Page 1 of 1

SSC images subdomain hacked

Posted: Wed Sep 14, 2011 12:45 am
by SSCBen
A week and a half ago someone uploaded a new index.html file to our images subdomain. I believe this was due to the permissions of the public_html directory being too permissive as there is no indication that the hacker knows any of SSC's passwords. I have changed the appropriate passwords regardless and have removed the file.

Firefox and other browsers may report that images.sscentral.org is an attack site because of this hack. I'm working on fixing that. Edit: This was fixed rather quickly.

Re: SSC images subdomain hacked

Posted: Wed Nov 23, 2011 12:02 pm
by Marlon28
It seems that your hosting allows wildcard subdomains. You can enter anything in and it would be accepted. The solution would be to stop your hosting answering for these queries and redirect /delete from there.

Re: SSC images subdomain hacked

Posted: Fri Nov 25, 2011 3:38 am
by SSCBen
How are the wildcard subdomains related to this problem? It seems that someone used a script to upload a file to a subdomain that was in use.