GoFuckYourself.com - Adult Webmaster Forum - View Single Post

Repetitive Monkey · 11-20-2004, 05:20 PM

OXEOs virtuals are 100% insecure, and anyone can access YOUR account, your sourcecode, your passwords, and your MySQL databases.

The newest product on http://www.AdminShop.com, Server God, was able to browse root on OXEO like a dream and get any kind of account and server information one could want. As a demonstration, I got the user list and browsed the sources and MySQL databases of dozens of sites on their server, as you can see in the screenshots below.

This is doable on most servers out there according to my experience with Server God, but OXEO should know better and prevent unauthorized access of this basic level considering that they are supposed to host many and profitable sites.

PS: I let OXEO know I had drama on them 24 hours ago and they didn't show interest, so please don't accuse me of going directly to the board with no due process whatsoever behind me.

11-20-2004, 05:20 PM
Repetitive Monkey Confirmed User Join Date: Feb 2004 Posts: 3,505	I promised you OXEO drama (pics, ++) OXEOs virtuals are 100% insecure, and anyone can access YOUR account, your sourcecode, your passwords, and your MySQL databases. The newest product on http://www.AdminShop.com, Server God, was able to browse root on OXEO like a dream and get any kind of account and server information one could want. As a demonstration, I got the user list and browsed the sources and MySQL databases of dozens of sites on their server, as you can see in the screenshots below. This is doable on most servers out there according to my experience with Server God, but OXEO should know better and prevent unauthorized access of this basic level considering that they are supposed to host many and profitable sites. PS: I let OXEO know I had drama on them 24 hours ago and they didn't show interest, so please don't accuse me of going directly to the board with no due process whatsoever behind me.