Web Security – The Wac-A-Mole Version

This article from Computerworld earlier today reminded me a lot of the times the TJHSST Student Systems Administrators (of which I’m now a graduate) got to rid our web server of spam that had infiltrated it. The infection I remember most was when a hacked MediaWiki site had been used to upload files to redirect computers to spam sites advertising pills and drugs. It got to the point that there were enough hacked computers hitting our server that most external and internal requests for pages were being refused, and ssh sessions to the server would have a noticeable lag. Eventually one of the other ex-admins got around to doing some scripting, and had a 600-700-line file of computers that were put into ipfilter to eventually block the attack.

Unfortunately we’ve had a couple other smaller infiltrations, but hopefully we closed the hole that they were getting in through. Only time will tell…

Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

Welcome to my blog. My name is Stephen (Trey) Repetski, and I'm working at Sun for the summer. I graduated from TJHSST, and am headed to Rochester Institute of Technology (RIT) in the fall, studying Network Security and Systems Administration (NSSA)

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today