important security announcement for OVH users (http://javascript%3Cb%3E%3C/b%3E:klappe_news%28%27a32673%27%29) on Mar-01-09

OVH has been discovered installing root level backdoor access on servers (Windows admin-level included), and using the access to install monitoring software, without the client's permission or knowledge, which has not been verified as safe. As a result, Waffles is weighing a potential ban of OVH IPs from the site and tracker, but have not come to a final decision yet. Instructions for removal of the software and backdoor access can be found at http://pastebin.ca/1350404. These instructions may not result in complete removal, as they've been authored by a third party, and we have not had the chance to compare a stock OS install against a backdoor'd OVH installed.

so the big brother is watching, through a keyhole this time, will check out ovh forum later.

any thoughts from here ?

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

after reading the pastebin.ca , seems pretty easy to remove their own software, especially on gentoo. therefore any decent ovh reseller should be able to do it.
i know i will ask them in advance, and if they don't know what i'm talking about, then i'll move on.

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...


That would be utterly retarded

just remove the files, wont be hard to do.





Wild

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

What a stupid thing to say.

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

What a stupid thing to say.
qft

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

What a stupid thing to say.
Why ? Everybody uses 1Gbit boxes what is your home connection ?

Hosting IE does this too btw. But theirs is easy to remove.

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

i don't agree with you but the amount of seedboxes (ovh mainly) i see in peerlist is kinda disappointing thesedays, especially on newbie sites more than 1/2 of the peerlist is seedbox. It makes me wonder if i'm sharing file with someone who'll appreciates the file or some buffer whore.

Hey buddy, I've just noticed first part of that pastebin has been already posted on NAQ's guide:
http://filesharingtalk.com/vb3/f-seedbox-discussion-154/t-naqs-complete-setup-guide-linux-seedboxes-fedora-corecentosdebianubuntu-281331

The thing is that they will notice we have removed RTM and the other stuff. But I think it's our right to do it...

You don't own the servers, there for you have no rights.

yes, but you rented the server (and paid for the software), therefore you can remove components or installed software.

they have been capping users for ever why the fook would anyone go with them beats me.

yes, but you rented the server (and paid for the software), therefore you can remove components or installed software.


Exactly, but I was thinking what happens if the user is storing child pornography or other crap. If the hosting company receive enough proof of someone doing that sort of activity they should apply the contract terms and burst into the server to corroborate.

they have been capping users for ever why the fook would anyone go with them beats me.
Because they're inexpensive and even with the cap, you still upload a good amount.

When you can name me a server for 30 bucks; Unlimited bandwidth, 250 gb, and 1 gb of ram...let me know

The caps hardly matter unless you're doing lots of traffic outside of Europe.

important security announcement for OVH users (http://javascript%3Cb%3E%3C/b%3E:klappe_news%28%27a32673%27%29) on Mar-01-09

OVH has been discovered installing root level backdoor access on servers (Windows admin-level included), and using the access to install monitoring software, without the client's permission or knowledge, which has not been verified as safe. As a result, Waffles is weighing a potential ban of OVH IPs from the site and tracker, but have not come to a final decision yet. Instructions for removal of the software and backdoor access can be found at http://pastebin.ca/1350404. These instructions may not result in complete removal, as they've been authored by a third party, and we have not had the chance to compare a stock OS install against a backdoor'd OVH installed.

so the big brother is watching, through a keyhole this time, will check out ovh forum later.

any thoughts from here ?

Sorry, an error has occurred. Reason: That is an invalid ID, or the post has expired.
you may wanna check with the url

1st off you rent the box , its like your room you rent it you do what you like inside it, if you somehow damage it due to your fault they could i suppose do as landlords do , but as were talking software if you secure the boxes , there is ZERO they can do.

There is no terms a service that's enforceable of this as you can always claim that whatever you removed was messing wiht some software development you were working on, which is why you rented the server.

IF they are adding UNSTOCK code then you could then argue that doing so would and could hold them liable to scewing your softwares test results and that in the future they should consider such stupidity.

IM GOING to take an image back and do whats known as an eggpatch, that is checking ALL software as they have versus what is stock.
NOW that they have been caught they should be honest and pony up, or the mass exodus begins.
Not even a regular good business person is gonna want to host with a company that does that.

-----
@that idiot that goes and gets child pron sooner or later he is gonna hit a FBI or fed honey pot and hten they will have neough for a warrnat as they should and hten can take appropriate action , and if you use paypal or a credit card it will get traced somewhere and then YOUR pwned for being a sick stupid idiot.

That's how law should work. A few kids getign sme tv and music should not be why they do this.

[quote=silvertec;3151029]
When you can name me a server for 30 bucks; Unlimited bandwidth, 250 gb, and 1 gb of ram...let me know

show me one for 30 bucks :)

[quote=iam1337;3151156]

show me one for 30 bucks :)
Kimi L , 24 quid.

new update from waffles:

OVH has activated secondary root level access to their servers. In the best interest of security, it is advisable to remove this access by editing /root/.ssh/authorized_keys2 and removing the lines that start with:
from="213.186.50.100"
from="::ffff:213.186.50.100"

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...

I would agre with that all seedbox providers should ban people who use them for bittorrents

I see Waffles is up with the times and have made themselves look very foolish in my opinion with this "announcement" of theres.

Its common knowledge about these authorized_keys2 and OVH themselves have it on there own site on how to remove them http://help.ovh.com/InstallOvhKey.
(http://help.ovh.com/InstallOvhKey) Also it isnt that hard to change your SSH port to something completely different from the port 22 it usually is.

Ban OVH servers...i hope SCT does the same..Torrentworld needs to remove seedboxes out...
Thats imposbile ..:blink::wacko:

Its common knowledge about these authorized_keys2 and OVH themselves have it on there own site on how to remove them http://help.ovh.com/InstallOvhKey.
(http://help.ovh.com/InstallOvhKey) Also it isnt that hard to change your SSH port to something completely different from the port 22 it usually is.

I was thinking the same thing. OVH having the key in their boxes is nothing new, it's been like that for a while. Also every guide you find to helping you setup an OVH box has you delete the key first before starting anything else.

What a stupid thing to say.
Why ? Everybody uses 1Gbit boxes what is your home connection ?
No not everyone.

And people's home connections are usually very shit, hence the 'need' to invest in a box to keep torrents running throughout the day at high speed, and share more data for the good of the community (whichever one it may be).

Also every guide you find to helping you setup an OVH box has you delete the key first before starting anything else.
Yeah !
http://photomaniak.com/upload/out.php/i600202_Capture.png

from
http://filesharingtalk.com/vb3/f-seedbox-discussion-154/t-naqs-complete-setup-guide-linux-seedboxes-fedora-corecentosdebianubuntu-281331

Been with OVH for a year now.. was known then..

Next news update from Waffles probably will be that Piratebay is going to court

Hosting IE does this too btw. But theirs is easy to remove.Is that true?

And, of so, how can it be removed?

By the way, I have a box bcuz my home connection isn't great; especially on the upload.

So, for one to say ban all seedboxes is just stupid. There are some people who do need them.

Hosting IE does this too btw. But theirs is easy to remove.Is that true?

And, of so, how can it be removed?

By the way, I have a box bcuz my home connection isn't great; especially on the upload.

So, for one to say ban all seedboxes is just stupid. There are some people who do need them.


They don't do it the same way OVH does... its not ssh auth keys, if you access you Hosting-IE box via FTP and enable hidden files and root around a bit. They have themselves a hidden backdoor somewhere... sorry I foregt where its been a long time since I have looked at it, anyway I removed it and that should take care of it, as well as changing the root password of course.