WHMReseller users, Your Server's ROOT Password is not SAFE!

lol i didn't get reply from zamfoo till yet i mailed them 7 days ago about the order link and server load ?? and some pre sale questions but they never replied yet so i decide a trial shot of whm php and its perfect because it doesnt even raise server load to 1 lol !!!

and for whm reseller the source code is hacked by there server or maybe from website but i think now whm reseller software market gonna over soon !!!

 

hi,

yea. you are one of 10 a day that fill out the contact form and do not leave an email address to contact you back with. my response time for the last 4 months has been roughly close to a maximum of 6 hours typically ranking in under 30 minutes.

we are working on getting the website fixed.

thanks,
kevin

 

huh its amazing reply i didnt get it if i submit the contact form then i think i should be very big stupid that not fill my emails id with in it ?? is it kevin u want to say actually i did it pretty well it might be ur contact form error or something because first i mistakenly purchase your migration plugin then i have to cancel the subscription from paypal for nxt month but its over now i m using whm php because its php based it wont overload server !! pls dont mind zamfoo is great but i m really scared after the shit happen to my server's by whm reseller !!

 

hi,

you messaged as anonymous. its a message system....not an email contact form. i own the site. i know what i am talking about. you don't have a wiki account......every wiki page gets personally approved.

there is no where for you to put your email. your whole claim is flawed in that aspect. relook at the page if necessary lol.

anyways. good luck with them.

kevin

 

lol, what a load of rubbish.

 

hi,

well. not really sure what to say in return to that other than....who was that post directed to? this post has transformed pretty significantly somehow. the orininal poster with the accusations has completely fled it appears.

as a side note to start getting back on the topic at hand. i bought whmbiller.com and whmbiller.net.

kevin

 

what i m trying to say kevin i tried to contact you first but unfortunately the contact form doesn't work but no problem i got solution in the end that good luck and best regards for your business ! i cant understand the wiki matters lol

 

I tried WHMReseller but i switched after about 3 months to alternative software that is cheaper and faster

 

hi,

we fixed the website wiki with the contact information so this problem doesn't arise in the future. we also added in our chat contacts as well.

thanks,
kevin

 

Gee, lately I've been trying to stay out of discussions about WHMreseller because they are usually just pointless, but this just shocks me and it needs a response.

I don't know who posted this - and what I mean is I don't know who the real person behind the username coolstuff0000 is. I have seen a number of false posts lately in different forums trying to attack WHMreseller and its just ugly to see this kind of thing going on.

First off the code shown is NOT C++ code, it is OLD C code, so its been taken from the old 2.6 version of WHMreseller, which is the last version that was written in C. All current versions (Version 3.0 onwards) are written in C++. Secondly, the person who has posted this has EDITED the code (added things). Specifically the lines:

These lines never existed in the original code. Nor does the rest of this code flow in the same order as the original code did. So what's been posted here has been cut and pasted together AND edited (bits added). So who would do such a thing? Who would take some of our old code, add in some extra lines and try to falsely accuse us (deasoft) of trying to get peoples root passwords? I'll let you figure out who might be behind this.

There are some authentic sections of code in there and I would like to explain what it does so people will understand the original purpose and see that this is false. You will notice the email subject line reads "WHMreseller Bug Detected". This section of original code used to send me details about a detected bug. It was an attempt back in the older days of me trying to detect and respond to a bug at that time, it did not send any password information. Any Linux programmer will know - its not possible to get a user password from a Linux Operating System. They are designed in such a way that they cannot be decoded, all you can do is reset them, that's why WHM/cpanel can never tell you the current password of an account, WHM/cPanel can only let you reset the password. So this original post is just a bunch of lies, intended to make people doubt WHMreseller.

So just to make this clear, WHMreseller does not send password information back to us via emails, its not even possible to do this. To the person who started this thread I would like to say: Please find something better to do with your time that doesn't involve spreading false rumors about WHMreseller.

 

as long we cannot see your original code , we cannot belive , that , isn't that right , how we can belive you , if you dont proof that, any the same thing did the SCPanel, which added backdoor into software , so with that they can control any site which installed their panel which is sucks anyway , people like your Software but you have the worst support ever , and software is buggy with few things , right now we are in progress of removing it from our server , we just go with WHMPhp sames better and help is much more better than your it is, also your license server has been down 2 days did you think how many people lost money because of that problem?

 

hi,

if you need proof then you don't know much about anything. it can be done.

however it can't be done easily. the reason that it can be done is that every password is crunched through an encryption algorithm that generates a hash value. you can pre-compute the entire table space and then do a sequential search to match the hash...in turn reversing it.

HOWEVER....you can make a 32 character password which would require terabytes of disk space to rainbow table it back to a usefull password. not to mention years...plural.... of time computing said rainbow tables.

deasoft, it is the time vs memory trade off dilemma. if you have any further doubts about the fact that it can't be done please refer to this basic hacking 101 article in wikipedia: http://en.wikipedia.org/wiki/Rainbow_table

instantdeploy, you have no idea what you are talking about.

the fact that deasoft doesn't know it can be done is testimony that they are not doing what is claimed. he doesn't have the time to support your software. why would he waste years....plural.... computing a rainbow table.

thanks,
kevin

 

do you see any rainbow @ here? because i can't see one ,so leave the waste years and ..... ,if they can't support it , then leave it off don't continue , why make people lost money for a software which support = 0 , so let's leave this alone and don't continue with this rainbow anymore, because this software just start to become a realy rainbow .

 

hi,

um....yea. what he said.

thanks,
kevin

 

I doubt this is true really..I really dont think someone's that lazy to get root passwords lol...ive got a lifetime license for whmreseller v3 and havent had any probs..

 

hi,

if you bought a life time license you got ripped off. how is this thread still open. i think this can be closed.

thanks,
kevin