SSC images subdomain hacked

Community news posted by the SSC staff.
Locked
User avatar
SSCBen
Posts: 6449
Joined: Sat Mar 22, 2003 1:00 pm

SSC images subdomain hacked

Post by SSCBen » Wed Sep 14, 2011 12:45 am

A week and a half ago someone uploaded a new index.html file to our images subdomain. I believe this was due to the permissions of the public_html directory being too permissive as there is no indication that the hacker knows any of SSC's passwords. I have changed the appropriate passwords regardless and have removed the file.

Firefox and other browsers may report that images.sscentral.org is an attack site because of this hack. I'm working on fixing that. Edit: This was fixed rather quickly.
Last edited by SSCBen on Mon Sep 19, 2011 3:33 am, edited 1 time in total.

ben@sscentral.org / Please read this before emailing or PMing me

Do not ask me water gun questions by email or PM. Please post the question at the forum. Private questions and suggestions are welcome by PM and email. Also, I do not sell or buy water guns online.

User avatar
Marlon28
Posts: 3
Joined: Wed Nov 09, 2011 11:25 am

Re: SSC images subdomain hacked

Post by Marlon28 » Wed Nov 23, 2011 12:02 pm

It seems that your hosting allows wildcard subdomains. You can enter anything in and it would be accepted. The solution would be to stop your hosting answering for these queries and redirect /delete from there.

User avatar
SSCBen
Posts: 6449
Joined: Sat Mar 22, 2003 1:00 pm

Re: SSC images subdomain hacked

Post by SSCBen » Fri Nov 25, 2011 3:38 am

How are the wildcard subdomains related to this problem? It seems that someone used a script to upload a file to a subdomain that was in use.

ben@sscentral.org / Please read this before emailing or PMing me

Do not ask me water gun questions by email or PM. Please post the question at the forum. Private questions and suggestions are welcome by PM and email. Also, I do not sell or buy water guns online.

Locked