Hello
Few weeks ago we discovered that two of our apache servers
has been victims of phishing attack.
The first one is running squirrelmail webmail and the second one
in running our extranet services for students and professors.
Both of them are using https and require authentication.
The two
On Tue, July 12, 2011 10:20, Frank Bonnet wrote:
Hello
Few weeks ago we discovered that two of our apache servers
has been victims of phishing attack.
The first one is running squirrelmail webmail and the second one
in running our extranet services for students and professors.
Both of
Hi,
Apache servers are not victims of phishing attacks.
Users are victims of phishing attacks.
As the OP is french, I'm continuing in french:
Comme je ne dis plus haut, tes serveurs ne peuvent pas ĂȘtre victimes d'une
attaque de phishing. Un phishing c'est une attaque par abus de confiance (ou
Thanks for the reply, where I must change it? On each vhost configuration or on
a global configuration?
Thanks for all your help.
Best regards.
-Mensaje original-
De: Eric Covener [mailto:cove...@gmail.com]
Enviado el: lunes, 11 de julio de 2011 15:53
Para: users@httpd.apache.org
Thanks for the reply, I use to separate all logs:
CustomLog /var/log/apache/domain1/access.log combined
CustomLog /var/log/apache/domain2/access.log combined
CustomLog /var/log/apache/domain2/access.log combined
But the problem is that with syslog-ng, on the remote host I
Hi All,
Please help me in understanding below mentioned error...
[error] (70014)End of file found: proxy: prefetch request body failed to
x.x.x.x:80 (x.x.x.x) from y.y.y.y ()
[error] (70007)The timeout specified has expired: proxy: prefetch request
body failed to x.x..x.x:80 (x.x.x.x) from
On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
Hi,
Apache servers are not victims of phishing attacks.
Users are victims of phishing attacks.
As the OP is french, I'm continuing in french:
Patrick, remember that one of the reasons we have these conversations on a
mailinglist is
Translation:
As I say above, your servers can not be victims of a phishing attack. A
phishing attack is a breach of confidence (or stupidity), and it is
therefore directly at the user level.
The only way to fight against phishing is to educate users. You can
always offer services in https, if
I have provided a translation. See my message. I agree he should have
continued in the language of this newsgroup.
Sander Temme wrote:
On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
Hi,
Apache servers are not victims of phishing attacks.
Users are victims of phishing attacks.
I think effectivelly users's requests have been redirected
to the hacked servers ...
I wonder how they do that because users access directly to
those servers ... they do not click in a fake email or anything
like that , those servers are well known of our users ,
the extranet and one webmail
On 12 juil. 2011, at 21:40, Frank Bonnet wrote:
I think effectivelly users's requests have been redirected
to the hacked servers ...
so it's not a phishing, it's more like a man-in-the-middle, or a DNS cache
poisoning...
The only way for you to know what happens is to act as victims do (doing
On 12 juil. 2011, at 18:49, Sander Temme wrote:
On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
Hi,
Apache servers are not victims of phishing attacks.
Users are victims of phishing attacks.
As the OP is french, I'm continuing in french:
Patrick, remember that one of the
On Tue, Jul 12, 2011 at 12:37 PM, prahlad kumar prankpla...@gmail.com wrote:
Hi All,
Please help me in understanding below mentioned error...
[error] (70014)End of file found: proxy: prefetch request body failed to
x.x.x.x:80 (x.x.x.x) from y.y.y.y ()
[error] (70007)The timeout specified has
On Mon, Jul 11, 2011 at 8:21 AM, Barry Scott barry.sc...@onelan.co.uk wrote:
We are porting our application to Fedora 15 and to systemd from SysV init.
The httpd configuraturation we are using work without problem on earlier
Fedora 13 systems.
We are hitting an odd problem with httpd handling
On Fri, Jul 8, 2011 at 5:34 PM, Rafael Hasson rafaelhas...@gmail.com wrote:
Hello all!
I've a webserver running PHP 5.2.17, Apache 2.2.17 and MySQL 5.5.13.
Tables' storage engine are MyISAM. I'm having a problem with all httpd
processes locking during peak hours.
Today while investigating
Frank Bonnet wrote:
I think effectivelly users's requests have been redirected
to the hacked servers ...
I wonder how they do that because users access directly to
those servers ... they do not click in a fake email or anything
like that , those servers are well known of our users ,
the
Answers inline
-Original Message-
From: Patrick Proniewski [mailto:patrick.proniew...@univ-lyon2.fr]
Sent: Wednesday, July 13, 2011 2:34 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Re: phishing problem
On 12 juil. 2011, at 21:40, Frank Bonnet wrote:
I think effectivelly
Am 12.07.2011 21:40, schrieb Frank Bonnet:
I think effectivelly users's requests have been redirected
to the hacked servers ...
Checked the access logs? If it's another server issuing the requests
you could notice by the the request IP addresses. Otherwise, use
only a HTTPS login - don't offer
18 matches
Mail list logo