[Techtalk] Server was broken into ... what good tools are there to probe vulnerabilities?
jennyw
jennyw at dangerousideas.com
Wed Nov 21 13:45:47 EST 2001
Yeah, but then why leave html files with what would be defacements in the
document root of a couple of Web sites? mafia.html was in the root of one,
and bedul.html in the root of another. I've seen these particular
defacements before on other sites ...
Anyway, I'm going to try to get my hosting company to reset the machine.
We'll see what happens ...
So, where do you guys learn all this stuff, anyway? I suppose you might get
paid for it or something ...
Jen
----- Original Message -----
From: "Raven, corporate courtesan" <raven at oneeyedcrow.net>
To: <techtalk at linuxchix.org>
Sent: Wednesday, November 21, 2001 12:30 PM
Subject: Re: [Techtalk] Server was broken into ... what good tools are there
to probe vulnerabilities?
> Heya --
>
> Quoth Michael Carson (Wed, Nov 21, 2001 at 02:44:01PM -0500):
> > The real pros aren't after a defacement, most of the time, and
> > increasingly, neither are the script kiddies. They may be using you as
> > a launch point for attacks against another system, as a file repository,
> > as a place to run a chat or game server, as a launch point for DDoS
> > attacks, or even as one way to get more CPU time for SETI at Home.
>
> Yah. In the last few months, I chased a blackhat (or several
> working together) through nine Unix boxes. They only did something
> obvious one time out of the nine. More often they're happier if you
> don't notice they're there, so they can use the box for their own
> purposes. And putting up a big splashy defacement is a surefire way to
> let you know they're there.
>
> If you're interested in this sort of thing, I would highly
> recommmend checking out the Honeynet Project
> (http://project.honeynet.org). Fascinating stuff, and you can really
> get a good sense of what the bad guys out there are doing day to day,
> and sometimes even of why.
>
> Cheers,
> Raven
>
> "Get paranoid, Riff! Get real paranoid, Riff!"
> -- call lines from the Rocky Horror Picture Show
>
> _______________________________________________
> Techtalk mailing list
> Techtalk at linuxchix.org
> http://www.linuxchix.org/mailman/listinfo/techtalk
>
>
>
More information about the Techtalk
mailing list