D&C GLug - Home Page

[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Apache security flaw - my website cracked

 


Whats your friend's site address? I'll pen test it for you later to see how easy it was to hack.
 
As for legalities, it's illegal in England to gain access to one's restricted web files. Then again, others argue that if it's open for attack, it's not illegal as the doorway was always open.
 
You can prevent common exploits by keeping your server up-to-date as well as ensuring the code you use is secure.
 
Ed.
-----Original Message-----
From: list-bounces@xxxxxxxxxxxxx [mailto:list-bounces@xxxxxxxxxxxxx]On Behalf Of Ben Goodger
Sent: 19 July 2006 13:09
To: DCLUG List
Subject: [LUG] Apache security flaw - my website cracked

Hi

Some Scientologists have got into my friend's server, installing a redirect from my satire site to scientology.org.

How illegal is this?

How could it have happened?

And how can it be prevented?

--
Ben Goodger
#391382
---------------------

Mi admiras religiajn; ili estas fine ebliĝinta solvi la maljunegan demandon "kiel oni povas vivi sencerbe?".
-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html