Page 1 of 4 1 23 Last »
Reply
Thread Tools
krisse's Avatar
krisse is offline krisse
2009-05-14 , 12:58
Posts: 1,540 | Thanked: 1,045 times | Joined on Feb 2007
#1
Apparently the flight sim site Avsim has had both its servers destroyed simultaneously by hackers:

http://news.bbc.co.uk/2/hi/technology/8049780.stm

One acted as the backup for the other, so apparently there's nothing left of the site at all (except whatever they can scrape from online caches).

I realise people are going to say "why didn't they have better backups", but it still shocks me that hackers would do a thing like this. What on earth did the hackers have to gain from this? How did they think this would make the world a better place for anyone?
 
Baloo's Avatar
Baloo is offline Baloo
2009-05-14 , 13:09
Posts: 276 | Thanked: 160 times | Joined on Jul 2007 @ Bath, UK
#2
Originally Posted by krisse View Post
I realise people are going to say "why didn't they have better backups", but it still shocks me that hackers would do a thing like this. What on earth did the hackers have to gain from this? How did they think this would make the world a better place for anyone?
Having two public facing servers as the only method of backup isn't a good idea. It is sad but there are many more crimes in this world that are a lot more sever and happen all the time.

No the hackers shouldn't of done it, yes, the site should of had better backup facilities, no, I don't have much sympathy.
__________________
LinuxUK.org - http://www.linuxuk.org
 
andrewfblack's Avatar
andrewfblack is offline andrewfblack
2009-05-14 , 13:21
Posts: 1,656 | Thanked: 1,196 times | Joined on Apr 2008 @ Alabama, USA
#3
Even for reasons other then hackers they should have offsite backup that to several locations. The company i work for backs out server up daily, and uploads the backup to 2 other computers also our tech guy uploads a third backup to a External drive that is only hooked up to a computer long enough to pull the back up then removed. I know this might be a little much for a simple website but atleast monthly I would back my sites up to another location.
__________________
Home Page - Preenv Wiki

**All Posts are made as a Community Member and not as a Super Moderator of this site.
 
timsamoff's Avatar
timsamoff is offline timsamoff
2009-05-14 , 13:23
Posts: 1,605 | Thanked: 1,601 times | Joined on Mar 2007 @ Southern California
#4
Seriously, to not have an offsite data center for something like that...? Wow.

Tim
__________________
http://samoff.com
 
Baloo's Avatar
Baloo is offline Baloo
2009-05-14 , 13:26
Posts: 276 | Thanked: 160 times | Joined on Jul 2007 @ Bath, UK
#5
Originally Posted by andrewfblack View Post
Even for reasons other then hackers they should have offsite backup that to several locations. The company i work for backs out server up daily, and uploads the backup to 2 other computers also our tech guy uploads a third backup to a External drive that is only hooked up to a computer long enough to pull the back up then removed. I know this might be a little much for a simple website but atleast monthly I would back my sites up to another location.
Two backups are arguably fine as long as one of them is off-line. With both backups being public facing and online it means that your skating on thin ice which is bound to break at some point.

I have a backup server (very low powered) that pulls data off of my other (low powered) server. The backup server is internal only, responds to no-one and has no internet connection. Works well for me.
__________________
LinuxUK.org - http://www.linuxuk.org
 
krisse's Avatar
krisse is offline krisse
2009-05-14 , 13:28
Posts: 1,540 | Thanked: 1,045 times | Joined on Feb 2007
#6
Originally Posted by Baloo View Post
but there are many more crimes in this world that are a lot more sever and happen all the time.
Would you say that if someone complains about a delayed Maemo hardware launch or an unresolved bug in Bugzilla?


No the hackers shouldn't of done it, yes, the site should of had better backup facilities, no, I don't have much sympathy.
You realise this isn't just the site maintainers that have lost stuff but all the people that contributed to the site for 13 years. Don't you have much sympathy for them?
 
Lord Raiden's Avatar
Lord Raiden is offline Lord Raiden
2009-05-14 , 13:28
Posts: 1,562 | Thanked: 349 times | Joined on Jun 2008
#7
Geez, that sucks. Even *I* have offsite backup. In fact, I'm so bloody paranoid about loosing data that I kinda go to the extreme with my backups. If someone wanted to take me offline, it'd only be down long enough to figure out how the heck they got in. After that it'd just be business as usual again.

As for why they did it, the reasons are numerous. But most likely someone was on an ego trip and just had something to prove. People enjoy being malicious, and this is just further proof of that. Then again, it's also excellent proof that some admins are idiots.
__________________
Popular Sci-Fi author and creator of the Earthfleet Series.
www.realmsofimagination.net
 
Mara's Avatar
Mara is online now Mara
2009-05-14 , 13:28
Posts: 1,310 | Thanked: 820 times | Joined on Mar 2006 @ Irving, TX
#8
The time I worked as sys admin for a small company we kept backup tapes/drives stored in a separate location than company.

Since it was a bare tape/drive there was 0% chance any hacker can gain access to it through internet... Only if they actually broke in to the location where the tape was stored.... To make the task more difficult the information where the tapes were kept was not documented anywhere (due to security reasons), so there was no way a hacker could have found that information from the data stored on the servers.

So I think that they did not follow a good security measures and therefore they got burned because of it...
 
krisse's Avatar
krisse is offline krisse
2009-05-14 , 13:32
Posts: 1,540 | Thanked: 1,045 times | Joined on Feb 2007
#9
Originally Posted by Lord Raiden View Post
As for why they did it, the reasons are numerous. But most likely someone was on an ego trip and just had something to prove. People enjoy being malicious, and this is just further proof of that. Then again, it's also excellent proof that some admins are idiots.
There is a massive MASSIVE difference between an incompetent admin and a hacker deliberately destroying 13 years of community work.

It frightens me that someone would do something like this deliberately. They must have serious social problems.
 
Baloo's Avatar
Baloo is offline Baloo
2009-05-14 , 13:46
Posts: 276 | Thanked: 160 times | Joined on Jul 2007 @ Bath, UK
#10
Originally Posted by krisse View Post
Would you say that if someone complains about a delayed Maemo hardware launch or an unresolved bug in Bugzilla?
Of course I would say the same thing. I was just trying to put it into context. Something pretty bad happened to someone who was a little lax with their security. Would you have a lot of sympathy for someone who left their car unlocked with the keys still in it and subsequently had it stolen?

Originally Posted by krisse View Post
You realise this isn't just the site maintainers that have lost stuff but all the people that contributed to the site for 13 years. Don't you have much sympathy for them?
Yes, I realize. As I said before, yes its a bad thing that happened but some silly and lax security and backup policies led to it being possible.
__________________
LinuxUK.org - http://www.linuxuk.org
 
Reply
Page 1 of 4 1 23 Last »

« Previous Thread | Next Thread »
Thread Tools

 
Forum Jump


All times are GMT. The time now is 01:37.

Contact Us - Home - Archive - Top