Firewalls: Re: fairly recent web server compromise...

Firewalls
(November 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: fairly recent web server compromise...
From:	Mark <mark @ lochard . com . au>
Date:	Thu, 9 Nov 1995 10:11:14 +1000 (EET)
To:	stephen @ networks . com
Cc:	firewalls @ GreatCircle . COM
In-reply-to:	<9511081708 . AA01186 @ thyrsus . imonics . com> from "Stephen Schaefer - Network Computing Solutions" at Nov 8, 95 12:08:53 pm

>So far, I've seen on this list three theories on what the perpetrators
>call themselves (MGM/UA, ILF, PLA) and three theories on how they did

My understanding is MGM/UA still have root access to the files. Panic!

:)

>it (world read/write-mountable file system, sendmail, httpd).  If I
>were trying to get hard numbers for risk assessment, I'd be lost.  Can
>anyone identify someone personally involved in the details of the
>incident, and produce a statement from them?  Thanks,

Who cares.

Mark

References:

Re: fairly recent web server compromise...
From: Stephen Schaefer - Network Computing Solutions <sps @ imonics . com>

Indexed By Date	Previous:	Restricting URL's From: Mike Culver <mculver @ ncelec . com>
Indexed By Date	Next:	Re: Restricting URL's From: gdonl @ gv . ssi1 . com (Don Lewis)
Indexed By Thread	Previous:	Re: fairly recent web server compromise... From: "Ian C. Blenke" <iblenke @ blenke . com>
Indexed By Thread	Next:	Re: fairly recent web server compromise... From: Dermot Tynan <dtynan @ fws . ilo . dec . com>