{"id":9024,"date":"2017-06-26T00:01:40","date_gmt":"2017-06-26T07:01:40","guid":{"rendered":"http:\/\/www.wambooli.com\/blog\/?p=9024"},"modified":"2017-06-24T12:01:07","modified_gmt":"2017-06-24T19:01:07","slug":"an-attack-on-godaddys-web-servers","status":"publish","type":"post","link":"https:\/\/www.wambooli.com\/blog\/?p=9024","title":{"rendered":"An Attack on GoDaddy&#8217;s Web Servers"},"content":{"rendered":"<p>I host Wambooli, as well as my other websites, on GoDaddy. I&#8217;ve been doing so for years, ever since my old and despised web hosting provider was consumed by GoDaddy around the turn of the century. I know that many web developers don&#8217;t like GoDaddy, but I&#8217;ve tolerated them. Until now.<br \/>\n<!--more--><br \/>\nWeb hosting is a step in the process of getting a web page up and running &mdash; if you want to be professional about things. Otherwise, you can use a hosting service that cobbles together a site for you, along with their own advertising. I prefer to go pro.<\/p>\n<p>First comes registering the domain name. I own plenty of domain names, but not everyone is associated with a website. To link a domain name to a website, you must park the site somewhere. So, second, you pay for a web hosting account. Then you link the domain name to the hosting account and Internet magic does the rest.<\/p>\n<p>For my two main sites, <a href=\"http:\/\/www.wambooli.com\/\">wambooli.com<\/a> and <a href=\"http:\/\/c-for-dummies.com\/\">c-for-dummies.com<\/a>, both the domain and hosting are provided by GoDaddy. Another domain I own is registered through GoDaddy, but the website is parked on a Google Sites server.<\/p>\n<p>Beyond paying the registration and hosting fees (which aren&#8217;t cheap), I pretty much leave GoDaddy alone. I access the sites via FTP and manage the content through Adobe&#8217;s Dreamweaver application or directly through software I&#8217;ve written.<\/p>\n<p>Then came a warning from GoDaddy: <em>One of my sites had malware!<\/em><\/p>\n<p>I freaked out, which is to be expected. A quick look at the site&#8217;s files showed a clutch of unknowns. I quickly removed them and re-uploaded the entire site. I also changed the site&#8217;s password. Then I checked my other sites.<\/p>\n<p>Sure enough, another site showed signs of a hack. I removed the malware, re-uploaded the site, and changed the password.<\/p>\n<p>That&#8217;s when I suspected that the problem wasn&#8217;t with my sites, which are pretty secure, but with GoDaddy. After all, two separate site hacks seems kind of odd. Both sites have different and highly-secure passwords. So I did a quick search and discovered that the weakness lies in GoDaddy&#8217;s own servers, which are full of holes aggressively probed by the Bad Guys.<\/p>\n<p>Here&#8217;s the kicker: For an extra fee, you can upgrade your site&#8217;s security so that the attacks don&#8217;t happen. Yes, pay GoDaddy extra money and they&#8217;ll plug the holes GoDaddy knows about and refuses to fix.<\/p>\n<p>What&#8217;s worse is that I discovered this problem freshly after I paid for another year of hosting. Had I known before, I would have switched hosting to another service, one that bothers to patch the holes in its servers so that hosted sites aren&#8217;t attacked.<\/p>\n<p>This is my final year with GoDaddy web hosting. I&#8217;ve had a good run and few complains. If they fix the problem, then I&#8217;ll stick around, but I doubt that will happen.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Oh, these things just can&#8217;t be coincidental.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-9024","post","type-post","status-publish","format-standard","hentry","category-main"],"_links":{"self":[{"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/9024","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9024"}],"version-history":[{"count":2,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/9024\/revisions"}],"predecessor-version":[{"id":9030,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/9024\/revisions\/9030"}],"wp:attachment":[{"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9024"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9024"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.wambooli.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9024"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}