Gossamer Forum: General: Internet Technologies: MAD spamming of .htaccess!

Jun 20, 2002, 11:01 AM

Andy

Veteran / Moderator (18441 posts)

Jun 20, 2002, 11:01 AM

Post #1 of 12

Shortcut

MAD spamming of .htaccess!

Hi. My friend is having a major problem with their site. It appears that someone has decided to 'sell' or 'give out' their username/password combination to their website...These people are sending about 100Gb's worth of traffic a week to their site...wehich is costing them a fortune! Is there any way to find out who's username is being used?

Thanks

Andy (mod)
andy@ultranerds.co.uk

Jun 20, 2002, 11:05 AM

dan

Enthusiast (760 posts)

Jun 20, 2002, 11:05 AM

Post #2 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

How about checking their server access logs. I assume they have access to them.

Cheers - Dan Cool

----
Cheers,

Dan
Founder and CEO

LionsGate Creative
GoodPassRobot
Magelln

Jun 20, 2002, 11:05 AM

Wil

Veteran / Moderator (4108 posts)

Jun 20, 2002, 11:05 AM

Post #3 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

Look in your access_log.

- wil

Jun 20, 2002, 11:34 AM

Paul

Veteran (19537 posts)

Jun 20, 2002, 11:34 AM

Post #4 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

>>100Gb's worth of traffic a week<<

I think thats a slight exaggeration :)

1 GB = 1000MB

10 GB = 10,000MB

100 GB = 100,000 MB

1 request is say about 10k ....so 10 requests is 100k, 100 requests is 1MB, 1,000 requests is 10MB, 10,000 requests is 100MB, 100,000 requests is 1 GB

So by your calculation you are getting over 10 million requests a week?...I very much doubt it :)

If the site is so popular that they are getting 10 million hits, why do they need you to figure out solutions, do they not have a sysadmin or a slight knowledge of firewalls or their webserver?

Last edited by:

Paul: Jun 20, 2002, 11:38 AM

Jun 20, 2002, 11:42 AM

Andy

Veteran / Moderator (18441 posts)

Jun 20, 2002, 11:42 AM

Post #5 of 12

Shortcut

Re: [Paul] MAD spamming of .htaccess! In reply to

Paul..think what you like..they are an adult site...so 100Gb is NO exageration! Looking at their access log..it seems that someone exploited their .htacess file, and got a username/password combination that worked...they seem to be listed on about 50 illegal password sites :( Shouldn't be too hard to get them off it though...as I am going to delete the username that is causing them the hassle.

The owner of the site is also going to take up with the owner of the CC how they managed to get hold of the user/pass, as the bandwidth cost is ultimatly down to him, as he broke their TOS Frown

Andy (mod)
andy@ultranerds.co.uk

Jun 20, 2002, 11:55 AM

Wil

Veteran / Moderator (4108 posts)

Jun 20, 2002, 11:55 AM

Post #6 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

This is quite common for adult sites. What most of them do to guard against future attacks is to make check on the IP logging into the secure area. If they notice that 50 different IPs login within an x amount of time period - alarm bells start rininging before they can do any real damage to your bandwidth.

You should suggest a similar system for this guy in future.

Cheers

- wil

Jun 21, 2002, 1:43 AM

Andy

Veteran / Moderator (18441 posts)

Jun 21, 2002, 1:43 AM

Post #7 of 12

Shortcut

Re: [Wil] MAD spamming of .htaccess! In reply to

Yup..I'm writing one for them. BTW Paul..when you said it was 10 million hits...it more likely to be far less...as they had 20Mb Mpg's that people were downloading Wink

Andy (mod)
andy@ultranerds.co.uk

Jun 21, 2002, 2:01 AM

Paul

Veteran (19537 posts)

Jun 21, 2002, 2:01 AM

Post #8 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

Good to see you are doing work for porn sites ;)

Jun 21, 2002, 2:02 AM

Andy

Veteran / Moderator (18441 posts)

Jun 21, 2002, 2:02 AM

Post #9 of 12

Shortcut

Re: [Paul] MAD spamming of .htaccess! In reply to

Yeah...good money Wink

Andy (mod)
andy@ultranerds.co.uk

Jun 21, 2002, 2:16 AM

Wil

Veteran / Moderator (4108 posts)

Jun 21, 2002, 2:16 AM

Post #10 of 12

Shortcut

Re: [Paul] MAD spamming of .htaccess! In reply to

Better than the dodgy fetish sites you have in your client list. ;-)

- wil

Jun 21, 2002, 3:31 AM

Andy

Veteran / Moderator (18441 posts)

Jun 21, 2002, 3:31 AM

Post #11 of 12

Shortcut

Re: [Wil] MAD spamming of .htaccess! In reply to

Anything wrong with that? They are a good client...better than many that I know of/have had the mispleasure of working with Frown

Andy (mod)
andy@ultranerds.co.uk

Jul 25, 2002, 3:57 AM

QooQ

Veteran (1819 posts)

Jul 25, 2002, 3:57 AM

Post #12 of 12

Shortcut

Re: [Andy] MAD spamming of .htaccess! In reply to

doggy fetish sites.

Now that's just too much.

Laugh

Hmmm, to bring this back to topic. You could offer a search and destroy option to your clients by checking out all the warez sites that offer free passwords. A bit of a pain but ... who knows you might be able to pick up other clients too.

openoffice + gimp + sketch ... Smile