Jump to content

ztrauq

Members
  • Posts

    72
  • Joined

  • Last visited

Everything posted by ztrauq

  1. You may find it sufficient to back up your data directories to an archive and post them to your site as a remote backup (although given that hosting accounts cean never be 100% hacker-proof, I would encrypt the archive before posting to ensure that even if your data is copied, only you can open it). Additionally, you can save all your downloaded application installers to a CD, and use it for quick reinstall if you ever have to reformat. This way, your most important info is backed up remotely without taking up too much space on your account.
  2. If you're on a Mac, I know you can get some programs that can apply DSP effects to the signal as you import it (there might be something equivalent for windows as well). With that, you can de-noise, apply EQ, and even compression if you like, as you're importing the audio.
  3. URL: idlecircuits.com Name: IdleCircuits.com Description: Writing, music, photos, scripting, and more. Nature: Personal, weblog+other sites Linkback: Link to TCH posted on introductory page.
  4. Taco HTML Edit - it's tasty, and works in OSX! For scripting, I use that, or occasionally Rixstep's Rixedit for basic editing.
  5. The issue is, a lot of the zombie boxes are completely unknown to the users. I traced one such comment spam thread back, and found proxies everywhere, from ecommerce sites in the EU, to reserach universities, to residential cable internet hookups. I think the best thing that can be done is encourage as many people as possible to secure their machines - or, depending on how extreme things get, have ISPs block uploads on certain connections when they detect that the computer is sending a huge amount of ptraffic on unusual ports with no reason to do so. This would certainly prevent a lot of worms, which themselves can make computers vulnerable to subsequent zombification. There's no perfect solution yet, but if you're determined enough, you can use a site like centralops.net (domain dossier) to find out info on the sites, and warn the users or ISPs that their computers may be infected, and doing quite a number of things that their owners don't want them to do...
  6. Allowing an .htaccess file to have 777 permissions would allow anyone to edit it - meaning that they could circumvent the security it provides by editing the file to provide their own username/password combo. It may be that the program is writing to the .htaccess file and requires that access, though... there are some various workarounds with shell access, but otherwise, I'm not sure what to tell you. Personally, I'd be wary of a program using this kind of security as its only layer - if PHPNuke also has another layer of passwords to allow access to it, such as an SQL-based password list, you might still be okay. If you can, I'd try experimenting with some slightly lesser permissions (755? 775?) and see whether it complains, and only set it to 777 as a last resort.
  7. This sounds like a couple of variants of adware I read about a while back... if they're yellow or green underlined links on various words that wouldn;t normally have links on them, it's probably one of those variants. I'd heard that there were occasional difficulties removing them, but most of the antispyware programs now have full signatures and removal for them, so far as I know.
  8. Hmm... while I've had many discussions on the TCH forums about secure file transfer (one of which I belive resulted in the .zip via secure CPanel suggestion), I've been using TCH for a number of years now, without any security problems that I've come across so far. Ironically, I work on a site that's hosted through a different provider that does allow for secure SSH/SFTP transfers, and it was recently hacked due to a message board vulnerability - strangely enough, I had similar boards on my account here, and none of them got hit. While I still think SFTP is the best way to go, I've been using CPanel and FTP here for quite some time, and haven't had any major security issues so far. I would say that there is always some risk to FTP - but I'm not sure how severe the risk is unless you're being directly targeted. I would worry more about keyloggers or spyware on your computer, which SFTP does not protect against. And, for the record, I've been able to use the CPanel workaround with good success so far, without it causing too much inconvenience - and I use FTP for really large bulk uploads, and only as much as I absolutely have to.
  9. If you're on a Mac, check out RBroswerLite - it's fast, versatile, has all of the major features, and best of all, it's free! On the PC side, I usually use FileZilla... although to be honest, I mostly use my PC for games...
  10. Good points all around, thanks for the info. Sounds like it's not really necessary to have anyway, with the other installers already in place.
  11. I've seen this program mentioned on occasion in relation to CPanel - apparently, it's some sort of automated script installer for a bunch of scripts. Does anyone have any more information about it, or know if it's any different from the script installs already present on TCH?
  12. Is there any way to set up a subdomain or FTP account that has a limit on how much disks space it has available to it? I.E. is there a way to limit a particular subdomain to a certain percentage or amount of the total available disk space?
  13. I guess I'll have to bug them, then... I just keep thinking that someone's got to be able to figure out a way to do something like FTP securely that doesn't require a shell-based login.
