| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 7 Apr 2005 23:44:33 +0200 From: Sumy <sanandres@...il.com> To: SBUGTRAQ <bugtraq@...urityfocus.com> Subject: Article: Web Server Defacements This is a full article about webserver defacements, Know your enemies and their attack techniques to secure your webserver.All this information is for educational Purpose ONLY, we are not responsable for Misuse of any Document here. Web Server Defacements he urban art of grafitti has traversed to the online world in the form of web server defacements. Just how do these online vandals do it though? Read on to learn how it is done, and therefore gain a deeper understanding which will help you defend against it. There was a large commotion last year over the web server defacement contest, which was to be held by various online miscreants. The act of defacing a company's web site is one that has been going on for some time now. In reality this has been practiced largely by the bottom feeders of the internet community. To actually go out, and place your own index.html file into a compromised web server does not take a great deal of talent I assure you. Where the talent lies is with the coder who discovered a web server exploit, and coded a way of leveraging it in the first place. Once this exploit developer has publicly released the code is when the script kiddies step in. What the script kiddies lack in talent they make up for in numbers. These types of attacks are relatively commonplace today. Personally speaking I work in the network security industry, and have heard many of my peers write off these attacks as "script kiddie" stuff. While I would agree with them on that statement the problem is that these very same peers of mine don't know how to do a web page defacement themselves. To defend you must learn to attack... Full Article: http://www.exploitx.com/forum/azbb.php?1112907118 More articles & Tutorials? : http://www.exploitx.com/forum/azbb.php?Tutorials_and_Articles Security Portal: http://www.exploitx.com Message Board: http://www.exploitx.com/forum -- http://www.outwartips.net http://www.exploitx.com Please make a donation clicking on Our ads. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists