07-02-2003, 03:06 PM | #1 (permalink) | |
Human
Administrator
Location: Chicago
|
Looks like it may be time to check TFPs security...
According to <a href="http://www.sfgate.com/cgi-bin/article.cgi?f=/news/archive/2003/07/02/financial1239EDT0109.DTL&type=tech">this article</a> July 6 should prove to be a very interesting day on the internet!
Quote:
__________________
Le temps détruit tout "Musicians are the carriers and communicators of spirit in the most immediate sense." - Kurt Elling |
|
07-02-2003, 04:06 PM | #2 (permalink) |
Exhausted
Location: Northeastern US - please send help!
|
Swell... because I don't have enough fun finding my email through the acres of spam, now I'm gonna have a hard time hitting my favorite web sites.
Ah, technology... how you love to play with our minds.
__________________
"If you're walking on thin ice, you may as well go ahead and dance." |
07-02-2003, 07:38 PM | #4 (permalink) |
Psycho
Location: Toronto
|
I work in a web hosting support department...Mondays are typically bad days for us. This doesn't bode well. We even got a general warning in the company email.
I hope those linux servers we're running are patched...
__________________
perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);' |
07-03-2003, 02:26 AM | #5 (permalink) |
High Honorary Junkie
Location: Tri-state.
|
The scale sounds pretty dramatic, so we'll see what happens. But to be honest, I don't think that it'll be a huge problem. Plus, if a really popular website is defaced, it shouldn't have been vulnerable in the first place (even though I'm not trying to *blame* the website).
Imagine, though, watching the vandalism unfold from Akamai headquarters... |
07-03-2003, 07:14 AM | #7 (permalink) |
Banned
|
Hacker competition might be corrupting sites on 6th this month
http://www.zone-h.org/en/news/read/id=2989/
US warns of hacker attacks Ted Bridis 07/03/2003 Stop Cyberterrorism THE US government and private technology experts have warned that hackers plan to attack thousands of websites on Sunday in a loosely co-ordinated "contest" that could disrupt Internet traffic. Organisers established a website, defacers-challenge.com, which was shut down early Wednesday evening. Before it was removed, the site listed in broken English the rules for hackers who might participate. It cautioned that "deface its crime" – an apparent acknowledgment that vandalising internet pages is illegal. The US Department of Homeland Security said that it was aware of the hackers' plans but did not expect to issue any formal public warnings. The Chief Information Officers Council, part of the Office of Management and Budget, cautioned US agencies and instructed experts to tighten security at federal websites. "Frankly, hacker challenges occur frequently, and we don't think they all rise to the level of a warning," Homeland Security spokesman David Wray said. Affinity Internet Inc. of Fort Lauderdale, Florida, which through a subsidiary operated the computer servers where the hacker website was located, shut down the site for violating a service agreement, Affinity spokeswoman Laura Weir said. The company declined to identify the Affinity customer who set up the Internet site, citing privacy restrictions. Records show the Web address was registered June 21. --------------------------------- One source says the winner has to corrupt 6k sits in smallest amount of time and they estimate 20k sites will be affected and yet the agency thinks it's not a major threat. Media might be hyping about stuff cos hackers sound mediasexy topic to hysterize about. What do you think, anybody got better insight to these things? |
07-03-2003, 08:28 AM | #8 (permalink) | |
Tilted
Location: Ottawa, ON, Canada
|
Quote:
The guys/girls out there doing this are going for sheer body count (server count?) Which means that rather than targetting the biggest, most secure sites, something like yahoo for example, they will go for sites that have a fair number of regular users and might not have the biggest budget to stay on top of security stuff. Well known exploits will be attacked first. Means that the sites that are going to be hurt the most are the cliched mom and pop e business sites and well travelled community sites that are run by people in their spare time and might not have half a dozen full time security guys. It would be funny to see MS defaced or the white house page with some funny graffiti all over it, but that's not going to happen. Instead, it'll be the guy up the street who delivers fresh baked goods out of his website to your door. Someone who does not have the technical know how to secure a server and figure out what he did wrong in setting it up. More importantly, it'll be people who might not have ghosted servers and full database backups done hourly. Sorry about the rant, it's probably pretty obvious I hold skript k1dd13s and 1337 h@x0rs in low regard... All that scaremongering aside though, the target is 6k sites. The number of websites out there is orders of magnitue larger. Chances of being singled out are pretty slim. From what I've seen thus far, the tfp code is pretty damned solid, which implies that the server is likely hardened as well. There are easier targets out there. |
|
07-03-2003, 09:11 AM | #9 (permalink) |
Human
Administrator
Location: Chicago
|
heh, sorry guys, I didn't mean to imply I actually thought TFP was in danger - it was a joke Sty does a great job on the server so I feel pretty secure about it.
__________________
Le temps détruit tout "Musicians are the carriers and communicators of spirit in the most immediate sense." - Kurt Elling |
Tags |
check, security, tfps, time |
|
|