| tinfoil.music DoS -- Updated, more info |
 |
 |
|
So far it looks like nothing was comprimised, atleast not according to timestamps on the files. Updated, hit read more if you want the dirty bits. I have gone through the Apache logs provided by my host, Gradwell.com and with their help it looks like the attacker himself (or herself, I suppose) didn't do the damage. Rather, it looks like the sentinal software that keeps an eye on this site may have over-reacted somewhat with the persistance and frequency of the crack attempts and modified the .htaccess file to block just about everyone. There was a total of 140-150 attempts to break in over a short period of time. Each attempt was made by someone using multiple proxies, but each attempt also made use of a script file hosted by http://www.turkmirc.de. I've contacted the people providing services to turkmirc.de (Go Daddy for DNS and netdirect.de/internetserviceteam.com for hosting) and have supplied them with the apache logs. Hopefully they shut it down for facilitating, which I would think is a violation of their TOS. The software we use is Nuke Sentinal and it is vital considering that phpNuke is probably the shitiest CMS software when it comes to security and general cleanliness of code. However, when I went with phpNuke back in 2001, there was relativly little else out there other than slashcode, so I went with it. Now, we are pretty much stuck with it because there is just WAY to much content to dump and move to another CMS. I've tweaked the sentinal software. Hopefully this won't happen again. Add this page to your favorite Social Bookmarking websites          Add your comment
|
||||
