#1
|
||||
|
||||
CCBill Security
I recently joined one of my own sites to test something out. I joined via CCBill, got my email confirmation as a customer, plus my sale confirmation to the webmaster. That's all.
Less than 12 hours later Password Sentry blocked me for abuse of my user name. We set the block, right or wrong, at 4 IP addresses. I checked the logs and my user name had been used from 4 different countries in no time at all. What the fuck? I deleted the mails as soon as I received them. I use Macs not PCs so should be pretty secure. So is CCBill that secure? Has this happened to anyone else or do you have any thoughts on how it happened? |
#2
|
||||
|
||||
Was it an automatically generated username/password?
__________________
Feet4Cash Webmaster Program - Join the first 100% foot fetish affiliate network. Exclusive content shoot by foot fetishists. Earn 50% on all sales and rebills plus 5% Webmaster ref |
#3
|
|||
|
|||
Interesting?
__________________
See sig... |
#4
|
|||
|
|||
i dont think it cames from ccbill ....
i think there was an bruteforce attack with accessdiver or another programm using some wordlists with known users and passes |
#5
|
||||
|
||||
Could be. It wasn't and auto generated user/pass but nor was it my "usual". it's not the first time it's happened neither!
Still not absolutely 100% sure about CCBill's security! |
#6
|
|||
|
|||
Who do you host with?
__________________
See sig... |
#7
|
|||
|
|||
so has this settled down or is it an ongoing problem, Geoff?
|
#8
|
||||
|
||||
It's happened a couple of times, and just not with me but for ordinary members. We also have "friends" who we have set up manual memberships for and it's happened with those too. They are not regular site "joiners" and we have manually made up their user/pass. All very strange.
Our hosting is with http://adultfriendlyhosting.com. Been with them for nearly nine years now and they have always been 100% top notch! |
Thread Tools | |
Display Modes | |
|
|