secureserver.tv - The final solution to grifter's video hosting.

[thismanlies]

I hope they're ready for Ralph's vow to "shit on them forever" once they gotta drop his fat ass for playing Tucker Carlson clips

Ralph has so many enemies that the amount of shit he would need could fertilize every corn field in the midwest.

 

[3119967d0c]

I've not checked the site or could care less. FTP uploads is a bit weird because it's plain text passwords being transmitted from client to host.

Not with explicit TLS. But then this is just a random VPS in the most basic possible configuration being used by a platform set up for QAnon freaks who aren't, realistically, going to face real takedown attempts.

 

[Neigh]

Cpanel with FTP is the web dev's basic setup. If you don't know how to use a server, you just use cpanel, build the website, and then upload it via ftp. It looks like that is what the owner is doing. It says more about the technical ability of the person running it than anything else. That should be evident with the template anyways.

 

[Echelon]

Starting Nmap 7.91 ( https://nmap.org ) at 2021-06-14 01:57 EDT
Nmap scan report for ip-132-148-222-129.ip.secureserver.net (132.148.222.129)
Host is up (0.076s latency).
Not shown: 976 filtered ports
PORT STATE SERVICE
20/tcp closed ftp-data
21/tcp open ftp
22/tcp open ssh
25/tcp open smtp
26/tcp closed rsftp
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysql
8080/tcp open http-proxy
8443/tcp open https-alt
50000/tcp closed ibm-db2
50001/tcp closed unknown
50002/tcp closed iiimsf
50003/tcp closed unknown
50006/tcp closed unknown
50300/tcp closed unknown
50389/tcp closed unknown
50500/tcp closed unknown

Nmap done: 1 IP address (1 host up) scanned in 11.38 seconds


I don't think they're that tech savvy. Its a linux server with cpanel installed and FTP to upload the static websites. This basic service is exactly something Gunt would purchase.

>MySQL port publicly accessible
Data breach in 3, 2...

Military grade encryption is a buzzword to sell its service which is fine. Encryption is encryption, it either works or doesn't. How well depends on the level. The thing is, does Ralph upload his own SSL certs? What about chats and the app is that using some form on E2E encryption?

It's just a Let's Encrypt cert.

What's more, their "military grade encryption" includes using 2048-bit RSA, an algorithm dangerously close to being broken.

Earlier this year world-renowned cryptographer Claus Peter Schnorr claimed that he found a new technique that "destroys the RSA cryptosystem" (https://eprint.iacr.org/2021/232). His statements have been widely criticized as being hyperbole but still, a company named Secure Server touting their "military-grade encryption" as a key feature using an algorithm that will likely be broken within the decade does not inspire confidence.

Also, any website that uses a TLS cipher suite that includes AES can be described as military grade encryption. That's essentially everything. It's a meaningless buzzword.

FTP is fine in public settings, IE shared hosting etc however on something commercial like this it should have been disabled in favor of SFTP. Then again we're dealing with military encryption here

Nah using FTP over the public internet is inexcusable. The only situation FTP can be used is between two systems on the same subnet and even then there's really no reason you can't just use SFTP.

Just a quick question from a tech-halfwit, how secure are those servers?

They aren't. They didn't even bother trying to set up a host firewall, which is absurdly easy when you're just specifying which ports should be publicly accessible. 100% confirmed they did zero server hardening at all.

Not with explicit TLS.

Port 21 is open, even if they use encrypted FTP for their work they at least left plaintext FTP open.

Cpanel with FTP is the web dev's basic setup. If you don't know how to use a server, you just use cpanel, build the website, and then upload it via ftp. It looks like that is what the owner is doing. It says more about the technical ability of the person running it than anything else. That should be evident with the template anyways.

100% made by a pajeet.

 

[3119967d0c]

Port 21 is open, even if they use encrypted FTP for their work they at least left plaintext FTP open.

FTP with implicit TLS is usually on a different port. Explicit TLS is fine on port 21. Leaving MySQL open is pretty amazing though, that almost seems like something they would have actually had to go out of their way to misconfigure from a default shitty VPS with CPanel configuration.

 

[AltisticRight]

Nice, a load of exploits like flavours of curry. Gunt Sunset LLC went from various shitty Chink services to this streetshitter template app that can cost over $500 a month.

"Military style encryption" has always sounded obnoxious to me. It's either encrypted or it isn't, what the fuck is military style?

 

[Spectre_06]

Sorry, just trying to imagine what Ralph would say in response to the $100 a month earnings. Also, he really likes bringing up that Roku capability.

I legitimately don't know anyone under the age of 50 who has a Roku. Not one. Everyone else has like the Amazon FireStick or the Google Chromecast.

"Military style encryption" has always sounded obnoxious to me. It's either encrypted or it isn't, what the fuck is military style?

It's just words, nothing more. If it was "military-grade" then it was made by the lowest bidder and breaks in the first month.

 

[TroyMcGoy2ElectricBoogalo]

Nice, a load of exploits like flavours of curry. Gunt Sunset LLC went from various shitty Chink services to this streetshitter template app that can cost over $500 a month.

"Military style encryption" has always sounded obnoxious to me. It's either encrypted or it isn't, what the fuck is military style?

"Military Grade Encryption" is fucking bullshit, it was the standard encryption for military servers before the military upgraded its encryption. All legitimate websites have "military grade encryption" yet they still get fucked over constantly...

 

[Ethan Ralphs Micro Penis]

The name "secureserver" makes me think of the dedotaded wam kid.

 

[DonDaLemon]

This whole company could've been an Indian ITT tech class project

 

[SSF2T Old User]

I legitimately don't know anyone under the age of 50 who has a Roku. Not one.

below age 50 Roku user here.

I only found out about the Roku back in 2016/2017 when I was dating my last ex whom was in her 40's. It's a neat little gadget, but if you're going to watch anything on it, like youtube, you're gonna need something like this for your DNS because the ads will drive you fucking insane. I mostly use it for the Roku Media Player. It has a USB slot so I just connect my 2TB external hard drive into it with all my movies/shows i ripped from my extensive dvd collection. You can also use Plex/Kodi on it and if you have multiple Rokus you can watch you favorite shit wherever.

 

[AltisticRight]

This whole company could've been an Indian ITT tech class project

Harro, you want to host your shit but jootoob and sheeknee hates you?

 

[CryoRevival #SJ-112]

Holy shit its absolute genius, It's like someone turned the GAB grift into a subscription model while also definitely Giga-Glowing.
I can't believe it took this long to harness the Boomercoin in such a manner.

 

[cistendered]

Harro, you want to host your shit but jootoob and sheeknee hates you?
View attachment 2266716

Found the dox on the engineer responsible for their Bengladeshi military grade encryption.

 

[AltisticRight]

View attachment 2270106

Found the dox on the engineer responsible for their Bengladeshi military grade encryption.

Where do I get my fucking refund?