WingNews logo WingNews
top | item 28249216

Tell HN: Heroku bans 10 year account without notice or explanation

182 points| nicholasreed | 4 years ago

I've been a paying Heroku customer for a decade, with multiple businesses (a surf company, tennis reservation system) and personal projects hosted without issue.

On Tuesday, I woke up to sites down and my login not working. No emails from Heroku. After emailing support, I got an automated response that I'd been banned for violations of the Acceptable Use Policy. No details, just instantly dropped.

I've sent 10s of emails to every Heroku and Salesforce support and security department, called the SF offices, and tried social media. I still have no idea why my account was suspended, and apparently I have no recourse to get my company data back (backups, credentials...everything is through the Heroku login).

Heroku is trying to put me out of business, I recommend you leave them before they do the same to you!

25 comments

order

grepfru_it|4 years ago

Once again, never ever commingle customer accounts, one bad apple ruins it for all of them. Create a new (in this case, Heroku) account for each customer, no exceptions

Story time: I worked for a major marketing firm that did this with Facebook. we would see accounts go down every once in awhile and it turned out the managers of the companies that cried foul were doing foul things which we would have to resolve (bonus: extra $$$ Too). One Saturday our monitoring started chirping only to find all Facebook accounts were deactivated. It took us 10minutes to realize we did not change our tooling to support their api changes. These are well known name brands that were completely down. That was the first time I have seen an entire company scramble to resolve an issue, but we were back up and hobbling around within 2 hours.

Always separate accounts.

nextaccountic|4 years ago

Can you link a single credit card to multiple accounts?

Also, if they notice the same people, from the same IP, with the same credit card, (...), are running a bunch of accounts, why wouldn't them ban it all after a ToS violation?

hiremaga|4 years ago

I'm so sorry. This sounds incredibly stressful for you and the businesses you support.

While you're working towards a resolution with Heroku, it might be possible to bring up some of these apps relatively quickly on Digital Ocean's App Platform since it uses many of the same buildpacks as Heroku: https://docs.digitalocean.com/products/app-platform/build-sy...

This won't help in the cases that need data for proper restoration, but perhaps it'll get some the businesses you support taking reservations again sooner.

One benefit of having chosen a buildpacks based platform is it's easier to move than most proprietary or bespoke approaches.

nicholasreed|4 years ago

Redeploying on another platform was relatively easy to do.

Losing 10 years of data and information for all future reservations, etc. is harder to recover from. Not to mention the fact that I still have no idea if i was simply hacked and I should be trying to notify customers (customers of which I now have no record, because, again, all data and backups on Heroku-linked services).

phendrenad2|4 years ago

Ah yes, the old "small company get bought by a huge company, now you can't get customer service on the phone unless you're a whale".

strzibny|4 years ago

Yep. It's better to assume this can happen. Still very unfortunate :(

I am just finishing https://deploymentfromscratch.com/ for anybody that wants to learn how to do it.

brainbag|4 years ago

Do you have any sample chapters? The chapter titles are underlined like links but don't seem to go anywhere.

lost-found|4 years ago

Can this be applied to self hosting on something like a raspberry pi?

gbourne|4 years ago

Really sad the hear this. The advantages of a managed service (Paas) are easily out weighted when they decide to shutdown your company...and with Heroku, Firebase, etc there is technology lock-in.

agustif|4 years ago

I could recommend Dokku and Ledokku as they are a fine self-host alternative for small PaaS operation needs.

- https://dokku.com/

- https://www.ledokku.com/

If you don't like to self-host, I've been happy with onrender for my PaaS needs. and Vercel/Netlify are excelent for your frontend needs.

noobermin|4 years ago

The problem with *AAS is one day they decide they don't like you and you're caught out in the rain. It's pretty difficult to gauge when and if that will happen and thus assess the risk.

forgingahead|4 years ago

This is very worrying - do update this thread if you can get a resolution on this. I'm surprised to see this to be honest, but it's a good reminder to all who use cloud services to have a strong "fire alarm" plan whereby you can deploy quickly elsewhere without too much downtime to your app customers.

nicholasreed|4 years ago

Downtime is one thing, data loss is another. Easy to redeploy elsewhere, but backups/etc were all on heroku-linked services.

I'll definitely be updating the thread with however the now-started legal process plays out.

markus_zhang|4 years ago

I hope you get data back at least. Can I ask why did you consider a cloud host initially?

nicholasreed|4 years ago

Easy deployment and scaling of resources a decade ago, familiarity and not too expensive to switch as time has progressed (of course I host things elsewhere, just have a lot of client/personal data on Heroku).