attn: Reality Check Network
Collapse
X
-
-
Oops was too fast, saw it loading and thought they were up.
My bad.
Soo which paysite programs are affected? I would like to put their links on backup till all is fixed for obvious reasons.
WE ARE BUYING PAY SITES! CONTACT ME
ClubSweethearts | ManUpFilms | SinfulXXX | HOT * AdultPrime * HOT
Paying webmasters since 1996! Contact: r.riepen @ sansylgroup.com | telegram: roaldr
Comment
-
gl getting it sorted. im on a small server there but luckily dont have any big income producing sites anymore. RCN have been good over the years though, i hope they get this shit fixed.Check out my site: Solo Girls HQComment
-
your an idiot.
I'm seeing a lot of these sites/domains going nowhere, you should set something up and redirect your domains. Seems crazy to just leave your sites/domains dead for this amount of time.
Just wanted to add, as mentioned, do you think its a good idea to host a legit site on a server hosting illegal tubes, seems risky these days considering.Need WebHosting ? Email me for some great deals [email protected]Comment
-
-
-=- Register with our ref link and we help you with the setup! -=-
AdSpyglass.com - Double your profit from brokersComment
-
-
One logical explanation is the following:
Somebody got ahold of the root ssh key, likely an ex employee or current employee.
They logged into all the machines, changed the root pass/keys or replaced the ssh server with a custom one and then systematically disabled apache/lighttpd/nginx/mysql/pgsql etc (you'll notice that the sites running apache show forbidden but the ones that were running lighttpd just time out), then they gave rcn an ultimatum, effectively holding them hostage for a calculated sum of money (somebody who knows what is at stake, again, likely an employee/ex-employee). They probably also had the insight to make sure backups were affected as this really don't seem like a heat-of-the-moment thing. This is premeditated. The servers are still online, they are still 'running' the dns is still working... nothing was 'corrupted' or trashed, RCN just doesn't have access any more, holding them in a tight position as the servers are spread out in multiple locations and they don't have anyone 'infront' of them to use the console or do mass operating system re-installs+backup recoveries.
This is the only situation that really makes sense, there is NO gain to be made from hacking RCN and deleting everything. There is always motive involved, almost always monetary. As such, I assume somebody is doing this for financial gain and they are likely holding it hostage until they get the money, which if it is a wire, would be quite a few days. :\ I know of a registrar that was in a very similar situation recently. This registrar was being ddosed by a disgruntled ex-customer who had their domains deleted or blocked and they basically kept ddossing the domain servers until the registrar finally gave in.
I really don't want this to turn into an epass drama thread/situation and incite pandemonium or mass exodus, but this is really the most probable situation as it stands now.
Last edited by tg989; 10-17-2010, 01:06 AM.there are 10 types of people in the world, those who understand binary, and those who don't.Comment
-
-
A DDOS is clearly not what's happening here and is a TOTALLY different situation.One logical explanation is the following:
Somebody got ahold of the root ssh key, likely an ex employee or current employee.
They logged into all the machines, changed the root pass/keys or replaced the ssh server with a custom one and then systematically disabled apache/lighttpd/nginx/mysql/pgsql etc (you'll notice that the sites running apache show forbidden but the ones that were running lighttpd just time out), then they gave rcn an ultimatum, effectively holding them hostage for a calculated sum of money (somebody who knows what is at stake, again, likely an employee/ex-employee). They probably also had the insight to make sure backups were affected as this really don't seem like a heat-of-the-moment thing. This is premeditated. The servers are still online, they are still 'running' the dns is still working... nothing was 'corrupted' or trashed, RCN just doesn't have access any more, holding them in a tight position as the servers are spread out in multiple locations and they don't have anyone 'infront' of them to use the console or do mass operating system re-installs+backup recoveries.
This is the only situation that really makes sense, there is NO gain to be made from hacking RCN and deleting everything. There is always motive involved, almost always monetary. As such, I assume somebody is doing this for financial gain and they are likely holding it hostage until they get the money, which if it is a wire, would be quite a few days. :\ I know of a registrar that was in a very similar situation recently. This registrar was being ddosed by a disgruntled ex-customer who had their domains deleted or blocked and they basically kept ddossing the domain servers until the registrar finally gave in.
I really don't want this to turn into an epass drama thread/situation and incite pandemonium or mass exodus, but this is really the most probable situation as it stands now.

