Thread Info
  • Locked Locked
  • Replies 10 replies
  • Subscribers 3 subscribers
  • Views 24147 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

The old Astaro.org was insecure??

rfcat_vk

This never happened on the old site, one strange user per forum.

The amount of junk posts indicates somebody did not do  very good job.........

Ian M



This thread was automatically locked due to age.
  • I called Sophos yesterday and they cleaned out the forum 6 hours later.... Now they're not answering the phones due "technical difficulties". Not sure I want to renew my UTM license next year.

  • @Ian, it never happened before was because of the mods. You know, the ones that worked for free over the weekends without community developer and other fancy titles beside their names and cleaned the spam as quickly as possible. Also as a "security company" trying to design forum software, sophos perhaps forgot not to let one person post twice a minute for thousands of posts? I took a few snips for entertainment. One user posted almost two thousand posts and the other one had over a thousand. Effectively DOSing (denial of service) the forum. 

    Good thing astaro.org got taken down. We are all safe...

  • in reply to Billybob
    All that was needed to protect Astaro.org was a WAF. If the old legacy modules were problematic and held back the updating they could have created a new phpbb/bulletinboard and migrated the data therefore freeing themselves from the Astaro.org of old.
  • in reply to Emile Belcourt
    From what I understand, whether or not astaro.org boards were "insecure" or not, the end goal was to migrate that information and bring it here. Unfortunately for me, I cannot stand this board and do not come here near as often as I did on the old system. It's not just because things changed - far from it. It's frankly because of navigating this blunder is cumbersome for me, starting a new profile frankly sucked and there is so much data that hasn't been moved over yet to a place I don't want to visit anyways makes it more difficult.
  • in reply to Billybob
    Hi Billybob,
    please to see you still lurking around the forum. I was having a dig at the issue about the old astaro.org forum as being unsecure. I was very aware of the unpaid mods and the work they did in removing the junk posts.

    The sf-os is still at home user level, needs alot more to bring it upto serious security contender for business.
    I am still fiddling with it on my test network, but have trouble getting some of the basic features to go. Maybe my thinking is wrong, but the policies seem to be back to front to me. Incoming needs to be setup with the destination as the outside source and the source needs to be the inside eg just look at mail.

    Ian
  • in reply to rfcat_vk
    Haha, I was trying to be funny also. I think going forward, I am going to give them some room to grow. I know criticism probably keeps them on their toes but I am going to back off a little and instead of being a pessimist, I am going to hope for the best.
    Some people like are really trying and I want to give them a little breathing room... for now ;)
  • in reply to Billybob
    I am just hanging around helping where I think I can. The forums are nowhere as active or vibrant as before. No william, balfson, bruceC etc. Very dsiappointing.

    Ian M
  • in reply to rfcat_vk
    Hi guys,

    Sophos is just kidding me... slipped into this forum because the astaro bb has been taken down due to "security" issues. And what do i see here? Got 1200+ notifications cause someone flood the forum with spam.
    Where are the security of a security company???

    I hope the best for the forum... and for Sophos.

    I´m even not sure what i´ll do when my subscription of the UTM licenses runs out. After the mess with 9.3 firmware bugs, unresponsive support etc.

    CU
    Thomas