Changed your passwords recently?

**EuroNut** · 01-08-2008, 08:40 AM

Without wishing to spread doom and gloom every time I post a reminder like this, it's over a month since I last did and a news item caught my eye today that prompted me to nudge your memories again.

http://www.computerworld.com.au/index.php/id;683627551

Like they used to say on Hill Street Blues, "Be safe out there!"

**JPC-Tracie** · 01-08-2008, 12:00 PM

Thanks for the info. It's a good reminder!

**Vin DSL** · 01-08-2008, 12:12 PM

I've been using: http://www.domaintools.com/ A.K.A. http://whois.sc for years.

They required all users to change their passwords on 1-Jan-2008 (first time ever) so I guess it's becoming a trend...

**EuroNut** · 01-08-2008, 12:19 PM

Originally Posted by JPC-Tracie

Thanks for the info. It's a good reminder!

I hope people take heed, and do actually change their passwords. This stuff goes on ALL the time ... Look what just landed in my inbox ....

Dear WHMCS User,

It has been brought to our attention that at some time during the days following the recent release of WHMCS V3.5.1, an unauthorised user managed to gain access to our server through an Apache exploit and was able to add a number of files into the WHMCS V3.5.1 Full Version download available from our client area. The files added were shell scripts which could potentially be used to exploit the server should the functions used not be blocked.

There is a chance that you may have downloaded V3.5.1 at the time when the files were present and so may have inadvertently uploaded them to your server.

Fair play for Matt and the crew at WHMCS, the email goes on to list exactly what files to look for (and remove) and the risk is limited to a small group of users who downloaded the new version during a short period of time.

<Sigh> So off I go to check three WHMCS installs

**Daniel_DBS** · 01-08-2008, 01:23 PM

Yep, I changed all mine last weekend...

And yeah Vin, I noticed that too... Went to login to domaintools and it made me change my password

**Connie** · 01-08-2008, 05:57 PM

EuroNut that is a good reminder that everyone should be concerned with.

In regard to domiantools, I am now blocking them from my sites. Their crawler does not follow robots.txt instructions.

**Daniel_DBS** · 01-08-2008, 06:01 PM

Originally Posted by Connie

In regard to domiantools, I am now blocking them from my sites. Their crawler does not follow robots.txt instructions.

That is very interesting! I didn't know that!

**Frank Broughton** · 01-08-2008, 07:00 PM

Thanks for the reminder. I change my root passwords every couple weeks now for my vps! Time is up again.

**Vin DSL** · 01-08-2008, 08:08 PM

Originally Posted by Connie

EuroNut that is a good reminder that everyone should be concerned with.

A little paranoia is a good thing!

BTW, you should never end a declarative statement with a substantive preposition, like 'with'...

**JonathanB** · 01-08-2008, 08:55 PM

At work, they require us to change our network/email password every 90 days. I've been using that as a reminder to change other passwords for my domains and such.

**Frank Broughton** · 01-08-2008, 09:32 PM

Jonathan - hello... hows the snow coming in WI? I went to work today with no coat on - the weather here in Western NY is awesome right now. I have two windows open in my office at home still tonight and it is hot in here even.

Go Packers! and change them passwords peoples with with with!

**Bellthorpe** · 01-09-2008, 08:57 AM

Timely. I've just discovered that someone's hacked my account, putting scripts and bogus files all over the place, and modifying several index.html files.

Well planned. Here's a page with links to all the bogus files on my site (wazu.jp) view-source:http://040minutae.cgmax.blog.br/

**JonathanB** · 01-09-2008, 08:59 AM

Originally Posted by Frank Broughton

Jonathan - hello... hows the snow coming in WI? I went to work today with no coat on - the weather here in Western NY is awesome right now. I have two windows open in my office at home still tonight and it is hot in here even.

We had a near record snowfall total last month (about 30 inches). Which was great -- it SHOULD be cold and snowy in Wisconsin for the winter. Gives me a chance to get out there on my snow shoes and skis. The past few days though we had some warm weather which has melted most of it. But the forecast for tomorrow is 2-4 inches of snow. :-)

Go Packers!

Yeah! I want to see a rematch of Super Bowl 31. With Green Bay defeating the Pats of course.