Slashdot Mirror

← Back to Stories (view on slashdot.org)

Peter Gabriel's Web Server Stolen

Posted by timothy on from the maybe-just-a-disgruntled-fan dept.

miller60 writes "Web servers hosting musician Peter Gabriel's web site have gone missing from their data center. "Our servers were stolen from our ISP's data centre on Sunday night — Monday morning," reads a notice at PeterGabriel.com. The incident is the latest in a series of high-profile equipment thefts in the past year, including armed robberies in data centers in Chicago and London. How secure is your data center?"

15 of 287 comments (clear)

  1. Heist! by warriorpostman · · Score: 4, Interesting

    Wow. It never even occurred to me that people would execute traditional bank-style heists of data servers.

    1. Re:Heist! by vimh42 · · Score: 2, Interesting

      Hopefully people will start to become aware of this issue more. I've read similar stories where people show up dressed as IT staff and just walk off with servers and witnesses simply assumed they were legit and just doing maintenance.

    2. Re:Heist! by Necrobruiser · · Score: 2, Interesting

      people show up dressed as IT staff

      What? Wearing jeans, Chuck Taylors, and a tshirt?
      --
      "I planned within my means and got a fixed rate mortgage, so where's MY bailout?" -cafepress
    3. Re:Heist! by Jellybob · · Score: 2, Interesting

      I'll let them off for not hearing - most of the data centers I've been in have been so noisy you'd be lucky to hear a JCB driving through the walls. Our main one is loud enough that we're legally required to wear ear-defenders now.

      There's no excuse for being robbed 4 times though. If I had any hardware there, I'd certainly be moving it.

  2. Musicians seem to have crappy luck by CRCulver · · Score: 3, Interesting

    Peter Gabriel isn't the first musician to be a victim of equipment theft. Earlier in the millennium BT and Hybrid suffered major setbacks in the making of long-awaited new albums when their computers were stolen. I remember being royally pissed when Hybrid's Morning Sci-Fi , already generating a lot of buzz based on the band's material at concerts, was delayed years just because some dumbass saw shiny electronics in a studio and walked off with them.

    1. Re:Musicians seem to have crappy luck by mlts · · Score: 2, Interesting

      On gigs, its not uncommon for people to try to rip off the USB dongles which are used as license keys for VST plugins and various music software. This sucks because it might cause a band not to be able to complete their set if they don't have backup tracks.

      Protecting VST keys for desktop or rackmounts is fairly easy -- you have a USB card with an internal port and plug your VST license dongle into that, leaving that inside the machine. However, for laptops its harder and quite easy for someone to walk up, grab the dongle and run off.

    2. Re:Musicians seem to have crappy luck by MsGeek · · Score: 2, Interesting

      No, the Sonic Youth guitars in question had physical modifications done to them. It wasn't just weird tunings. This was a major setback for the band.

      --
      Knowledge is power. Knowledge shared is power multiplied.
    3. Re:Musicians seem to have crappy luck by afidel · · Score: 2, Interesting

      Probably special windings, possibly a different style of bridge than is normal for that model. Those are the most common modifications for guitars.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
  3. Probably not very by KeithIrwin · · Score: 5, Interesting

    There was a talk at ACM CCS a couple of years ago by a guy who specialized in physical security. He runs a company which works as site security testers. He told of being hired to check how secure a client's computers were in a "secure" data-center. The servers were in a floor-to-ceiling cage with a padlock and security cameras. All they had to do was to fake some passes to get into the data center and then either go under the floor or over the ceiling. In this data center, as in most, there was about a 2-foot crawlspace below the floor and another one above the ceiling. Floor-to-ceiling cages don't mean much if you can just go around them, and that's how many "secure" data-centers are set up. Likewise, the security cameras are only useful if someone is watching them, and in the places he tested, no one was. Since he was only testing, he didn't actually steal the machines, but he did put stickers on them to prove that he'd been there.

