unlike instant credit card), he got access to the members area for a few days before we discovered he'd used incorrect bank info and ripped us off. Then he tried to do it again! We have now stopped taking bank account signups via CCBILL and offer PayPal instead (where the account has already been verified).
I propose setting up a page that other WAM webmasters can contribute to. On this page will be the names and email addresses of people who have tried to beat the system and should be avoided or blocked. If any of the WAM webmasters would care to contribute to this, we can defeat the thieves together and I'd be happy to hear from you.
Graham
|
Report Abuse or Problem to Nigel at Minxmovies
If you enjoy this forum, then please make a small donation to help with running costs:
(you can change amount)
|
[ This page took 0.027 seconds to generate ]