~*~*Hackers Deface Thousands Of Domains*~*~

***RogueSpy*** · March 21st, 2002, 05:44 AM

I ran across this article while scanning the web for newz. Thought it was pretty interesting. Anyone want to discuss it?

http://www.newsbytes.com/news/02/175343.html

**MickPalmer** · March 21st, 2002, 06:50 AM

its more like script kiddys deface websites not HACKERS!!!

**KublaiKhan** · March 21st, 2002, 06:54 AM

Sheesh.........those who deface websites are really quite lame.

Though the article did mention that the hosting company used IIS.......just another reason to use Apache, I suppose......

It would be interesting, though, to figure out how often IIS domains were cracked, as opposed to Apache or other domains. Adjusted for total number of servers, naturally.

**Tigger** · March 21st, 2002, 07:12 AM

Its sounds like those kids are back at it.......

***s0nIc*** · March 21st, 2002, 07:27 AM

Hmm.. i guess Mr. Admin 4got to double check..

**Mankan** · March 21st, 2002, 10:22 AM

I have formed a little theory on the matter. I think that there are more security bugs in IIS than in Apache because it's not developed as open cource, but this is just part of the reason.
THe major reason, I think, is that traditionally, unix has required quite some knowledge to admin. With this comes the security thinking that makes admins look out for patches and bug reports and the like.

Any idiot can configure IIS and so doesn't necessarily have the security thinking. I mean, it is still possible to find IIS that are vulnerable to ::$DATA and that was like three years ago the report came.

I recon quite an amount of the admins for different IIS-servers out there doesn't care much for service packs, patches or in the case of Microsoft - pathces for the patches.

Just my two cents though

Cheers

**BrainStop** · March 21st, 2002, 10:30 AM

Originally posted here by KublaiKhan
It would be interesting, though, to figure out how often IIS domains were cracked, as opposed to Apache or other domains. Adjusted for total number of servers, naturally.

Here's a part of the statistic, Kublai:

The Alldas defacement archive counted by OS:

Alldas OS statistics

Cheers,

BrainStop

**KublaiKhan** · March 21st, 2002, 10:42 AM

Hrm........kinda what I expected........

17927 time(s)
a "Windows"
Host has been defaced, which is 59.767 percent of all archived defacements

Followed by Linux, with 20%, and "Unknown", with 9%.......

Interesting, though, that Novell is at the bottom of the list. 'wonder what they've done right, that they don't get cracked? Or is it just that nobody uses it much?

**Pooh-Bear** · March 21st, 2002, 10:42 AM

That´s some sad reading BrainStop
But I can help to wonder if any of the companies in the article asked on what platform the servers used. Or for that matter if they asked Verisign if it was them in person that took care of the servers.
I do think that the company should´ve informed their customers about this but it´s a two way street and asking don´t cost anything.

**SSJVegeta-Sei** · March 21st, 2002, 08:33 PM

Yet they still call the defacers "hackers"! ARRRRGGGHHHHHHH!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

SSJVegeta-Sei

Thread: ~~Hackers Deface Thousands Of Domains~~

Thread Tools

Display