Re: Tens of Thousands of Web Sites Defaced

Home	Messages Index

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index

Re: Tens of Thousands of Web Sites Defaced

Subject: Re: Tens of Thousands of Web Sites Defaced
From: Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx>
Date: Tue, 23 May 2006 08:03:16 +0100
Newsgroups: comp.os.linux.advocacy
Organization: schestowitz.com / MCC / Manchester University
References: <4734797.vOHUmRJkJT@schestowitz.com> <1148057508.888952.239940@g10g2000cwb.googlegroups.com> <1148326154.596483.61930@u72g2000cwu.googlegroups.com>
Reply-to: newsgroups@xxxxxxxxxxxxxxx
User-agent: KNode/0.7.2

__/ [ vrataj@xxxxxxxxx ] on Monday 22 May 2006 20:29 \__

> I think this was done through an ASP form mailer script that is
> installed by
> default on these hosting accounts.
> 
> The hack seems to have been done through a asp script that is
> automatically installed on all hosting customers accounts on these
> particular servers.
> 
> The mass defacement was placed in a sub directory on each site.
> /ssfm/isko.htm
> 
> See
> http://www.stokia.com/news/iskorpitx-iis-ssfm-hack-info.htm for our
> complete
> analysis.

So there was a point to this assessment after all. ASP, _as well as the
clueless host_, using that closed-source black box, are to blame. Open
Source -> Open to supervision.

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index