PHP-Nuke (which PostNuke is a fork off) has always been know for being hideously insecure, with most of the vulnerabilities either to do with not checking supplied variables (SQL injection) or admin.php (the admin script for adding news/downloads/forums/etc).
downloads.postnuke.com was using a copy of paFileDB modified to be integrated as a PostNuke module, which would shift admin access for the downloads over to PN's admin.php. Could it be possible that the intruder got access to it via an admin.php vulnerability?
Myself, I like thttpd more, but when I need to use Apache, I stich to 1.3.x as I'm not used to 2.x for dynamic modules, and also 2.x conflicts with some PHP DSOs.
Yes, I would support them IF the performance was at least comparable to some of ATi/nVidia mid-high range cards (9800 Pro for example). I wouldn't support them if it performed like a TNT2.
Kinda ironic that in July 2003 AOL made a $2million donation to the Mozilla Foundation, and now their releasing an IE-based browser. Why not base it on either Firefox or the Gecko rendering engine?
Re:Apache 2.0.52 fixes 2.0.51 security regression
on
Apache 2.0.52 Released
·
· Score: 2, Informative
I still use 1.3.xx, as do many others. There was a hole found in 1.3.31 and older version to do with a buffer overflow in htpasswd that has been fixed in 1.3.32-dev. Proof that holes are still fixed.
I sometimes look up web sites of large companies/organizations and see they are running "Netscape-Enterprise", usually on Solaris. optus.net.au is an example.
Other than that, for a HTTP server everyones migrated to Apache, and for other stuff, everyones migrated to open source except some companies with deep pockets.
In.au, Family First is tiny. In some states, they don't even hold 1 seat, and in others, they hold 1 or 2 at best. I just hope none of the other political parties in.au say "wait, this is a great idea!" and copy them. What happened to "supervision"?
The U.S patent office just doesn't get it to do with hardware/software patents (i.e: allowing microsoft to patent sudo). The patent office needs a rethink of how they handle technology patents. Half the time, the patents are given out to companies/people who didn't come up with the idea, that just heared it somewhere else and got involved with it.
Happy birthday to you, OpenSSH! Happy birthday to you, happy birthday to you! Hip hip, hooray! Hip hip, hooray!
Good work OpenSSH team. Free, and it's better in 99% of areas than the commercial SSH implementation from ssh.com. Keep developing it, guys, and keep up the good work!
Intelligent spammers don't send their spew from Hotmail accounts, neither using Outlook, Webmail OR Outlook Express. All spammers use Hotmail for is for reply boxes (dropboxes) i.e "to receive your free mlm info pack, reply to mlmisdafrigginl33testandbest_64646@hotmail.com today!". They know Hotmail's WebDav interface and the Webmail interface have an outgoing mail limit, so it makes it useless for sending spams.
Most spammers use software that connects to Open Proxys (n00bs using AnalogX on their cable modem) and send spam via the proxys, which in 99% of cases are not logged.
I have never, ever received a spam from hotmail servers other than 419s sent via webmail (!!)
The IP at that link that the virus downloads the trojan files from, 209.171.43.27 belongs to netfirms.com Free/Paid web hosting with unmetered data transfer, who offers FTP for users to upload files. The account name it logs into is 'bawz', so I tried going to http://bawz.netfirms.com, which says:
The website you have requested has been cancelled.
Looks like they have disabled the HTML/Apache side of things on the 'bawz' account, but have left FTP open for the owner to collect their files and pack up (probably standard policy). But the trojan was using FTP, not HTTP, just then I checked and the FTP was still up. The HTTP server for account 'bawz' is on a seperate IP (still in the same/28 - 13 ips away), but that's how a lot of larger hosts configure things.
If you wanted to, you could login and delete the trojan files as the un/pw on that page is the guys master password for adding/downloading/deleting files:). Seriously, you could do that and stop the trojan from propagating until he finds another FTP server to [ab]use.
Bill Gates is the boogey man, SCO are monsters and that Tux is the Undisputed King of the software world.
Seriously, teach them about the different OSes in general, how computers work, what all the different parts of the PC do (I can't coun't how many times I've heared a case called a "hard drive", also have seen people who think Windows is the only OS and that there is no alternative) and how not to end up with a machine full of viruses that spammers are using as a zombie spambot machine.
In Australia, this service is already available from 3. It's expensive, and the coverage isn't great (roams onto GPRS when no coverage), but it's available at the 384kbps speeds. In.au, that's more than the upstream of most Cable Modems and DSL lines!
