Jump to content

pclinuxonline site: 'hacked' again

chris:b

By chris:b
in Everything Linux

 Share

Recommended Posts

  • Replies 35
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Gowator Platinum

Gowator

Posted
Posted
Things get even more interesting. I tried the pclinuxonline site this morning and was redirected to a lovely porn site. Anal sex is NOT something I really want to see at 7 AM. Especially at work.

Heck,

I'd rather not be at qwork at 7AM either .....

 

Im in WinBlows right now ... so better not to check....

 

Bastards !!!!!!!!!!!!!!!!!!1

Link to comment
Share on other sites
Ronin Awesome

Ronin

Posted
Posted
Heck,

I'd rather not be at qwork at 7AM either .....

 

Im in WinBlows right now ... so better not to check....

 

Bastards !!!!!!!!!!!!!!!!!!1

Go for it Gowator.. :D I did at work just to see what happens. Homepage hijack and some "interesting" toolbars. Nothing that can't be fixed with Spybot and Adaware though.

Link to comment
Share on other sites
Guest anon

Guest anon

Posted
Posted
I pm-ed Texstar, hope he gets it; I do think that by now he knows...

I e-mailed him also and offered some help. Lets hope we never get that shit happening here.

Link to comment
Share on other sites
Michel MUB Addict

Michel

Posted
Posted (edited)

I don't know how they hacked it, but if it are certain scripts or so that got "bad" input, he maybe could have a look here if the site is using apache .....

 

http://www.modsecurity.org/

 

as far as I can tell it protects against the "bad" input. Ofcourse you have to say what is allowed and what not.

 

It would be better if the system itself was secure and I hope they'll get it fixed ....., but maybe this can help also.

Edited by Michel
Link to comment
Share on other sites
Ghil Vertefeuille Awesome

Ghil Vertefeuille

Posted
Posted

it's okay now, everything seems to be back to normal

 

Okay, at least the hacker was kind enough to give me a hint on where to find the security hole this time. I've gone ahead and found the Nuke Cops patch for admin.php and applied it. I've also removed yet another god level admin account from the database. This is *not* the way to start two mornings in a row, let me tell ya. - TheDarb
Link to comment
Share on other sites
AussieJohn Mandriva Guru

AussieJohn

Posted
Posted

I often think it is such a pity that more research is not being done to develop a method of detecting and tracking these kind of filthy scum. I know that they often use peoples highjacked computers but people who do not check to make sure that their computer is suitably protected should be charged for contributory negligence as well.

 

I have no idea how these sort of things done technically, so can anyone tell me whether this effort was done by a windows type script kiddie or someone with linux knowledge? If the offending mongrel does get caught finally, I hope someone will work him over because the LAW certainly won't. At most he would only get a slap on the wrist.

 

Cheerup Texstar.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Go to topic listing
×
×
  • Create New...