...because Joomla.org was the target of these attacks too: "This morning, Joomla.org was defaced a few hours after releasing our new design. This is not a new security issue, but only poor system administration practices on our part. When we updated our Web sites with the Joomla 1.5.6 security fix released yesterday, we simply forgot to update one of our small, non-public development sites. Now, we could offer many excuses why it was overlookedwe were focused on fixing this vulnerability, creating the packages, and getting the word out. But the truth is, there is no excuse." --clip--
http://www.joomla.org/announcements/general-news/5202-why-you-should-upgrade-to-joomla-156.html If you are not familiar with this case check CVE-2008-3681 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3681 And the download link: http://www.joomla.org/download.html Juha-Matti _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