  14. I just wanted to quickly comment on this as well. I would certainly like to have a way of securely uploading batches of multiple files to my account. Sending my full account password in the clear every single time I upload a file makes me just a bit worried that sooner or later, someone is going to compromise it. As an interim step, I now have each subdomain of my site use a different FTP account with a different passsword, so that if one one password is compromised the attacked doesn't gain control over my entire site - and, when I only have a few files, I usually log in through CPanel. I guess my question is, will TCH ever support some method for secure drag-and-drop uploading? Or are the current solutions as good as it's going to get?
  15. To preface this, I'm a university student, and I'm currently working on a senior research project through my department. As part of this project, I'm running a photography contest, and the contest site is hosted on my TCH webspace. So, I thought I'd post it here in case anyone wanted to give it a try... To enter the contest, all you need to do is submit an original photograph of yours that you think is ironic (there are more specifics on how to enter on the site). Anyone can enter this contest, it's completely free to enter online. Cash prizes will be awarded to the winners. The site is located at ironyphoto.idlecircuits.com. Note: this project is entirely for the advancement of academic research, and does not benefit anyone commerically.
  16. Sounds good... It's not a big deal for me at this point, but it's good to hear that it's being phased in. Rock Sign
  17. I'm not sure if this is the right forum, but I couldn't find one that looked more appropriate... Back when I originally bought the Silver web hosting package, it was for 500MB space, and 10GB monthy bandwidth. Today, I was looking at the main page of the site, and I noticed that the Silver plan now lists 850MB space and 20GB monthly bandwidth. My question is, will the accounts that signed up for the original package be upgraded to the new space/bandwidth amounts, or are the new amounts only available if you sign up a new hosting account?
  18. Knoppix-Based Live CD List This is a (mostly) comprehensive list of all available distributiions of live-CD Linux operating systems, which can be sorted by name, size, and primary application set. If you've never heard of this before, a live CD is a CD that boots a fully-functional operating system, loading everything from the CD and RAM without touching your hard drive at all. These CDs let you try a variety of different types of Linux operating systems without having to do any lengthy installs or reconfigurations that could mess up your current installation. Using compression, over 2 GB of software can be loaded and run from a single CD, and many of these CDs have a full suite of programs covering a wide variety of uses (games, multimedia, internet, office, utility, etc.). Many of them can also be used as emergency disks to recover from and troubleshoot computer errors. The ones that I use the most are the original Knoppix, Morphix, and MandrakeMove.
  19. A while back, I listed a page with a number of free PC security programs. That page is now updated with some new recommendations and programs. In addition, I now have a new page up with (mostly) freeware applications for securing Macintosh computers. I will hopefully be updating these lists as I come across new security programs and test them.
  20. Hmmm, interesting... I had some similar experiences where it would make GTA3 grind to a halt when it was doing a scheduled scan, but other than that it didn't seem to slow down my system noticeably.
  21. Butler This is an incredibly versatile program that lets you do a lot of things in OSX - it lets you launch apps by keyword and hot key combinations, launch bookmarks and search the web instantly, navigate without using Finder windows, and much more, including providing informative pop-ups and remote control for iTunes even when it's in the background. It does the functions of a lot of other apps all in one, is very customizable, and it's free! Anyway, the website has a lot more information, but I've been using this program for a while and it adds in a lot of important features that OSX should have had in the first place, consolidated into a single, low-profile interface. This program is kind of like a microwave oven - it seems irrelevant at first, but after using it a while, you begin to wonder how you ever got along without it.
  22. My Picks: Windows: FileZilla Mac: RBrowser Lite (ftp), Fugu (scp, sftp) Linux: AxyFTP
  23. Most of the major A/V vendors have online scanners (trend, mcafee, panda, etc.), and PestPatrol also runs PestScan, an online antispyware scanner. Trojanscan.com, run by GFi, also does a free online trojan scan, although it takes a while for systems with a lot of files.
  24. I also use Spybot S&D, which, among other things, seems to go significantly faster than AdAware, although I like the resident scanner in AdAware plus that can scan for executables as they run. If you like the immunity function, then you might also want to check out a program called SpywareBlaster. It goes above and beyond the Spybot immunization, and in fact it's reccomended under the immunize function in the program. It will basically block most malware from being downloaded in Explorer. The same company also makes a resident scanner called SpywareGuard, which works like an antivirus on-access scanner and can block spyware like the AdAware Plus guard.
  25. When I've been logging into CPanel lately, instead of listing my Ip as the last login address like it used to, it not is listing the last login as being from 127.0.0.1. Is this just normal for some upgrades to CPanel, or is someone actually logging into my CPanel from within the TCH server itself? If the latter is the case, there would be some cause for concern, but it seems like something with CPanel... any info would be helpful. Also, the shared SSL cert apparently expired yesterday...
×
×
  • Create New...