Re: [osdcmy-public] mod_wsgi Meetup on Late September
On Tue, 2010-08-31 at 07:50 +0800, sweemeng ng wrote: Apparently it is on a october, detail coming soon Yup. Graham will update us on his schedule later. Thanks Swee Meng for helping up! :) On Tue, Aug 31, 2010 at 12:27 PM, Muhd Syazwan Md Khusaini jipangmenje...@gmail.com wrote: On Tue, 2010-08-31 at 07:50 +0800, sweemeng ng wrote: Apparently it is on a october, detail coming soon just don't too soon.. got LinuxVarsiti and GeekCamp SG to attend :p On Mon, Aug 30, 2010 at 11:08 PM, Harisfazillah Jamel linuxmalay...@gmail.com wrote: Thanks Sweeng Meng ... On Mon, Aug 30, 2010 at 4:36 PM, sweemeng ng swees...@gmail.com wrote: I suggest that we can use hackerspacekl or I could ask for our usual foss.my meetup spot. will confirm soon On Mon, Aug 30, 2010 at 4:18 PM, Soares Chen Ruo Fei crf2...@gmail.com wrote: Hi all, Graham Dumpleton, author of mod_wsgi, is travelling to Malaysia on late September. Is anyone here at KL interested to help organize a meetup on mod_wsgi? I am unable to help much as I stay in Penang. More details is available on Dumpleton's blog: http://blog.dscpl.com.au/2010/08/2010-modwsgi-world-road-show.html Regards, Soares Chen -- -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
[osdcmy-public] Fwd: Intrusion Prevention
-- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
On Tue, 2010-08-31 at 21:26 +0800, simpleLinux wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en As far as my knowledge goes, intrusion prevention can be only done by applying appropriate security measure. Good security practice always comes in handy. Maybe there are tools to make that easier in the sense of checking for security holes, but I don't know any of them. Two things that I can think of how this can happen is either the server security problem or you web apps. IMHO, Apache web server got some configurations to prevent this, but that's up to the admin to figure that out (Google is your kind friend). Just my 2 cent. -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
salam. are you running your own web server ? or shared hosting ? what os are you using ? if you are running ubuntu, try using the tools for firewall and apparmor. starting point: http://www.ubuntu.com/server/features/security https://help.ubuntu.com/10.04/serverguide/C/firewall.html also worth the money to buy a copy of a server admin book - which provides a 1-2-3 of setting up a secure sever. i use michael jang's - but this is for ubuntu 8.04, so will be a little outdated compared to the current 10.04lts. but the principles are the same. there a lot of steps, so no shortcuts. On Tue, Aug 31, 2010 at 9:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
I'm hosting my own web on my own server.. There is two computers namely server are currently hosting http://myne.tkand ftp://ftp.myne.tk. 1st PC is hosting http server, another one is ftp server I use http server in Windows, while ftp is using Fedora Core... - I configured the DDOS prevention at my router. (I forgot to do so... hehehehehe) * Enable Anti-DOS* * Whole System Flood: SYN * * packets/sec* * Whole System Flood: FIN * * packets/sec* * Whole System Flood: UDP * * packets/sec* * Whole System Flood: ICMP * * packets/sec* * Per-Source IP Flood: SYN * * packets/sec* * Per-Source IP Flood: FIN * * packets/sec* * Per-Source IP Flood: UDP * * packets/sec* * Per-Source IP Flood: ICMP * * packets/sec* * TCP/UDP PortScan * High Low * Sensitivity * * ICMP Smurf * * IP Land * * IP Spoof * * IP TearDrop * * PingOfDeath * * TCP Scan * * TCP SynWithData * * UDP Bomb * * UDP EchoChargen * On Tue, Aug 31, 2010 at 11:59 PM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: salam. are you running your own web server ? or shared hosting ? what os are you using ? if you are running ubuntu, try using the tools for firewall and apparmor. starting point: http://www.ubuntu.com/server/features/security https://help.ubuntu.com/10.04/serverguide/C/firewall.html also worth the money to buy a copy of a server admin book - which provides a 1-2-3 of setting up a secure sever. i use michael jang's - but this is for ubuntu 8.04, so will be a little outdated compared to the current 10.04lts. but the principles are the same. there a lot of steps, so no shortcuts. On Tue, Aug 31, 2010 at 9:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=enattachment: bandwidth.jpg
Re: [osdcmy-public] Fwd: Intrusion Prevention
yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
