Hi, >From the link I read http://www.net-security.org/secworld.php?id=14923seems the guy got root to the servers through uploading a webshell to the cms
On Mon, May 20, 2013 at 11:48 PM, Robin Wood <[email protected]> wrote: > Not really a hack if all that happened was that they found indexing on a > few directories. > > > On 20 May 2013 16:36, Ryan Dewhurst <[email protected]> wrote: > >> Anyone a member of their group on linkedin? Seems they posted their >> official reply there, but I'm not a member and they're unlikely to aprove >> my membership request. >> >> >> On Mon, May 20, 2013 at 5:27 PM, David Hoelzer < >> [email protected]> wrote: >> >>> The "human error..." resulting in directory indexing is kinda funny to >>> me. I keep telling people, if you don't want people to access something, >>> don't put it on your web server... :) Turning off directory indexing >>> clearly isn't the fix! >>> >>> On May 19, 2013, at 11:53 AM, Javier Villanueva <[email protected]> >>> wrote: >>> >>> >>> http://www.ehackingnews.com/2013/05/ec-council-hacked-by-godzilla-for.html >>> _______________________________________________ >>> Pauldotcom mailing list >>> [email protected] >>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >>> Main Web Site: http://pauldotcom.com >>> >>> >>> >>> _______________________________________________ >>> Pauldotcom mailing list >>> [email protected] >>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >>> Main Web Site: http://pauldotcom.com >>> >> >> >> _______________________________________________ >> Pauldotcom mailing list >> [email protected] >> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >> Main Web Site: http://pauldotcom.com >> > > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > -- Regards Charles Watathi http://netsecuritystuff.wordpress.com<https://netsecuritystuff.wordpress.com/> <http://netsecuritystuff.blogspot.com>
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
