Dreamhost: Not exactly a Dream
The last months we got a few hundred attacks from IPs belonging to Dreamhost. Those IPs are also reported by a lot of webmasters (or automated) at AbuseIPDB.
We have emailed them twice but got no reply. Of cource and thank you for the treat.
As they publish at their own site, they provide “Web Hosting with Purpose”. What is that purpose i wonder.
What appears to be is that we have an other “hackers and abusers tolerant” hosting company, like DigitalOcean, ColoCrossing, OVH, ONLINE SAS, Hetzner.de etc etc.
ID: 1646266075-617693-6566533661 »
Date/Time: Thu, 03 Mar 2022 02:07:55 »
IP Address: 66.33.194.39 »
Blocked: Cloud service (“New Dream Network”, L874:F0, [US])! »
Reconstructed URI: https://www.valueweb.gr/wp-includes/js/tinymce/plugins/paste/index.php
Still knocking, even after blocked.
Guys dreamhost must be our N1 source of attacks for at least a year now:
https://www.abuseipdb.com/check/173.236.184.111
All those hosting companies, do not realize that in the mid/long term, their reputation will go bad. Also since they are blacklisted by many many scripts and plugins, their customers will go away.
In several plugins for WP i see blocked IPs for Colocrossing, OHV, DigitalOcean, Hetzner and many other “hosting” companies.
WTF, they are hammering us all day and night …..
https://www.abuseipdb.com/check/69.163.216.115
https://www.abuseipdb.com/check/208.113.170.111
they do not seem to care, our reports also got ignored.
We have blocked everything the returns (dns) a dreamhost subdomain.
a nightmare ……
Today we had a heavy attack for 2 hours against our WordPress from:
brightwood.dreamhost.com (69.163.152.113)
___
/wordpress/wp-content/plugins/xnxx/xd.php
/admin/controller/extension/module/opheadar.php
and other probes for security issues. What a crappy hoster.
https://www.abuseipdb.com/check/67.205.37.138
https://www.abuseipdb.com/check/67.205.31.50
https://www.abuseipdb.com/check/69.163.225.120
https://www.abuseipdb.com/check/208.113.171.183
Do i need to go on?