Is it just me, or is Google trying to get a monopoly on a lot of online stuff? First Gmail comes (which was good), then speculation that there's going to be a Joogle, now a Gbrowser. Yes, Google Search and Gmail are good, but isn't Google going a bit overboard here? And wouldn't the browser be for M$ Windows only, a bit like the Gmail tray checker?
SCO's case is built on its copyright to UNIX, the operating system from which Linux was derived in the early '90s.
Linux isn't a Unix derivative. It's a POSIX-compliant Unix clone, not a derivative of Unix. That why I don't think that SCO have any case against IBM and the Linux community.
Hook up a CCTV camera to your alarm system, and when the alarm goes off configure your PC to turn on the cameras. Then setup a webserver on your cable modem with live streaming videos of the intruder and stick signs everywhere "WARNING: You will be on a live streaming video hosted off my cable modem if you break in!".
Try Red Hat 5.2, its a bit old (circa 1998), but its not bloated and should work on older hardware. Don't bother with versions before 5.0 as versions before 5.0 are libc5 instead of glibc.
And my friend's server, using OpenSSL 0.9.6 as well as old OpenSSH/Apache/PHP/etc was rooted (Proberbly via OpenSSL) and someone started using it to DoS someones server. Sigh.
0.9.2b and 0.9.6b
on
Due Diligence?
·
· Score: -1, Offtopic
0.9.2b is weirdly popular because the extremely-popular Sun Cobalt RaQ 3 server appliance uses a security fixed 0.9.2b, but Sun Cobalt only released the fix for all thier appliances that use OpenSSL (Qube 3, RaQ 3/4/XTR/550 use OpenSSL) on October 1 2002 which left a large amount of servers vulnerable for a long time. 0.9.6b is popular because it is used in many places, including Cobalt RaQ 4 and XTR servers, Red Hat Linux 7.2/7.3/8.0 (Anyone know why RH8.0 is still 0.9.6b?) as well as a few versions of Mandrake. The significant amount of old unpatched versions is because there are many server admins with not much security knowledge (Mostly Cobalt RaQ users and people renting dedicated servers, I was once helping someone patch thier old Apache 1.3.19/mod_ssl/OpenSSL 0.9.6b/PHP 4.0.6 server once).
Why does clicking the bugzilla homepage link take me to http://bugzilla.mozilla.org saying report mozilla bugs here instead of the bugzilla website (http://www.mozilla.org/projects/bugzilla/)?
Slashdot Mirror
PHP-Nuke (which PostNuke is a fork off) has always been know for being hideously insecure, with most of the vulnerabilities either to do with not checking supplied variables (SQL injection) or admin.php (the admin script for adding news/downloads/forums/etc).
downloads.postnuke.com was using a copy of paFileDB modified to be integrated as a PostNuke module, which would shift admin access for the downloads over to PN's admin.php. Could it be possible that the intruder got access to it via an admin.php vulnerability?
Myself, I like thttpd more, but when I need to use Apache, I stich to 1.3.x as I'm not used to 2.x for dynamic modules, and also 2.x conflicts with some PHP DSOs.
Yes, I would support them IF the performance was at least comparable to some of ATi/nVidia mid-high range cards (9800 Pro for example). I wouldn't support them if it performed like a TNT2.
What happens if Windows spit out a BSOD while you driving down the freeway ;-)
ftp.mozilla.org = 64.12.168.243
[arin info]
OrgName: America Online, Inc.
OrgID: AMERIC-158
Address: 10600 Infantry Ridge Road
City: Manassas
StateProv: VA
PostalCode: 20109
Country: US
NetRange: 64.12.0.0 - 64.12.255.255
CIDR: 64.12.0.0/16
NetName: AOL-MTC
NetHandle: NET-64-12-0-0-1
Parent: NET-64-0-0-0-0
NetType: Direct Assignment
NameServer: DNS-01.NS.AOL.COM
NameServer: DNS-02.NS.AOL.COM
Comment:
RegDate: 1999-12-13
Updated: 1999-12-16
Kinda ironic that in July 2003 AOL made a $2million donation to the Mozilla Foundation, and now their releasing an IE-based browser. Why not base it on either Firefox or the Gecko rendering engine?
I still use 1.3.xx, as do many others. There was a hole found in 1.3.31 and older version to do with a buffer overflow in htpasswd that has been fixed in 1.3.32-dev. Proof that holes are still fixed.
n slist/Apache%20prior%201.3.32%20htpasswd%20buffer% 20overflow.plugin.html
http://www.computec.ch/projekte/atk/plugins/plugi
I sometimes look up web sites of large companies/organizations and see they are running "Netscape-Enterprise", usually on Solaris. optus.net.au is an example.
