Date: Sun, 3 Mar 2002 21:17:50 -0500 From: "Richard Ward" <mh@homenetweb.com> To: "David" <habeeb@cfl.rr.com>, <freebsd-security@FreeBSD.ORG> Subject: Re: http://users.uk.freebsd.org/~juha/ Message-ID: <000c01c1c322$df0f22a0$0101a8c0@noc2> References: <006101c1c310$7b823b30$ff7e2341@mercenary>
next in thread | previous in thread | raw e-mail | index | archive | help
David, From what I can see, it looks as if they've just guessed a possible weak password in the 'juha' account. Most defacement "hackers" wouldn't pass up an opportunity to deface the main domain, if they had access to it. I don't think that users.uk.freebsd.org was compromised to give these people any special access above a user account. That's just my opinion. However, I would alert the users.uk.freebsd.org administration about this as soon as possible; for it shouldn't be taken lightly. What always bugged me was how poor spelling these so called "hackers" display. -- Richard Ward, GM Home Net Web, Inc. http://homenetweb.com ----- Original Message ----- From: David <habeeb@cfl.rr.com> To: <freebsd-security@FreeBSD.ORG> Sent: Sunday, March 03, 2002 7:06 PM Subject: http://users.uk.freebsd.org/~juha/ > What is the story with this site being compromised? Any facts behind this? > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000c01c1c322$df0f22a0$0101a8c0>