Mr. Lehrer, I don't appreciate being treated as a troublemaker when all I am doing is pointing out the obvious. All your closing of the thread does is heighten speculation that something very embarrassing is involved. It's not my purpose to embarrass you. My purpose is to make sure you understand the nature of what happened to the servers I and my co-customers pay you for. And, sorry to say, it is quite clear that at this moment you do not understand.
These /mail subdirectories did not appear, could not have appeared on their own just because a mistake in Anon FTP config existed. The insecure config made it possible, but it was a person or persons who exploited the mistake, and it could not have been random people just looking for Anonymous FTP. It had to be somebody with specific knowledge of your servers to create identical hidden structures in at least three different physical machines, probably more. Do you deny this? Please don't, because you would be denying what is plain for all to see. Please stop being KGB-ish and just share some real answers with us, instead of saying "trust me" and providing no logic for your statements.
I don't expect you to tell us precisely what happened or to name names if you have them. I simply ask you to acknowledge that a person or persons deliberately created these dirs and files outside the jailshell (not necessarily at the command line, but the result was files invisible to account owners using the jailshell) and that, if this person or persons again attempt something similar, you are ready for them. Clearly you are not ready for them if you really believe the FTP config itself was the sole cause of the problem.
Your co-worker Alec said the problem was "fixed" back in February. It wasn't. Now you say it is "fixed" while displaying incomplete grasp of the factors involved. I have worked in computers and networking for 22 years. Pay attention and learn some respect for your elders. I and two other Hostony clients revealed this problem to you. Without us, whoever was exploiting your servers would still be doing so. And this is how you treat us-- to abruptly close a thread in which we ask questions anybody would ask?
--
BF