A week and a half ago someone uploaded a new index.html file to our images subdomain. I believe this was due to the permissions of the public_html directory being too permissive as there is no indication that the hacker knows any of SSC's passwords. I have changed the appropriate passwords regardless and have removed the file.
Firefox and other browsers may report that images.sscentral.org is an attack site because of this hack. I'm working on fixing that. Edit: This was fixed rather quickly.
SSC images subdomain hacked
- SSCBen
- Posts: 6449
- Joined: Sat Mar 22, 2003 1:00 pm
SSC images subdomain hacked
Last edited by SSCBen on Mon Sep 19, 2011 3:33 am, edited 1 time in total.
- Marlon28
- Posts: 3
- Joined: Wed Nov 09, 2011 11:25 am
Re: SSC images subdomain hacked
It seems that your hosting allows wildcard subdomains. You can enter anything in and it would be accepted. The solution would be to stop your hosting answering for these queries and redirect /delete from there.
- SSCBen
- Posts: 6449
- Joined: Sat Mar 22, 2003 1:00 pm
Re: SSC images subdomain hacked
How are the wildcard subdomains related to this problem? It seems that someone used a script to upload a file to a subdomain that was in use.