[Charlug] charlug.org defaced
Peter Senft
peter.senft at hpss.de
Thu Jan 21 11:42:11 EST 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi @all,
I did a maintenance update on my machine and had to restart the vm with
our charlug server. When I checked if everything is up and running I saw
that charlug.org was hacked. I did some forensics and it looks like they
only defaced the web part and left everything else as is. I guess they
came in via a security hole inside Mambo. For the moment I deactivated
apache completely. If somebody wants to step in and bring Mambo back to
life that would be great. If not then I will try to bring it back the
earliest on the weekend.
Peter
- --
/"\ | Peter Senft
\ / ASCII ribbon campaign | E-Mail : peter.senft at hpss.de
X against HTML mail | FIDO : 2:2476/847.34
/ \ | ICQ : 62090394
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAktYg+IACgkQ8C47DFW4ANOXMgCgrv2k6lthM3lztBIngSMpnSgI
aeAAn3EFSWdqAyB4SBObbwXNPE+Ef7kA
=8mep
-----END PGP SIGNATURE-----
More information about the CharLUG
mailing list