Open Bar MMXIV^2: Solace of Quantum

Salty · June 06, 2013, 09:40:34 PM

Quote from: Eater of Clowns on June 06, 2013, 08:56:06 PM
It's okay, Alty, if I've learned anything as an American about socialized medicine, Waffles had to wait about 30,000 years to get that procedure done, and the doctors who did it only own one Porsche.

\
Poor devils.

Cain · June 06, 2013, 09:51:13 PM

Quote from: Waffles, Viking Princess of Northern Belgium on June 06, 2013, 09:00:45 PM

Pinko European medicine: slow, but free.

Exactly how I like my women.

Also, if I manage to get a good night's sleep tonight, I have had ideas for fiction, which I may follow up on. I may also get around to responding to the 20+ PMs I am now ignoring. Stay tuned.

LMNO · June 06, 2013, 09:53:04 PM

In slightly disturbing news, I just spent the last hour debating the finer points of tax law as it relates to cost basis and loans.

Doktor Howl · June 06, 2013, 09:56:48 PM

Quote from: LMNO, PhD (life continues) on June 06, 2013, 09:53:04 PM
In slightly disturbing news, I just spent the last hour debating the finer points of tax law as it relates to cost basis and loans.

You poor bastard. I just had to stand in 110F temperatures all day.

I win, I think.

Don Coyote · June 06, 2013, 09:57:47 PM

Quote from: Doktor Howl on June 06, 2013, 09:56:48 PM
Quote from: LMNO, PhD (life continues) on June 06, 2013, 09:53:04 PM
In slightly disturbing news, I just spent the last hour debating the finer points of tax law as it relates to cost basis and loans.

You poor bastard. I just had to stand in 110F temperatures all day.

I win, I think.

I think I'd take Roger's day over LMNO's any day.

LMNO · June 06, 2013, 10:20:17 PM

On the upside, Mrs LMNO is prepping me a martini, and tonight I rock with the Frost Heaves, so there's at least there's that.

Doktor Howl · June 06, 2013, 11:42:39 PM

Quote from: LMNO, PhD (life continues) on June 06, 2013, 10:20:17 PM
On the upside, Mrs LMNO is prepping me a martini, and tonight I rock with the Frost Heaves, so there's at least there's that.

Tonight, I try to arrange the schedule for the weekend.

Over which I am, of course, working.

Faust · June 06, 2013, 11:45:01 PM

Quote from: Doktor Howl on June 06, 2013, 06:01:01 PM
What the hell is going on with the board? It keeps fucking going in and out of service.

I got an email from Hetzner about this while I was out at the pub.

Quote
Dear Client

At the end of last week, Hetzner technicians discovered a "backdoor" in one
of our internal monitoring systems (Nagios).

An investigation was launched immediately and showed that the administration
interface for dedicated root servers (Robot) had also been affected. Current
findings would suggest that fragments of our client database had been copied
externally.

As a result, we currently have to consider the client data stored in our Robot
as compromised.

To our knowledge, the malicious program that we have discovered is as yet
unknown and has never appeared before.

The malicious code used in the "backdoor" exclusively infects the RAM. First
analysis suggests that the malicious code directly infiltrates running Apache
and sshd processes. Here, the infection neither modifies the binaries of the
service which has been compromised, nor does it restart the service which has
been affected.

The standard techniques used for analysis such as the examination of checksum
or tools such as "rkhunter" are therefore not able to track down the malicious
code.

We have commissioned an external security company with a detailed analysis of
the incident to support our in-house administrators. At this stage, analysis
of the incident has not yet been completed.

The access passwords for your Robot client account are stored in our database
as Hash (SHA256) with salt. As a precaution, we recommend that you change your
client passwords in the Robot.

With credit cards, only the last three digits of the card number, the card type
and the expiry date are saved in our systems. All other card data is saved
solely by our payment service provider and referenced via a pseudo card number.
Therefore, as far as we are aware, credit card data has not been compromised.

Hetzner technicians are permanently working on localising and preventing possible
security vulnerabilities as well as ensuring that our systems and infrastructure
are kept as safe as possible. Data security is a very high priority for us. To
expedite clarification further, we have reported this incident to the data
security authority concerned.

Furthermore, we are in contact with the Federal Criminal Police Office (BKA) in
regard to this incident.

Naturally, we shall inform you of new developments immediately.

We very much regret this incident and thank you for your understanding and
trust in us.

A special FAQs page has been set up at
http://wiki.hetzner.de/index.php/Security_Issue/en to assist you with further
enquiries.