    So, how secure is your data center: probably not very.

    1. Re:Probably not very by eln · · Score: 4, Interesting

      It blows my mind that people who have a raised floor, and presumably go down into the raised floor all the time in order to run cable or whatever, wouldn't realize that people could get under a cage through the same mechanism.

      At the data center where I work, all of the cages are extended beyond the raised floor down to the concrete. Sure, if you had a heavy enough set of bolt cutters you could get through, but the metal detectors and security guards should keep you from getting something like that into the building. Plus, the fact that you would have disappeared under the raised floor for several minutes while you cut through the cage should be noticed.

      Granted, I work in a Tier IV data center (getting through security is like going to the airport every morning) and don't expect such a high level of security everywhere, but I would think extending the cages beyond the raised floors (and dropped ceilings if present) would be a no-brainer and would be done at very little cost. In addition, I would think at the very least having cameras on and recording 24/7 shouldn't be that big of an expense.

    2. Re:Probably not very by eln · · Score: 2, Interesting

      Sure, and we have multiple layers of security with armed guards posted both outside of the gated parking lot and outside and inside the building itself. That would stop most armed robbers, although if you had a Die Hard type of situation with a whole gang of highly sophisticated thieves, I doubt you could do a whole lot to stop them, short of having Bruce Willis on speed dial.

  4. Interesting (yet scary) anecdote... by halivar · · Score: 4, Interesting

    I have a friend whose co-located server went down. The Linux partition was screwed, and it needed a reinstall something fierce. I couldn't reach him (he was on vacation), so I drove down to the provider to grab the box. They did not so much as ask for my name; they just let me in, said, "go on in the machine room and grab it." This perturbed me a bit (because the machine clearly had a label that said "Property of [not me]. Do not touch."), but I went in, took it, brought it home, and fixed it up. When I brought it back (with a new install of SuSe and the then newly-released 2.6 stable), the techs remarked that the owner's roommate showed up to see what was wrong with the server. Having been told that an unnamed individual was allowed to make off with the server, he threatened to call the police. The service provider's response to him was, (and I quote), "fuck off."

  5. This feels so unnatural... by ascii · · Score: 2, Interesting

    To quote a favourite band of mine:

    "But this feels so unnatural
    Peter Gabriel too"

    --
    naah sig schmig
  6. Get a better DataCenter by noc007 · · Score: 5, Interesting

    The company I work for has all of its servers in a secure colo. The place offers secured cabinets, secured cages with racks, and even does walled off areas of the datacenter floor with a secured door for high paying customers like Google. The facility is manned 24/7 with cameras all over outside and in. The rear of the facility is fenced and gated.

    If you're on the roster for your company with floor access this is the process you have to go through to even get to your server:
    -If it's at night, you have to use your RFID badge to get in the front door
    -Check in with security and sign out for your key if the door is not a combo lock
    -Security needs to buzz you through the first door
    -RFID badge and finger print through two or three doors
    -Iris scan in the man-trap to get to the datacenter floor
    -Combo or the checked-out key to get in to the cabinet or cage

    On regular intervals they check the people on the floor to make sure that you're suppose to be there.

    I'm not saying this place is a fortified facility that can handle a team of insurgents. However, I'd feel that my equipment is safe from the theft I've been hearing about at some datacenters. For a cabinet with a 1Mbps commit data rate with an actual 10Mbps internet connection and IPs, it's about the same cost of having a T1 to the office.

    For those that want to know who we use, it's Quality Tech.

  7. Re:Maybe they shouldn't have been dataslumming it by jimicus · · Score: 2, Interesting

    So his hosting company was the side-project of a prepaid cellphone company? He got what he deserved. They're a pretty major mobile phone company in the UK, and remarkably adept at forming subsidiaries and acquiring companies.

    They're not particularly adept at customer service when things go wrong, but I don't know any organisation that sells mobile phones that is.