Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites. - Linux

This is a discussion on Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites. - Linux ; So much for that famed linux security bull. - "This was found last night. My very out-of-date installation of phpBB got exploited (first time any of my software gets exploited in 7 years of running sites on BSD and Linux). ...

+ Reply to Thread
Results 1 to 10 of 10

Thread: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

  1. Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    So much for that famed linux security bull.


    - "This was found last night. My very out-of-date installation of phpBB got
    exploited (first time any of my software gets exploited in 7 years of
    running sites on BSD and Linux). I've cleaned most stuff up, but I'm styill
    working with the Web host to get rid of what's left. Script kiddies snuck in
    extra markup that points to some other domain (via iframe) -- whatever it
    actually does."


    http://groups.google.com/group/comp....c2e3fb593a38eb


    "Whatever it actually does...." - you are a completely clueless moron. Why
    ties your shoes for you in the morning?



    --
    Posted via a free Usenet account from http://www.teranews.com


  2. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombiebot-net to infect visitors and attack other sites.

    On Fri, 14 Mar 2008 12:56:19 -0400, Duncan Meyer wrote:

    > So much for that famed linux security bull.
    >
    >
    > - "This was found last night. My very out-of-date installation of phpBB
    > got exploited (first time any of my software gets exploited in 7 years
    > of running sites on BSD and Linux). I've cleaned most stuff up, but I'm
    > styill working with the Web host to get rid of what's left. Script
    > kiddies snuck in extra markup that points to some other domain (via
    > iframe) -- whatever it actually does."
    >
    >
    > http://groups.google.com/group/comp.os.linux.advocacy/

    msg/40c2e3fb593a38eb
    >
    >
    > "Whatever it actually does...." - you are a completely clueless moron.
    > Why ties your shoes for you in the morning?


    I don't recall anyone ever claiming that Linux or any other OS was
    totally immune to malware attacks; simply that it is much more secure
    than MS - which seems to be a fact.

  3. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    In comp.os.linux.advocacy, ray

    wrote
    on 14 Mar 2008 17:23:58 GMT
    <63vqleF28hh9hU1@mid.individual.net>:
    > On Fri, 14 Mar 2008 12:56:19 -0400, Duncan Meyer wrote:
    >
    >> So much for that famed linux security bull.
    >>
    >>
    >> - "This was found last night. My very out-of-date installation of phpBB
    >> got exploited (first time any of my software gets exploited in 7 years
    >> of running sites on BSD and Linux). I've cleaned most stuff up, but I'm
    >> styill working with the Web host to get rid of what's left. Script
    >> kiddies snuck in extra markup that points to some other domain (via
    >> iframe) -- whatever it actually does."
    >>
    >>
    >> http://groups.google.com/group/comp.os.linux.advocacy/

    > msg/40c2e3fb593a38eb
    >>
    >>
    >> "Whatever it actually does...." - you are a completely clueless moron.
    >> Why ties your shoes for you in the morning?

    >
    > I don't recall anyone ever claiming that Linux or any other OS was
    > totally immune to malware attacks; simply that it is much more secure
    > than MS - which seems to be a fact.


    This was not an OS hack, but a vulnerability either in PHP or a BB
    residing thereon.

    --
    #191, ewill3@earthlink.net
    "Your mother was a hamster and your father smelt of
    elderberries!" - Monty Python and the Holy Grail

    --
    Posted via a free Usenet account from http://www.teranews.com


  4. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    On Fri, 14 Mar 2008 12:56:19 -0400, Duncan Meyer wrote:

    > So much for that famed linux security bull.
    >
    >
    > - "This was found last night. My very out-of-date installation of phpBB got
    > exploited (first time any of my software gets exploited in 7 years of
    > running sites on BSD and Linux). I've cleaned most stuff up, but I'm styill
    > working with the Web host to get rid of what's left. Script kiddies snuck in
    > extra markup that points to some other domain (via iframe) -- whatever it
    > actually does."
    >
    >
    > http://groups.google.com/group/comp....c2e3fb593a38eb
    >
    >
    > "Whatever it actually does...." - you are a completely clueless moron. Why
    > ties your shoes for you in the morning?