No one is holding anything hostage. A common phrase in the networking world is there's no security without physical security. In other words, if you can access a box, you can't lock someone out of it. A company hosting as many large sites as RCN has physical access to the machine, either personally, or through their data center. You can reset the root password of a box in 5 minutes if you can actually get to it. So unless you're implying that their data centers are literally being held hostage, IE: with guns, then your just fear mongering.
Also, anger and revenge are plenty of motive. In fact, their some of the best motives and pretty damn common. It's definitely possible (even likely) that the hacker is a current or ex employee, though.Comment
-
VPS 1 - 1.5 GB RAM, 10 GB SSD - 11.88 euro/year
VPS 2 - 4 GB RAM, 40 GB SSD - 60 euro/year
Alexhost.com - your access to the best hosting services VPS.Comment
-
If they could just boot into a shell and reset the root password for all the boxes in only 5 minutes then we'd be out of this already, wouldn't we?A DDOS is clearly not what's happening here and is a TOTALLY different situation.
No one is holding anything hostage. A common phrase in the networking world is there's no security without physical security. In other words, if you can access a box, you can't lock someone out of it. A company hosting as many large sites as RCN has physical access to the machine, either personally, or through their data center. You can reset the root password of a box in 5 minutes if you can actually get to it. So unless you're implying that their data centers are literally being held hostage, IE: with guns, then your just fear mongering.
Also, anger and revenge are plenty of motive. In fact, their some of the best motives and pretty damn common. It's definitely possible (even likely) that the hacker is a current or ex employee, though.
I would be very surprised to see if this wasn't about money, somewhere along the line of motives.
Also, just to clarify, I wasn't implying that this was due to a ddos, just that the same effect would be achieved, a controllable lapse of service that somebody could use as leverage. Anyway, sure would be good to get a proper update with some details to put some worries to rest.Last edited by tg989; 10-17-2010, 04:54 AM.there are 10 types of people in the world, those who understand binary, and those who don't.Comment
-
Hmmm... Well, traffic on my biggest tube (legal, of course) increased by 7k overnight. Plus I'm making some mad sales during the last 1 1/2 days. And I hear the same from other webmasters and program owners.
Might just be a coincidence, but I definitely see some motives here.
Comment
-
I wonder when someone will claim responsibility.
These sites have been down for a while, but seriously, you'd expect RCN to be able to put a short explanation on their website which is now just 403 Forbidden.
I wonder if some security guys will be looking for a new job Monday ?Comment
-
-
Still nothing other than canned responses from them this morning:
"We are doing our best to restore as fast a possible"
"We are creating processes to streamline reinstalls/backup restores"
Contact me: \\// E: webmaster /at/ unprofessional.comComment
-
yep traffic to my legal tubes went up, sales are the same.Comment
-

However, I still feel for the legit people hosting with them, such as vidz.com or RevengeBucks. Good luck getting your sites up again asap - I still remember how I felt when I had a day downtime about a year ago.Comment
-
new update:
We've been working on finalizing the restore process and automating it with scripts so that we can get the servers online as rapidly as possible. We are creating work queues and assigning servers to them therefore we will be able to provide a more concrete ETA for restores shortly.
We are also in the process of finalizing agreements that will allow us to increase manpower significantly as well as provide a stable infrastructure when the servers are restored.
In terms of the damage to the servers it was corruption of the MBR and initial sectors on the hard drive. For customers with large attached storage devices your content should be unaffected as it was not part of the primary RAID configuration.
As for the intrusion it was the result of an ex-employee who was with us for three years as a result he had intimate knowledge of our systems which is why the effects are so large.
We have made significant progress on the backend and we feel that we are reaching a point where the recovery process can begin ramping up full force. We will be sending another update soon, and thanks again to everyone for the outpouring of support - we're working as hard and smart as we can to get everyone back online.Comment
-
Comment
-
Comment
-
good news
hopefully the tubes like xnxx etc dont have any backups , look at your stats yesterday and today
fucking unbelievable . i saw the same numbers about a year ago . thats perfect , the guy who made it is a REAL MAN.
Comment
-
I don't see what's all the fuss is about. The few tubes that went down don't even hold the top google positions.
Why don't you bitch about pornhub.com, redtube.com, youporn.com, tube8.com? These are the biggest and hold top 10 google spots.Comment
-
Hopefully will be shut down soon tooComment
-
Maybe it's time to start looking for a rogue ex employee at their hosting?
WE ARE BUYING PAY SITES! CONTACT ME
ClubSweethearts | ManUpFilms | SinfulXXX | HOT * AdultPrime * HOT
Paying webmasters since 1996! Contact: r.riepen @ sansylgroup.com | telegram: roaldr
Comment
-
If xnxx or xvideos went down surfers know there are 10 other tubes to visit. I wouldn't look to deep into this.Comment
-
Most people I know are unaware of tubes, until I show them whats available for free. And xvideos was the #55 site in the world, and accounts for 1.5% of all internet traffic. I'm not sure what percentage of all internet traffic is porn related, but if we imagine it's 20% then xvideos would account for 7.5% or all porn traffic. That in itself is a sizeable amount of surfers who are forced to go back to the search engines looking for porn, if they don't know of any other tubes - which is bound to impact sales (especially if you rate highly for some good keywords)Last edited by slowloris; 10-17-2010, 09:55 AM.Comment
-
Popular gay blog with a 40 DA, quality US-based traffic: GayBodyBlog Tabs, links, posts, all available. Get free traffic: DudeDump and FemaleUpdateComment
-
-
Comment
-
Interesting,apparently 4chan competitor is hosting as well there.Comment
-
Originally posted by rayadp05I rebooted, deleted temp files, history, cookies and everything...still cannot view the news clip. All I see is that fucking gay ass music video from "Rick Roll". Anyone else have a different link to the news clip?Comment



Comment