Just Journal Developer Blog

The site was down due to a hack on another site hosted on the server.  As a precaution, I brought the system down and did a fresh os install.  The attacker was not very careful and left a great deal of log evidence.  I do not believe any information was taken.  User passwords are never stored in clear text, only hashed.  If you are concerned, change your password.  

For those interested, the attacker gained access as the webserver user (not root) via a cgi program.  I have deleted the program. 

Friday morning, we had the boot drive in our server fail.  It was an Imation 32GB SSD drive that was purchased on December 27, 2009 and installed in February.  The whole point of a SSD is greater reliability and we've learned that's not the case.  

The drive is still readable (mostly) but writes to the disk are failing.  

About half the services are back up on the server, and this site is one of them.