    I think he inserted the code on purpose to wreak havoc with Windows users.
    After all, Roy Schestowitz is a rabid Linux advocate and a paid SPAMMER for
    the Linux movement.

    He was also warned that something was wrong with his sites but of course he
    ignored it.

    http://groups.google.com/group/alt.c...057dc9e9db2135

    "I posted a message on www.schestowitz.com that was somewhat anti-
    linux.
    Not only was the message deleted but shortly afterwards I started
    getting pings of death from that site. If that wasn't bad enough, I
    had a rogue program, testicles.com trying to connect to
    www.schestowitz.com.

    As if that were not bad enough, I got the same exact results on
    another site, www.boycottnovel.com which coincidently is run by the
    same person, Roy Schestowitz.

    Maybe I am wrong, but I would suggest people avoid those two sites."

    I would stay clear of www.schestowitz.com and www.boycottnovel.com just to
    be on the safe side.



    --
    Moshe Goldfarb
    Collector of soaps from around the globe.
    Please visit The Hall of Linux Idiots:
    http://linuxidiots.blogspot.com/

  5. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    Moshe Goldfarb writes:

    >
    > http://groups.google.com/group/alt.c...057dc9e9db2135
    >
    > "I posted a message on www.schestowitz.com that was somewhat anti-
    > linux.
    > Not only was the message deleted but shortly afterwards I started
    > getting pings of death from that site. If that wasn't bad enough, I
    > had a rogue program, testicles.com trying to connect to
    > www.schestowitz.com.
    >
    > As if that were not bad enough, I got the same exact results on
    > another site, www.boycottnovel.com which coincidently is run by the
    > same person, Roy Schestowitz.
    >
    > Maybe I am wrong, but I would suggest people avoid those two sites."
    >
    > I would stay clear of www.schestowitz.com and www.boycottnovel.com just to
    > be on the safe side.


    Crikey. Doesn't Roy advocate prosecution for other people with this type
    of virus spawning site?


    --
    Spamming COLA for years : shillgeld.
    Signing on while at Uni : a few quid.
    Living at home in mothers basement : thrifty.
    Getting caught propagating Viruses to windows machines which visit your revenue generating website: Priceless!

    http://www.angelfire.com/psy/doctorb...towitz.com.jpg

  6. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    On Fri, 14 Mar 2008 20:19:37 +0100, Hadron wrote:

    > Moshe Goldfarb writes:
    >
    >>
    >> http://groups.google.com/group/alt.c...057dc9e9db2135
    >>
    >> "I posted a message on www.schestowitz.com that was somewhat anti-
    >> linux.
    >> Not only was the message deleted but shortly afterwards I started
    >> getting pings of death from that site. If that wasn't bad enough, I
    >> had a rogue program, testicles.com trying to connect to
    >> www.schestowitz.com.
    >>
    >> As if that were not bad enough, I got the same exact results on
    >> another site, www.boycottnovel.com which coincidently is run by the
    >> same person, Roy Schestowitz.
    >>
    >> Maybe I am wrong, but I would suggest people avoid those two sites."
    >>
    >> I would stay clear of www.schestowitz.com and www.boycottnovel.com just to
    >> be on the safe side.

    >
    > Crikey. Doesn't Roy advocate prosecution for other people with this type
    > of virus spawning site?


    Yes he does.

    Roy Schestowitz is just another example of a Linux advocate gone loony.

