Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Not a member yet? Click here to register.
Forgot Password?
  1. Home
  2. Discussion Forum
  3. The Chill Out Zone
  4. General Discussion
  5. Why using free hosts may seriously jeopardize your site

Why using free hosts may seriously jeopardize your site

Asked Modified Viewed 1,460 times
Back to Forum Index Previous Topic Next Topic
Print
H
Homdax
H
Homdax 10
  • Fusioneer, joined since
  • Contributed 2,247 posts on the community forums.
  • Started 108 threads in the forums
  • Started this discussions
asked
Fusioneer

We have all been new to hosting a site. We have all been young with no income, we have all been struggling with paying bills and finding cheap or free solutions. PHPFusion is free and we are a big part of the Opensource Community, so why should we spend hard earned cash on our website projects, when we already spend so much time developing them.

Well, since I know for a fact that many PHPFusion sites lie at hosts like 000Webhost and similar places: Please read this if you are pondering where to put your site:

13 Million Passwords Appear To Have Leaked From This Free Web Host
http://www.forbes.com/sites/thomasbre...base-leak/

Just a word of warning. I am sure there are many cheap alternatives that you can afford with reasonable security, there is also the possibility of co-hosting with established members who may be able to offer place on their VPS or Web Account. I know of several who are open for this, including myself.

Do not risk your site.
Edited by Homdax on 01-11-2015 14:41,
0 replies

1 post

C
Craig
C
Craig 14
  • Fusioneer, joined since
  • Contributed 4,462 posts on the community forums.
  • Started 212 threads in the forums
answered
Fusioneer

I got the following email from 000webhost...

Quote

What happened?
A hacker used an exploit in an old PHP version, that we were using on our website, in order to gain access to our systems. Data that has been stolen includes usernames, passwords, email addresses, IP addresses and names.

Although the whole database has been compromised, we are mostly concerned about the leaked client information.

What did we do about it?
We have been aware of this issue since 27th of October and our team started to troubleshoot and resolve this issue the same day, immediately after becoming aware of this issue.

In an effort to protect our users we have temporarily blocked access to systems affected by this security flaw. We will re-enable access to the affected systems after an investigation and once all security issues have been resolved. Affected systems include our website and our members area. Additionally we have temporarily blocked FTP access, as FTP passwords have been stolen as well.

We reseted all users passwords in our systems and increased the level of encryption to prevent such issues in the future.

We are still working around the clock to identify and eliminate all security flaws. We will get back to providing the free service soon. We are also updating and patching our systems.

What do you need to do?
As all the passwords have been changed to random values, you now need to reset them when the service goes live again.
DO NOT USE YOUR PREVIOUS PASSWORD.
PLEASE ALSO CHANGE YOUR PASSWORDS IF YOU USED THE SAME PASSWORD FOR OTHER SERVICES.

We also recommend that you use Two Factor Authentication (TFA) and a different password for every service whenever possible. We can recommend the Authy authenticator app and the LastPass password manager.

We are sorry
At 000webhost we are committed to protect user information and our systems. We are sorry and sincerely apologize we didn't manage to live up to that.
At 000webhost our top priority remains the same - to provide free quality web hosting for everyone. The 000webhost community is a big family, exploring and using the possibilities of the internet together.
Our leadership team will closely monitor this issue and will do everything possible to earn your trust every day.

Sincerely,
000webhost CEO,
Arnas Stuopelis


Good job I don't actually use them any more since I'm kindly hosted by the great Homdax. hehe. However 000 webhost does suck.
0 replies

Category Forum

General Discussion

Labels

None yet

Statistics

  • Views 0 views
  • Posts 1 post
  • Votes 0 votes
  • Topic users 2 members

2 participants

H
H
Homdax 10
  • Fusioneer, joined since
  • Contributed 2,247 posts on the community forums.
  • Started 108 threads in the forums
  • Started this discussions
C
C
Craig 14
  • Fusioneer, joined since
  • Contributed 4,462 posts on the community forums.
  • Started 212 threads in the forums

Notifications

Track thread

You are not receiving notifications from this thread.

Related Questions

Not yet