My server information: http://myne.tk/info/index.php?disp=dynamic (phpSysInfo - 3.0 http://phpsysinfo.sourceforge.net/) --- hahahhaa, memang orang indonesia ni mahir dalam hacking2 ni. habis lebih 300 meg saya habis... sob..sob... On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to
Re: [osdcmy-public] Fwd: Intrusion Prevention
I have share tools for server and web application defence on OWASP Malaysia FB http://www.facebook.com/OWASP.Malaysia On Wed, Sep 1, 2010 at 12:24 AM, simpleLinux 2fz...@gmail.com wrote: My server information: http://myne.tk/info/index.php?disp=dynamic (phpSysInfo - 3.0) --- hahahhaa, memang orang indonesia ni mahir dalam hacking2 ni. habis lebih 300 meg saya habis... sob..sob... On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this
Re: [osdcmy-public] Fwd: Intrusion Prevention
revenge http://zone-h.org/archive/published=0/notifier=ahlisyurgacrew Total notifications: *234* of which *234* single ip and *0* mass defacements On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.my wrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia
Re: [osdcmy-public] Fwd: Intrusion Prevention
On Wed, Sep 1, 2010 at 3:38 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: revenge http://zone-h.org/archive/published=0/notifier=ahlisyurgacrew Total notifications: *234* of which *234* single ip and *0* mass defacements 294 - 234, but still... On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.mywrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this
Re: [osdcmy-public] Fwd: Intrusion Prevention
Hai korang ni aku tengah seram website aku termasuk kat dalam list hackers indon tu... hehehehehe On Wed, Sep 1, 2010 at 3:46 AM, Hasan Abu Bakar ha...@kelate.com.my wrote: On Wed, Sep 1, 2010 at 3:38 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: revenge http://zone-h.org/archive/published=0/notifier=ahlisyurgacrew Total notifications: *234* of which *234* single ip and *0* mass defacements 294 - 234, but still... On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.mywrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to
Re: [osdcmy-public] Fwd: Intrusion Prevention
https://www.zone-h.org/register CAYALAH!! VIVA MALAYSIA. On Wed, Sep 1, 2010 at 5:55 AM, simpleLinux 2fz...@gmail.com wrote: Hai korang ni aku tengah seram website aku termasuk kat dalam list hackers indon tu... hehehehehe On Wed, Sep 1, 2010 at 3:46 AM, Hasan Abu Bakar ha...@kelate.com.mywrote: On Wed, Sep 1, 2010 at 3:38 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: revenge http://zone-h.org/archive/published=0/notifier=ahlisyurgacrew Total notifications: *234* of which *234* single ip and *0* mass defacements 294 - 234, but still... On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.mywrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577
Re: [osdcmy-public] Fwd: Intrusion Prevention
To win this we have to make sure we denied them of from defacing of any of Malaysian Website ... This is not all about win or lose. Its all about strategic Secure our website. Help our webmasters On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.my wrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
On Wed, Sep 1, 2010 at 8:20 AM, Harisfazillah Jamel linuxmalay...@gmail.com wrote: To win this we have to make sure we denied them of from defacing of any of Malaysian Website ... This is not all about win or lose. Its all about strategic Secure our website. Help our webmasters Yep..you lose when people can deface your websites. What I see when some websites got hacked is the admin or webmasters, who didn't secure/patch their servers. It's not about the hackers themselves. Don't point the finger at somebody..Don't blame the thieves if you didn't lock your house.. On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.my wrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en
Re: [osdcmy-public] Fwd: Intrusion Prevention
bodoh betul lah apa yg nak dibanggakan dengan aktiviti yang salah ? indon hack malaysian site adalah perbuatan yg salah malaysian hack indon site pun perbuatan yg salah ! semua akan rugi dan dapat publisiti yg buruk terutama the open source community sebab dalam list yg kena hack beratus guna linux ! On Wed, Sep 1, 2010 at 3:46 AM, Hasan Abu Bakar ha...@kelate.com.my wrote: On Wed, Sep 1, 2010 at 3:38 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: revenge http://zone-h.org/archive/published=0/notifier=ahlisyurgacrew Total notifications: *234* of which *234* single ip and *0* mass defacements 294 - 234, but still... On Wed, Sep 1, 2010 at 3:35 AM, Hasan Abu Bakar ha...@kelate.com.mywrote: On Wed, Sep 1, 2010 at 12:23 AM, Mohd Yusnizam Mohamad myusni...