Topic: DaDice.com - Next Gen Social Gambling Dice Experience | Progressive Jackpot - page 37. (Read 257856 times)
August 24, 2015, 10:51:31 AM
You sure it is live already? I cant open the site and it keeps loading here also the page for stats.dadice.com is not live as well. Anyone get this kind of error here?
August 24, 2015, 10:46:03 AM
We are glad to announce that dadice is finally online again.
Once again our apologies for the downtime!
Once again our apologies for the downtime!
That is Great!
August 24, 2015, 10:42:57 AM
Now lets go for our 750 millionth roll bounty !!!
August 24, 2015, 10:32:00 AM
We are glad to announce that dadice is finally online again.
Once again our apologies for the downtime!
Once again our apologies for the downtime!
August 24, 2015, 09:26:10 AM
Yeah, safety first. 
Site should be up soon.
Some feedback from the tech team:
We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
How long does dadice downtime?
dev said around 2-3 days right? is that really critical error on dadice?
if what dadice said about hosting hack then they need to change the hosting company...^^
dev said around 2-3 days right? is that really critical error on dadice?
if what dadice said about hosting hack then they need to change the hosting company...^^
Site should be up soon.
Was there logins in the auth.log from an outsider using root or a bash_history showing someone was using the root account? It's a bad idea to have ssh access open to root accounts. You should use another account and SU. Also you should have hidden bastion server access and not allow any ssh from IP's other than two bastions (the other as a backup).
I ask because rarely does a hack happen with a root password. Typically it's poor code allow cross-site scripting, SQL injection etc. etc. If there is no proof of shell access search access logs for PUTS and POSTS to narrow it down. Or, check your database integrity to see if it was compromised.
I ask because rarely does a hack happen with a root password. Typically it's poor code allow cross-site scripting, SQL injection etc. etc. If there is no proof of shell access search access logs for PUTS and POSTS to narrow it down. Or, check your database integrity to see if it was compromised.
Some feedback from the tech team:
We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
August 24, 2015, 06:33:01 AM
well i'm so excited about it, I'm waiting for the site come back and be playable Take your time, safety is first.
Take your time, safety is first. 
August 23, 2015, 03:58:28 PM
How long does dadice downtime?
dev said around 2-3 days right? is that really critical error on dadice?
if what dadice said about hosting hack then they need to change the hosting company...^^
dev said around 2-3 days right? is that really critical error on dadice?
if what dadice said about hosting hack then they need to change the hosting company...^^
August 23, 2015, 02:21:04 PM
Some feedback from the tech team:
We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
i presume that you have a hard time to fix the problem We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
anyway take your time to fix this issue and make sure it will not remake
good luck !
August 23, 2015, 01:50:02 PM
Later this big downtime, more people stop use the site, for me is the big down of one dice site. You give a lot to do to regain player 
August 23, 2015, 09:23:22 AM
Back stronger than past ? keep updating ...... that makes good feel for players .....
August 23, 2015, 08:17:36 AM
thanks for the updates. see guys tomorrow
August 23, 2015, 08:15:27 AM
Some feedback from the tech team:
We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
i presume that you have a hard time to fix the problem We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
anyway take your time to fix this issue and make sure it will not remake
good luck !
August 23, 2015, 06:09:37 AM
Was there logins in the auth.log from an outsider using root or a bash_history showing someone was using the root account? It's a bad idea to have ssh access open to root accounts. You should use another account and SU. Also you should have hidden bastion server access and not allow any ssh from IP's other than two bastions (the other as a backup).
I ask because rarely does a hack happen with a root password. Typically it's poor code allow cross-site scripting, SQL injection etc. etc. If there is no proof of shell access search access logs for PUTS and POSTS to narrow it down. Or, check your database integrity to see if it was compromised.
I ask because rarely does a hack happen with a root password. Typically it's poor code allow cross-site scripting, SQL injection etc. etc. If there is no proof of shell access search access logs for PUTS and POSTS to narrow it down. Or, check your database integrity to see if it was compromised.
Some feedback from the tech team:
We are not running SSH on standard ports anyway and direct root logins are also prohibited. Once again our password is very strong and cannot be brute forced, only hosting provider had access to our server for management purposes.
The results of the findings of our investigation regarding the compromised server:
It seems the reason is an ex-employee's frenzy. We learned that they had the same issue with other servers as well.
Right now we have downloaded a copy of the main database and deleted it from the server, and stopped execution of DaDice gameplay scripts completely. They have offered to either scan our server and make sure there are no Trojans or rootkits or any other threat active on the server or to build up a new matching server with a fresh install of our gameplay script / database etc. We have opted for a new server and are expecting to be up and running sometime tomorrow.
August 23, 2015, 05:28:24 AM
dadice or someone from team can answer when site is up? 48 hours is past 
Hi,
It is Da Dice's responsibility to ensure that there are no threats, potential or otherwise, that could affect any players or stakeholders in future. Once the investigation is completed and the safety is reasonably ensured by the pros, the site will be back online.
We just cannot put the site back online until we are sure that this threat has been taken care of. This is in the interest of all our players and stakeholders.
Finishing up prematurely, and putting the site back online quickly wouldn't be recommended as long as the investigation is not completed regarding how the attempt to hack happened.
I do have some funds in my account.
I'd say be patient and wait it out. No one would like to compromise the security of the site for a downtime. Let us hope it gets fixed quickly, and the site will be up soon.
Thanks
August 23, 2015, 03:17:46 AM
It will open within 2 hours i think?
I don't think. Is saturday night of August, who work? For me, first to monday site is offline
Yes agreed with at weekend hard to work but OP must come and make update what is going on off the screen there and what is the current progress made to this issue, this would helpful for players to know the whole situation.
August 23, 2015, 03:04:40 AM
dadice or someone from team can answer when site is up? 48 hours is past
August 22, 2015, 09:03:35 PM
any updates admin?
August 22, 2015, 01:16:58 PM
It will open within 2 hours i think?
I don't think. Is saturday night of August, who work? For me, first to monday site is offline
August 22, 2015, 11:38:02 AM
It will open within 2 hours i think?
I hope so mate there is a lot of money at stake and a lot of customers getting impatient here lol
August 22, 2015, 11:35:13 AM
It will open within 2 hours i think?
Jump to: