09-04-2007, 09:12 AM | #211 | |
Resident Curmudgeon
Posts: 73,970
Karma: 128903378
Join Date: Nov 2006
Location: Roslindale, Massachusetts
Device: Kobo Libra 2, Kobo Aura H2O, PRS-650, PRS-T1, nook STR, PW3
|
Quote:
|
|
09-04-2007, 09:44 AM | #212 |
eBook Enthusiast
Posts: 85,544
Karma: 93383043
Join Date: Nov 2006
Location: UK
Device: Kindle Oasis 2, iPad Pro 10.5", iPhone 6
|
That's exactly what MP say - there was no financial info on the server on which the attempted hack was made; just account info.
|
09-04-2007, 09:50 AM | #213 | |
New York Editor
Posts: 6,384
Karma: 16540415
Join Date: Aug 2007
Device: PalmTX, Pocket eDGe, Alcatel Fierce 4, RCA Viking Pro 10, Nexus 7
|
Quote:
Given that, the "down for maintenance" screen could have been more informative. Something on the order of "We have discovered a potentially serious problem, and taken the server down while we investigate. We will be offline for several days or more. Please check back regularly. We will send email when we are finished explaining what happened." would have been an improvement. When the site first got taken down, all we knew was there was an unscheduled outage. It wasn't till we got the email we knew why. I don't think "We may have been hacked, and your personal info may be at risk. The site is down while we investigate!" would have been a good idea. ______ Dennis Last edited by DMcCunney; 09-04-2007 at 12:01 PM. |
|
09-04-2007, 10:21 AM | #214 |
Fully Converged
Posts: 18,163
Karma: 14021202
Join Date: Oct 2002
Location: Switzerland
Device: Too many to count here.
|
Mobipocket can easily use an external provider for sending/receiving their e-mails. In fact, a quick check on the mobipocket.com DNS reveals that mails to and from mobipocket.com go through netsolmail.net which is provided by Network Solutions.
Code:
alex@debian:~# dig mobipocket.com. MX ; <<>> DiG 9.3.4 <<>> mobipocket.com. MX ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59916 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 13, ADDITIONAL: 0 ;; QUESTION SECTION: ;mobipocket.com. IN MX ;; ANSWER SECTION: mobipocket.com. 7200 IN MX 10 INBOUND.MOBIPOCKET.COM.NETSOLMAIL.NET. |
09-04-2007, 10:35 AM | #215 | ||||
Fully Converged
Posts: 18,163
Karma: 14021202
Join Date: Oct 2002
Location: Switzerland
Device: Too many to count here.
|
Quote:
Regarding "just account info"... look at what happened to Monster.com not so long ago: Quote:
Quote:
Quote:
|
||||
09-04-2007, 11:46 AM | #216 | |
New York Editor
Posts: 6,384
Karma: 16540415
Join Date: Aug 2007
Device: PalmTX, Pocket eDGe, Alcatel Fierce 4, RCA Viking Pro 10, Nexus 7
|
Quote:
On the *nix boxes I administered, email to/from was possible, but "mailhost" was an upstream Exchange Server. The Solaris boxes forwarded outgoing mail to it, and got incoming mail from it. I think that's what Mobi is doing with NS. NS is mailhost, and actually sends/receives mail forwarded from/to the Mobi server. But the user list is on the Mobi server, so... ______ Dennis |
|
09-04-2007, 11:52 AM | #217 |
Fully Converged
Posts: 18,163
Karma: 14021202
Join Date: Oct 2002
Location: Switzerland
Device: Too many to count here.
|
Dennis, I understand what you're saying. Still, it's not an excuse for not notifying their customers as soon as they found out about the hack attempt. Even if they had to disconnect their infrastructure from the Net, they could have accessed their mailing list internally and sent out the mails using their external provider.
|
09-04-2007, 12:07 PM | #218 | |
New York Editor
Posts: 6,384
Karma: 16540415
Join Date: Aug 2007
Device: PalmTX, Pocket eDGe, Alcatel Fierce 4, RCA Viking Pro 10, Nexus 7
|
Quote:
We don't know what their setup is, nor how many warm bodies they had to work on the issue. It might have been a case of "We can work on determining how the site was hacked, what the exposure is, putting fixes in place to prevent a recurrence, and getting the site back on line and accepting revenue, or we can work on extracting the user list, generating an email explaining things, and forwarding it through NS. We don't have the resources to do both at once. Which is more important?" Betcha management would say "Getting the site back up and generating revenue"... ______ Dennis |
|
09-04-2007, 01:58 PM | #219 |
fruminous edugeek
Posts: 6,745
Karma: 551260
Join Date: Oct 2006
Location: Northeast US
Device: iPad, eBw 1150
|
Which brings us back to the fact that the event happened in France in August.
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Well, Shut My Mouth | Fat Abe | News | 67 | 05-02-2010 06:14 PM |
v3.0 has me shut down..... | lmoore348 | Sony Reader | 1 | 09-06-2009 12:18 AM |
Automatic shut off? | Stacey34 | Sony Reader | 8 | 03-14-2009 06:11 AM |
Shut-down? | scrappnjoyce | Sony Reader | 9 | 01-09-2009 11:12 AM |