@opensource.org.my wrote: FYI http://nasional.kompas.com/read/2010/08/31/22434071/Lawan.Pelecehan.oleh.Malaysia.-5 Adakah kita kalah pada kemerdekaan tahun ni? 294 website Malaysia kena hack. where have all the Malaysian hackers gone? :( Please secure your sites. At least ask if you don't know how to. Only hackers can fight hackers. On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. On Tue, Aug 31, 2010 at 11:55 PM, Ihsan Junaidi Ibrahim ihsan.juna...@gmail.com wrote: You can't drop DDOS at your gateway or the server. You'll need your bandwidth provider to drop the traffic at their router or firewall. If you run BGP with your provider, you can blackhole or flowspec the DDOS traffic. On 31 August 2010 21:45, arora anne protocoluni...@gmail.com wrote: modsecurity-web application firewall + ossec On Tue, Aug 31, 2010 at 8:26 PM, simpleLinux 2fz...@gmail.com wrote: -- Forwarded message -- From: simpleLinux 2fz...@gmail.com Date: Tue, Aug 31, 2010 at 9:25 PM Subject: Intrusion Prevention To: owasp-malaysia-boun...@lists.owasp.org Is there any tools that we can use to prevent intrusion? Paid or Free is not the hot cake... Also, is there any patch we can use for Apache Web Server? I'm worried because there IS an attempt to deface my server, as you all can see here my server has been defaced: http://myne.tk/hacked/Indonesia.html An attack of such DDOS also detected on 31 August 2010 on 00:09 where it takes 335 Megabytes of free bandwidth out during the attack. -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Fariz Luqman The Chairman of SimpleLinux Visit: http://www.simplelinux.tk There IS a Malaysian Linux Distro -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Thank you for your time, Ihsan Junaidi Ibrahim -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page
Re: [osdcmy-public] Fwd: Intrusion Prevention
Chill out. try not to attack back. This may cause more angry for them at ID. we as MY, should defend as much as we can. seriously, i also has been pawned before. but not from ID, its from brazil. But i just chill. i make them bored.. when they put backdoor to access.. i just delete it. Try to fix holes.. if you using CMS. make sure you know what module / plugins been use. Just for note. the utusan got hacked by this vuln hole Joomla Component com_jomtube. You can try find the hole just using google. Put on google search inurl:com_jomtube then serach from malaysia... I hope this information helped. i still newbies.. at this stage we can see how much the web admin take care the domain. for DDOS. it will finish the bandwith. Check out what IP it come... maybe it not botnet. maybe it is jumping method using shell that a locate on other site (it's happen when we share hosting). From the pwned list.. i can see, thus domain were from f***o.com (sorry i can't mention it, contact me personaly if needed). Hope we can share about this more here. we can gather the information about how to secure MY //Sorry, broken english...sleepy right now. Selamat bersahur..salam merdeka 53 On Wed, Sep 1, 2010 at 1:50 AM, Harisfazillah Jamel linuxmalay...@gmail.com wrote: I have share tools for server and web application defence on OWASP Malaysia FB http://www.facebook.com/OWASP.Malaysia On Wed, Sep 1, 2010 at 12:24 AM, simpleLinux 2fz...@gmail.com wrote: My server information: http://myne.tk/info/index.php?disp=dynamic (phpSysInfo - 3.0) --- hahahhaa, memang orang indonesia ni mahir dalam hacking2 ni. habis lebih 300 meg saya habis... sob..sob... On Wed, Sep 1, 2010 at 12:21 AM, Raja Iskandar Shah rajaiskand...@gmail.com wrote: yup, betul tu. ddos need to be secured at the router. tapi memang sedih betul lah with the indon v malaysia cyber war. memang tak senang lena esp kalau ada .gov.my sites ! took us 4 weeks to secure the web app we developed. hosted on centos and ubuntu server lts (easier software management) kami punya own company sites on shared hosting tak dapat nak access ! tak tahu lah apa yg tengah jadi. -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.comosdcmy-list%2bunsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en -- * HTTP://WWW.MASOKIS.COM * -- Join Open Source Developers Club Malaysia http://www.osdc.my/ Facebook Fan page http://www.facebook.com/group.php?gid=98685301577 http://www.facebook.com/OSDC.my You received this message because you are subscribed to the Google Groups OSDC.my Mailing List group. To post to this group, send email to osdcmy-list@googlegroups.com To unsubscribe from this group, send email to osdcmy-list+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/osdcmy-list?hl=en