    --
    Moshe Goldfarb
    Collector of soaps from around the globe.
    Please visit The Hall of Linux Idiots:
    http://linuxidiots.blogspot.com/

  7. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    ____/ The Ghost In The Machine on Friday 14 March 2008 18:40 : \____

    > In comp.os.linux.advocacy, ray
    >
    > wrote
    > on 14 Mar 2008 17:23:58 GMT
    > <63vqleF28hh9hU1@mid.individual.net>:
    >> On Fri, 14 Mar 2008 12:56:19 -0400, Duncan Meyer wrote:
    >>
    >>> So much for that famed linux security bull.
    >>>
    >>>
    >>> - "This was found last night. My very out-of-date installation of phpBB
    >>> got exploited (first time any of my software gets exploited in 7 years
    >>> of running sites on BSD and Linux). I've cleaned most stuff up, but I'm
    >>> styill working with the Web host to get rid of what's left. Script
    >>> kiddies snuck in extra markup that points to some other domain (via
    >>> iframe) -- whatever it actually does."
    >>>
    >>>
    >>> http://groups.google.com/group/comp.os.linux.advocacy/

    >> msg/40c2e3fb593a38eb
    >>>
    >>>
    >>> "Whatever it actually does...." - you are a completely clueless moron.
    >>> Why ties your shoes for you in the morning?

    >>
    >> I don't recall anyone ever claiming that Linux or any other OS was
    >> totally immune to malware attacks; simply that it is much more secure
    >> than MS - which seems to be a fact.

    >
    > This was not an OS hack, but a vulnerability either in PHP or a BB
    > residing thereon.


    Not quite. ASP is affected as well (see below), but CNET does mention phpBB
    (unpatched installations) as one among those which are hit). Nobody knows for
    sure yet, but security researchers learn it all. I have some copies of files
    as well, so it remains to be studied. THIS IS NOT A LINUX-ONLY ISSUE.
    MICROSOFT IS AFFECTED ALSO.

    See:

    Hackers Attack Trend Micro

    ,----[ Quote ]
    | Security vendor Trend Micro has fallen victim to a widespread Web attack that
    | splashed malicious software onto hundreds of legitimate Web sites in recent
    | days.
    |
    | [...]
    |
    | Researchers are still not sure how the attackers are managing to hack these
    | Web pages, but the pages all seem to use Microsoft's Active Server Page (ASP)
    | technology, which is used by many Web development programs to create dynamic
    | HTML pages. A software bug in any of those programs is all the attackers need
    | to install their malicious code.
    `----

    http://www.pcworld.com/article/id,14...s/article.html

    400,000+ infected web pages in a week?!

    http://beranger.org/index.php?page=d...eb-pages-in-a-

    I've _cleaned up my_ Web site (it took a long while). And for trolls who
    spreading BS, thousands of sites including big ones like ZDNet are affected.

    Hackers launch massive IFRAME attack

    ,----[ Quote ]
    | But Danchev was more pessimistic that the attacks could be halted
    | quickly. "To sum up -- it's a mess," he said.
    `----

    http://www.linuxworld.com.au/index.p...001482&rid=-50

    Before accusing individuals, look at the Web as a whole. And if you're using
    Windows, be careful of pretty much /ANY/ site you visit. The press is filled
    with articles about what became a plague and nobody yet knows how many sites
    are really affected.

    --
    ~~ Best of wishes

    Roy S. Schestowitz | while (!0==1) echo 'Bill Gates' > /dev/null
    http://Schestowitz.com | RHAT GNU/Linux | PGP-Key: 0x74572E8E
    23:00:03 up 50 days, 8:54, 4 users, load average: 1.96, 1.45, 1.43
    http://iuron.com - help build a non-profit search engine

  8. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.


  9. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.


  10. Re: Schestowitz.com gets hacked and 0wned. Becomes part of zombie bot-net to infect visitors and attack other sites.

    Anna Banger wrote:

    > Moshe is flatfish (aka: Gary Stewart)
    >
    > http://colatrolls.blogspot.com/2008/...arb-troll.html
    > http://colatrolls.blogspot.com/2007/...ish-troll.html


    Fine. And now tell us something we don't already know.

    *This* here is old, stale news. And you look exactly like an idiot with your
    repetitions of this bull****
    --
    Meddle not in the affairs of Dragons, For thou art crunchy, and good
    with ketchup!


+ Reply to Thread