Other than that, for a HTTP server everyones migrated to Apache, and for other stuff, everyones migrated to open source except some companies with deep pockets.
In .au, Family First is tiny. In some states, they don't even hold 1 seat, and in others, they hold 1 or 2 at best. I just hope none of the other political parties in .au say "wait, this is a great idea!" and copy them. What happened to "supervision"?
I just hope people don't vote for them.
The U.S patent office just doesn't get it to do with hardware/software patents (i.e: allowing microsoft to patent sudo). The patent office needs a rethink of how they handle technology patents. Half the time, the patents are given out to companies/people who didn't come up with the idea, that just heared it somewhere else and got involved with it.
They need a rethink. A major one.
Happy birthday to you, OpenSSH! Happy birthday to you, happy birthday to you! Hip hip, hooray! Hip hip, hooray!
Good work OpenSSH team. Free, and it's better in 99% of areas than the commercial SSH implementation from ssh.com. Keep developing it, guys, and keep up the good work!
Intelligent spammers don't send their spew from Hotmail accounts, neither using Outlook, Webmail OR Outlook Express. All spammers use Hotmail for is for reply boxes (dropboxes) i.e "to receive your free mlm info pack, reply to mlmisdafrigginl33testandbest_64646@hotmail.com today!". They know Hotmail's WebDav interface and the Webmail interface have an outgoing mail limit, so it makes it useless for sending spams.
Most spammers use software that connects to Open Proxys (n00bs using AnalogX on their cable modem) and send spam via the proxys, which in 99% of cases are not logged.
I have never, ever received a spam from hotmail servers other than 419s sent via webmail (!!)
If you wanted to, you could login and delete the trojan files as the un/pw on that page is the guys master password for adding/downloading/deleting files
In .au, a X700 costs around $450. I'm stuck with a Riva128 on my Linux Box and a Radeon 9200SE on my new system :(.
Bill Gates is the boogey man, SCO are monsters and that Tux is the Undisputed King of the software world.
Seriously, teach them about the different OSes in general, how computers work, what all the different parts of the PC do (I can't coun't how many times I've heared a case called a "hard drive", also have seen people who think Windows is the only OS and that there is no alternative) and how not to end up with a machine full of viruses that spammers are using as a zombie spambot machine.
In Australia, this service is already available from 3. It's expensive, and the coverage isn't great (roams onto GPRS when no coverage), but it's available at the 384kbps speeds. In .au, that's more than the upstream of most Cable Modems and DSL lines!
Is it just me, or is Google trying to get a monopoly on a lot of online stuff? First Gmail comes (which was good), then speculation that there's going to be a Joogle, now a Gbrowser. Yes, Google Search and Gmail are good, but isn't Google going a bit overboard here? And wouldn't the browser be for M$ Windows only, a bit like the Gmail tray checker?
Hook up a CCTV camera to your alarm system, and when the alarm goes off configure your PC to turn on the cameras. Then setup a webserver on your cable modem with live streaming videos of the intruder and stick signs everywhere "WARNING: You will be on a live streaming video hosted off my cable modem if you break in!".
I'm waiting for one that can run Linux. No M$ here!
Try Red Hat 5.2, its a bit old (circa 1998), but its not bloated and should work on older hardware. Don't bother with versions before 5.0 as versions before 5.0 are libc5 instead of glibc.
And my friend's server, using OpenSSL 0.9.6 as well as old OpenSSH/Apache/PHP/etc was rooted (Proberbly via OpenSSL) and someone started using it to DoS someones server. Sigh.
0.9.2b is weirdly popular because the extremely-popular Sun Cobalt RaQ 3 server appliance uses a security fixed 0.9.2b, but Sun Cobalt only released the fix for all thier appliances that use OpenSSL (Qube 3, RaQ 3/4/XTR/550 use OpenSSL) on October 1 2002 which left a large amount of servers vulnerable for a long time. 0.9.6b is popular because it is used in many places, including Cobalt RaQ 4 and XTR servers, Red Hat Linux 7.2/7.3/8.0 (Anyone know why RH8.0 is still 0.9.6b?) as well as a few versions of Mandrake. The significant amount of old unpatched versions is because there are many server admins with not much security knowledge (Mostly Cobalt RaQ users and people renting dedicated servers, I was once helping someone patch thier old Apache 1.3.19/mod_ssl/OpenSSL 0.9.6b/PHP 4.0.6 server once).
I'm staying on Windows as my internet connection is very flakey on Linux.
Why does clicking the bugzilla homepage link take me to http://bugzilla.mozilla.org saying report mozilla bugs here instead of the bugzilla website (http://www.mozilla.org/projects/bugzilla/)?