VPS or dedicated, up to date or not wouldn't have mattered - they got root access because the system was relatively open.
It was just a matter of knowing that there are some things not to do. It was his first experience hosting, and it blew him off when they hacked it.
Advisory Lists are fine, but one has to know what to do with them. BTW- that list seems more focused on the client side than the server - although I did see a PHP advisory.
|