If username / password is same it's being changed

[GatorBrent]

Many resellers are creating accounts with the same username as password.

Every single account that is created this way is "hacked" and either spams, crashes the box, or runs ilegal files.

We have created a script that will change the password to something random for any accounts created this way.

If one of your account passwords is changed please do not ask us what the new password is, we do not know. You will need to go into your WHM and click password modification to change it to something more secure.

We have been dealing with this problem at least dozen times a day and it has been getting every server blacklisted due to the spammers. The script is something that has been needed for a while.

[TeeJa]

I can see what Brent is talking about.
Since I went to a dedicated server, I get the log every morning to my server, and I don't have anywhere near the accounts one of the reseller servers has.

<------log------->
sshd:
Invalid Users:
Unknown Account: 735 Time(s)
Authentication Failures:
root (66.199.236.122 ): 80 Time(s)
unknown (66.199.236.122 ): 535 Time(s)
unknown (203.193.167.243 ): 20 Time(s)
unknown (218.153.147.92 ): 20 Time(s)
mail (66.199.236.122 ): 5 Time(s)
unknown (61.79.56.211 ): 140 Time(s)
root (218.153.147.92 ): 15 Time(s)
admin (218.153.147.92 ): 10 Time(s)
ftp (61.79.56.211 ): 5 Time(s)
sshd (66.199.236.122 ): 5 Time(s)
admin (66.199.236.122 ): 5 Time(s)
admin (61.79.56.211 ): 35 Time(s)
root (colo6.reliablehosting.com ): 15 Time(s)
mysql (61.79.56.211 ): 5 Time(s)
root (61.79.56.211 ): 5 Time(s)
apache (61.79.56.211 ): 5 Time(s)
mysql (66.199.236.122 ): 5 Time(s)
admin (colo6.reliablehosting.com ): 10 Time(s)
admin (203.193.167.243 ): 10 Time(s)
unknown (colo6.reliablehosting.com ): 20 Time(s)
root (203.193.167.243 ): 15 Time(s)

[Dwight]

Quote:

Originally Posted by TeeJa

I can see what Brent is talking about.
Since I went to a dedicated server, I get the log every morning to my server, and I don't have anywhere near the accounts one of the reseller servers has.

TeeJa, thanks for sharing stuff like this... One question I'd like to ask is, now that you've moved to the 'big leagues', do you find you are missing anything? Are there functions you have to do for your self that us well cared for shared hosters take for granted? I'm not even sure what things I'm asking about, but as someone with very little hardware experience, the idea of having total control gives me a bit of the uneasies...

Dwight

[TeeJa]

Quote:

Originally Posted by Dwight

TeeJa, thanks for sharing stuff like this... One question I'd like to ask is, now that you've moved to the 'big leagues', do you find you are missing anything? Are there functions you have to do for your self that us well cared for shared hosters take for granted? I'm not even sure what things I'm asking about, but as someone with very little hardware experience, the idea of having total control gives me a bit of the uneasies...

Dwight

Really, it has gone smooth. Server updates it's self, no down time, some minor issues the first week, but support was right on it, no major server loads.
Just watch what you click in the WHM, don't get experimental. Know what each function does and why.
No clients dropped Email, no complaints from them, matter of fact, not a whimper.
I knew there was a lot of junk email, but until you see the mail logs, and just the amount of traffic I have compared to a shared one, is amazing. I have all "Un addressed" emails go to the "black hole". Some days as many as 30,000 go bye bye..... Slow day today, only 10,000 so far... LOL
Have one client that sends out a news letter, the old server was throttled to 195 emails sent every hour.
He sent 1800 in 3 min., I monitored the load, and never went red or close to it, but it peaked in 30 sec., so no noticeable difference. Still keeping an eye on it, but not as much as the old one.
Yes, very pleased so far, and support has been great in helping make sure all was working in the beginning.

[Dwight]

Quote:

Originally Posted by TeeJa

Yes, very pleased so far, and support has been great in helping make sure all was working in the beginning.

Thanks, I was certain you'd have a positive response, but it always is good to ask... I'm sure I'll have other questions before I'm ready for that step...

Dwight