Author Topic: Hostek is putting their customers at risk  (Read 2669 times)

0 Members and 1 Guest are viewing this topic.

April 19, 2010, 04:55:36 pm
Read 2669 times

SysAdMini

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335
http://blog.sucuri.net/2010/04/hostek-is-putting-their-customers-at.html

Quote
If you are hosting your site at Hostek.com, you are probably at a higher risk of being hacked. Why? Because they do not do the proper separation of accounts internally, so anyone can access the pages of everyone else.

How do we know that? We were helping a friend with his site over there and when we checked their permissions, we found a big (BIG) security hole on Hostek. Every PHP script is executed with the permissions of the user "nobody" (used by Apache), and every site allows the user "nobody" to access its files.

It means that any user can access the files from everyone else. Even worse, you can add and even modify the files under some circumstances.
Ruining the bad guy's day

April 19, 2010, 07:42:19 pm
Reply #1

MysteryFCM

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 1693
  • Personal Text
    Phishing Phanatic
    • I.T. Mate
I've just spoken to Hostek and they informed me they're aware of the issue, and it only affects one of their servers.

Sadly, they've said it's got a "special configuration" and cannot be changed (i.e. cannot be secured), so whilst they will move the sites for customers that request such, they won't do anything to close the vulnerability.
Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net