New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
http://www.webhostingtalk.com/showpost.php?p=7910508&postcount=72
Francisco
Is me in Francisco post, not my code though (code is from WHMCS themselves).
Works a treat though
Its easier to null route your support@ address
@speckl
support@ only takes clients emails
I get those all the time, its sooo annoying! Thanks for the tip.
They all come from AFRINIC region. For fun we were firing up Zopim in hidden mode and when we see someone with a Google refer with the proper search terms "inurl=submitticket" we will pop up a chat and say "Nice Try!" then IP ban.
It's "interesting" to safely bas64 decode what they're trying to see what they were attempting to do - some of the attempts I've seen on various peoples WHMCS installs are quite intricate...
@ErrantWeb - It's worth noting that many of these attempts come from insecure lines. If you're familiar with legacy default passwords on routers running microhttpd... well, you'll be able to find all you need to know about who's making the attempts.
Certainly is, online version I have used (lets keep it away from our servers!) http://www.opinionatedgeek.com/dotnet/tools/base64decode/
(googles for microhttpd)
(makes a note to set it up on his 32/64 SecureDragon LEB)
@raindog308 what about Boa? http://www.boa.org/
I use that on some low-lowendboxes
Also, a nice wikipedia list: http://en.wikipedia.org/wiki/Comparison_of_lightweight_web_servers