Sorry to bother you with another security related request, just the kind of people who will be using this site are the kind that would try and exploit it.

Could you please close the following ports:

22/tcp (I don't use ssh anyways)
53/tcp (unless I need it)
443/tcp (unless I absolutely need it)
993/tcp (I don't think I need ssl)
995/tcp
3306/tpc (I don't want people hacking my MYSQL)


Or if this is simpler all I really need open is:
21/tcp
25/tcp
80/tcp
110/tcp
5190/tcp

If certain of the requested ports to be closed absolutely has to be open for functionality please don't close it. OpaQue had said admins could do this earlier.

If it costs credits and I don't have enough then just let me know!

Thanks,

SilverFox

Well, at this point in time, I'm concerned that your use of your hosting account may violate the Terms of Service, Acceptable Use Policy, or both.

If your website doesn't contain material that could be considered inappropriate, I may be considered to be detrimental to the server itself.

For example, if your website describes methods of hacking or promotes the practice of illegal activities such as hacking, cracking, or other electronic exploitation, then your website violates the TOS and AUP.

If your website attracts or specificly targets individuals with a desire to hack your website or if you are providing an environment in which your users are either prompted to or provided an opportunity to hack your website, server, or network; you may be in violation.

If the use of your website by your users over burdens the server or causes the server to be unusable for other accounts or users either on purpose or not, then you are in violation.

My point is that if you are inviting hackers to come to your website where you teach them how to hack a website which they may use on your account or server, then you will be hacked! And since we all use the same server, this poses the possibility that the entire server could be exploited and many or all of the hosting accounts could be effected.

Having said that, I am not sure that ports can be turned on or off on an individual account. I will forward the request to the proper techs for this operation and have someone investigate whether or not your use of your hosting account is acceptable.

vujsa

My sight does not support or condone hacking, nor does it encourage hacking. I don't think I am over burdening the server.

It is an online hacking simulation game that's rather unrealistic. Similar to Slavehack (which started out using Asta). But some people are rather eemr...rude shall I say and therefore I would like it secure as it can be.

If you cannot edit anything then oh well.

There isn't any encouragement to hack the server on my site.

I don't find having an online game to be a violation of the TOS or AUP.

Its just I felt it was wiser to be safe than sorry so I mentioned this. On site security I like to be as careful as possible. If this isn't possible or too burdensome (which I could certainly understand) then I don't mind, however I seriously hope you don't terminate my account.

I'm not too worried about getting hacked, I just wanted to see if this was possible. It was one of my own mods who noticed it actually, I doubt any script kiddies would use nmap =P I still can't figure it out.

This post has been edited by SilverFox: May 15 2007, 03:35 AM

Hi,

Just because your site can be hacked it does not mean we can block ports for your website. Even if we do manage to get your site's ports blocked, your site is still being shared and settings for your site will affect the entire server.

If you have such a high security issue, I recommend buying a paid hosting account with dedicated IP. We can block ports on a dedicated IP.

A Hacker will not use your site name. He will straight away resolve your site's IP and start attacking it. He can bruteforce or try DDOS. Anyways, we are pretty used to attacks and I hope, this one is not soo intense.

No changes can be done to the server.

-Shree

Thanks,

I was just wondering/checking.

I probably will get paid hosting later. However this will do.

Just checking if it was possible. My security risk I guess isn't that high, I'm just hyper-careful

Basically back everything up periodically...

-SilverFox

This post has been edited by SilverFox: May 15 2007, 03:56 AM