WildCowboy said:Through the Interweb...
swingerofbirch said:Oh my dear lord. What hath Apple wrought. Fox trotting and bunny hopping with these ads.
It reminds me of a rather boastful country: England. At one time the sun never set on England. At one time it made the world's most unsinkable ship the Titanic.
Now England can barely fill a time zone and Titanic sits at the bottom of the ocean.
For shame Apple. For shame.
longofest said:...As we can see, with Apple attracting more attention to themselves, it looks like we may see more and more exploits.
...glad to see someone's with me here
longofest said:Was replying to nagroome's (sp?) post about mac users trying to assert that Mac is less vulnerable. I was making the point that we are often more vulnerable, even though exploits don't get written as often because we don't own as much of the market.
boncellis said:The more I think about it, the more it makes sense that this was in response to the advertisements--are they running in Europe as well as the States? Whoever it was probably tried several different localizations until he was able to pinpoint a hole in the .kr page.
shawnce said:...
You should see the logs from a Mac OS X server I run at home (good old little cube) that has publicly available ssh port... miles and miles of username / password attempts. That is why I have a 20 digit password minimum for any user on that system.
I was reading that they used the admin password, so maybe they got it while sleeping with the sysadmin...arn said:guess it depends how it was hacked
arn
I was talking about a personal server of mine, memorizing a strong 20+ character password is normal for me...ChrisA said:I only enable SSH from a narrow set if IP addresses. Even if one of your SSH users need access from a DHCP configured machine his IP address would come from a relatively small pool.
chuckzee said:The floodgates have opened
http://www.zone-h.org/en/defacements/filter/filter_defacer=By+Dinam/page=1/
Yup.arn said:just to stem the discussion, website hacks are common and are typically the result of poorly configured scripts or security holes in apache/php.
I think dinam needs a girlfriend or an alternative form of distraction, like maybe to go outside and play in the traffic for a bit judging by that list of websites that have been hacked or defaced.yellow said:Again, looking at the attacker stats on the Zone-H site, it appears that By Dinam has been a busy little beaver.
I'm confident that is has little to nothing to do with the ads.
http://www.zone-h.org/defacements/filter/filter_defacer=By Dinam
Enjoy.
winmacguy said:I think dinam needs a girlfriend or an alternative form of distraction, like maybe to go outside and play in the traffic for a bit judging by that list of websites that have been hacked or defaced.
yellow said:Easier said than done. Where exactly does one send the lawyers?
longofest said:From Secunia's 2006 statistics so far this year:
Of 6 Mac vulnerabilities this year:
- 2 are rated Exteremly Critical, 1 remains partially unpatched
- 2 are rated Highly Critical, 1 remains unpatched
Of 7 Windows XP Pro vulnerabilities this year:
- 0 are rated Exteremly Critical, 0 unpatched
- 2 are rated Highly Critical, 0 unpatched
nagromme said:Or, a broader perspective:
Windows XP Home:
http://secunia.com/product/16
23 out of 116 advisories, rated up to Highly Critical, are marked as unpatched by Secunia.
XP Professional:
http://secunia.com/product/22
27 out of 131 advisories, rated up to Highly Critical, are marked as unpatched.
Yeah, 'cause my Mac is slowly uninstalling system and security updates all on it's own...benpatient said:too bad OS X is getting less secure every day...
from Zone-harchive. <!--#include file="database.asp"-->
<!--#include file="Server-CreateObject.asp"-->
<%
If hacked.eof then
Response.Write (" This Web Page Hacked ")
Response.Write (" Hacked By Dinam ")
Response.Write (" RSA key fingerprint : 4f:b8:e8:83:h7:82:1g:t4:2e:49:72:41:f2:19:66:ea ")
Response.Write (" Are you sure you want to continue connecting (yes/no)? ")
Response.Write (" yes ")
Response.Write (" Root: Hacker By Dinam ")
Response.Write (" password: ******* ")
Response.Write (" Md5 : 3f3082fd88c694198de78162285940bf ")
Response.Write (" Checksum : --->> Game Ower ")
End If
%>
UberMac said:Well assuming that the site is hosted by Mac OS X server and on Xserves
eva01 said:who thought it was invulnerable?
Nothing is invulnerable
benpatient said:wow. you guys are seriously sensitive about this security risk stuff...
too bad OS X is getting less secure every day...