That wasn't just bad -- it was pathetic.
As I mentioned on that last post:
Quote:
The fact that they let thousands of emails go out from your account reveals terrible admin'ing on their part. cPanel should have been limited to a few hundred hourly emails, so that this would never happen. They risked their own IPs for blacklisting, and thus you as a customer would have email problems.
The fact that malicious files were injected into WP means that they likely lacked a quality anti-malware on their servers, such as cxs or maldet (or both). Again, bad admin'ing. FYI: That's why many big hosts have hacking issues, as they were too cheap/lazy to add software for their customer's safety.
|
Is WordPress being exploitable your fault? Perhaps. It depends on the exact exploit. Honestly, many times, it is user error. There are many ways to secure a WordPress site. It is very porous and vulnerable to attack. That's why many people now opt for managed WordPress hosting, as trying to maintain both WP and the site content is too much for a person (or even several people) to do adequately.
And, as I said, there are addition security measures that a host can use to mitigate exploits.
However, was FreshRoastHosting also at fault? Yes again. The fact that they allowed thousands of emails to abuse their system, within mere minutes, points to incompetent server administration. That was fully preventable, and is their own fault. They risk being blacklisted, which would effect all of the customers. That's really quite pathetic.
I was never 100% convinced that FRH was a competent host, and that really confirms my suspicions that they were not.
That said, the old FRH is gone as of mid 2015, sold by the owners. So hopefully the new owners are better. We'll see.
I'm glad that you were mostly satisfied with them as a host. However, I think you just got lucky, given these facts. And you'll never be 100% certain that email send to you wasn't being bounced due to blacklisting. A quality host is more on top of their game than this.