It scared the shit out of me at first but apart from the control panel password which isn't the same as the server password it sounds fine.
Though they don't specifically mention the down time today I would imagine the two are related.

Doktor Howl · June 06, 2013, 11:46:49 PM

Quote from: Faust on June 06, 2013, 11:45:01 PM
Quote from: Doktor Howl on June 06, 2013, 06:01:01 PM
What the hell is going on with the board? It keeps fucking going in and out of service.

I got an email from Hetzner about this while I was out at the pub.
Quote
Dear Client

At the end of last week, Hetzner technicians discovered a "backdoor" in one
of our internal monitoring systems (Nagios).

An investigation was launched immediately and showed that the administration
interface for dedicated root servers (Robot) had also been affected. Current
findings would suggest that fragments of our client database had been copied
externally.

As a result, we currently have to consider the client data stored in our Robot
as compromised.

To our knowledge, the malicious program that we have discovered is as yet
unknown and has never appeared before.

The malicious code used in the "backdoor" exclusively infects the RAM. First
analysis suggests that the malicious code directly infiltrates running Apache
and sshd processes. Here, the infection neither modifies the binaries of the
service which has been compromised, nor does it restart the service which has
been affected.

The standard techniques used for analysis such as the examination of checksum
or tools such as "rkhunter" are therefore not able to track down the malicious
code.

We have commissioned an external security company with a detailed analysis of
the incident to support our in-house administrators. At this stage, analysis
of the incident has not yet been completed.

The access passwords for your Robot client account are stored in our database
as Hash (SHA256) with salt. As a precaution, we recommend that you change your
client passwords in the Robot.

With credit cards, only the last three digits of the card number, the card type
and the expiry date are saved in our systems. All other card data is saved
solely by our payment service provider and referenced via a pseudo card number.
Therefore, as far as we are aware, credit card data has not been compromised.

Hetzner technicians are permanently working on localising and preventing possible
security vulnerabilities as well as ensuring that our systems and infrastructure
are kept as safe as possible. Data security is a very high priority for us. To
expedite clarification further, we have reported this incident to the data
security authority concerned.

Furthermore, we are in contact with the Federal Criminal Police Office (BKA) in
regard to this incident.

Naturally, we shall inform you of new developments immediately.

We very much regret this incident and thank you for your understanding and
trust in us.

A special FAQs page has been set up at
http://wiki.hetzner.de/index.php/Security_Issue/en to assist you with further
enquiries.

It scared the shit out of me at first but apart from the control panel password which isn't the same as the server password it sounds fine.
Though they don't specifically mention the down time today I would imagine the two are related.

I understood none of that, but the timing is right.

Cain · June 07, 2013, 05:09:56 AM

Quote from: Cain on June 06, 2013, 09:51:13 PM
Quote from: Waffles, Viking Princess of Northern Belgium on June 06, 2013, 09:00:45 PM

Pinko European medicine: slow, but free.

Exactly how I like my women.

Also, if I manage to get a good night's sleep tonight, I have had ideas for fiction, which I may follow up on. I may also get around to responding to the 20+ PMs I am now ignoring. Stay tuned.

Hahaha no.

Got woken up at 3:30 this morning by two medical emergencies, had to spend an hour outside in the cold, waiting for an ambulance to arrive. I probably don't have hypothermia, but only because of my time spent in Scotland.

Freeky · June 07, 2013, 05:13:34 AM

Shitty.

Cain · June 07, 2013, 05:14:52 AM

Also, the first time since Sunday I was asleep before 1am.

If I wasn't going on holiday next week, I'd be quitting this job at the end of this one.

Freeky · June 07, 2013, 05:19:05 AM

Quote from: Cain on June 07, 2013, 05:14:52 AM
Also, the first time since Sunday I was asleep before 1am.

Dude, what?

QuoteIf I wasn't going on holiday next week, I'd be quitting this job at the end of this one.

There's that to look forward to, anyway.

Cain · June 07, 2013, 05:22:25 AM

Well, I was hoping to use this week to sort out my money and tickets for my journey to Switzerland.

LOLNO.

The Johnny · June 07, 2013, 05:28:00 AM

SLEEPISORTHEWEAKCAINNEEDSMOARRRRRCOFFEEEE

Principia Discordia

News:

Open Bar MMXIV^2: Solace of Quantum

Salty

Cain

LMNO

Doktor Howl

Don Coyote

LMNO

Doktor Howl

Faust

Doktor Howl

Cain

Freeky

Cain

Freeky

Cain

The Johnny