Glass Hosting Development

[Ctrooper]

I say go for it, give it a few months, if you make more than you give continue, if you dont drop the project, basic business tactic.

[Ad Bot]

[Mega-Bear]

I could see myself using this for sure.

[Ipquarx]

please only do this if you can know for sure that you can keep it secure. We don't want CBMhost v2.

[.Kong123.]

please only do this if you can know for sure that you can keep it secure. We don't want CBMhost v2.

CBMHost only had that one problem. Other then that, it was amazing. None of our keys were taken.

[Meta_KnightX]

We don't want CBMhost v2.

Care to explain what that is and what happened?

[Ipquarx]

Care to explain what that is and what happened?

It was a hosting service that hosted around 40 peoples servers. Basically the most popular one at the time. The security on it was so abysmal that you could access everyone's stuff, even the stuff that wasn't yours, through your web browser. I forgot the exact details but there's a drama on it somewhere. Everyone's keys that were stored on cbmhost were taken that way. Thankfully, none of them were revoked.

[.Kong123.]

It was a hosting service that hosted around 40 peoples servers. Basically the most popular one at the time. The security on it was so abysmal that you could access everyone's stuff, even the stuff that wasn't yours, through your web browser. I forgot the exact details but there's a drama on it somewhere. Everyone's keys that were stored on cbmhost were taken that way. Thankfully, none of them were revoked.

I don't think they got the full keys, so they weren't revoked.

[Ipquarx]

I don't think they got the full keys, so they weren't revoked.

Well the thing is they definitely could have, though I suppose it's possible they didn't, but that doesn't matter. The point is, please make sure that this service will actually be secure or don't have it at all.

[Pecon]

I don't think they got the full keys, so they weren't revoked.

They showed the last four digits of around 20(?) keys and their associated BL_ID's, Badspot confirmed later in the thread that they were correct for those BL_ID's. It's most likely that they had the full key, because multiple people have proven multiple methods of getting a full key from the key.dat file. Even if at the time they only had a trick to extract the last four numbers, they most certainly could have done it afterward after multiple people posted concept attacks.

[Eon]

Well the thing is they definitely could have, though I suppose it's possible they didn't, but that doesn't matter. The point is, please make sure that this service will actually be secure or don't have it at all.

fact that it was free just made it even worse considering free hosting is a pretty big offer

[.Kong123.]

They showed the last four digits of around 20(?) keys and their associated BL_ID's, Badspot confirmed later in the thread that they were correct for those BL_ID's. It's most likely that they had the full key, because multiple people have proven multiple methods of getting a full key from the key.dat file. Even if at the time they only had a trick to extract the last four numbers, they most certainly could have done it afterward after multiple people posted concept attacks.

Yea I guess they could have it. But the key I'm using now they have the first 4 digits, and nothing has been done with it.

Sorry for getting a bit off topic, but this does sound like a good idea.

[Scout31]

I've been experimenting around seeing how feasible this whole thing is. I'm still undecided whether I should do this, but I'm leaning toward yes.

I'm actually surprised by the poll results. Are there actually 30 people willing to pay?

Well the thing is they definitely could have, though I suppose it's possible they didn't, but that doesn't matter. The point is, please make sure that this service will actually be secure or don't have it at all.

Of course. I wouldn't be taking people's money on something half-assed.

But the key I'm using now they have the first 4 digits, and nothing has been done with it.

The first 5 digits are your BL_ID in a different base, nothing that would expose you and can be freely generated by anyone.

[Crøwn]

I would move my server to it if it's nice enough.

[Conan]

i guess im only a possible yes since i currently have a dedi provided by a friend but may want to get a separate one for a server im working on

[Ipquarx]

But the key I'm using now they have the first 4 digits, and nothing has been done with it.

I have your first 5 digits... AA8HY

But really, your first 5 characters of your key is just your BLID encoded in base 32, as Scout said. You can get anyone's first 5 characters, it doesn't compromise your key

Of course. I wouldn't be taking people's money on something half-assed.

Alright cool. Good luck to you!