-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Microsoft IIS Servers Vulnerable to FTP Attack
http://www.pcworld.com/article/171331/microsoft_iis_servers_vulnerable_to_ftp_attack.html
Unpatched Flaw Could Take Down Microsoft's IIS Server
http://www.pcworld.com/businesscenter/article/171151/unpatched_flaw_could_take_down_microsofts_iis_server.html
Microsoft IIS Zero-Day Vulnerability Reported
,----[ Quote ]
| Exploit code affecting the FTP module for certain versions of Microsoft IIS
| has been posted online. US-CERT recommends taking countermeasures.
`----
http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=219500678&subSection=News
Recent:
Why are you not running Apache? New IIS holes should make you rethink your web
server
,----[ Quote ]
| It has been a while since I have played with Apache, I will admit that. The
| last time I used it, version 2.0 was the norm, and version 2.2 was just
| coming out of beta. Today of version 2.2.11 is the current version. What got
| me thinking about Apache was partially nostalgia and partially head banging
| and continued frustration with government use of IIS, especially given the
| exciting events this week.
`----
http://www.linuxjournal.com/content/why-are-you-not-running-apache-new-iis-holes-should-make-you-rething-your-web-server
Microsoft IIS hole fells university server
,----[ Quote ]
| Hackers have wasted no time targeting a gaping hole in Microsoft's Internet
| Information Services webserver, according to administrators at Ball State
| University, who say servers that used the program were breached on Monday
`----
http://www.theregister.co.uk/2009/05/20/iis_bug_fells_university_server/
Step-By-Step: Moving Your Server To Linux
,----[ Quote ]
| Many of the steps to an Ubuntu Linux server setup are either trivial (e.g.,
| selecting a language) or similar to the desktop installation process (e.g.,
| choosing a time zone or providing information to set up a default user
| account). Others, however, are very different from the Ubuntu desktop setup
| process, and some require your careful attention.
`----
http://www.bmighty.com/hardware_software/showArticle.jhtml?articleID=212901070
NSW Government job [IIS] website hacked
,----[ Quote ]
| Like you, I get masses of spam. I knew it wasn't from jobs.nsw.gov.au no
| matter how much it pretended to be. I deleted it figuring it was âjust
| anotherâ bit of junk mail, although I was surprised to find one purporting to
| be from the NSW Government job board; that was definitely a new one on me!
|
| Had I thought about it deeper I might have considered this was no ordinary
| spam. This time there was a direct relationship between how the spammers got
| my e-mail address and the organisation they purported to represent.
|
| It turns out the Department of Commerce has taken this whole incident very
| seriously indeed, and far more than common garden-variety spam would
| necessitate.
|
| If you visit the site jobs.nsw.gov.au you will see it is inaccessible, and in
| fact, has been for a week. A message advises that the system is down
| for âsystem maintenance.â
`----
http://www.itwire.com/content/view/22888/1054/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkqi+uIACgkQU4xAY3RXLo5fpwCeNseY55cu5YwLpDBvBguuX3Yp
9lYAn0GqRcDMP8lY1v5Rpf4MJdGxyxKv
=UFen
-----END PGP SIGNATURE-----
|
|