[2963] in WWW Security List Archive
Re: 'phf' cgi-bin attack -- Distributed Coordinated Attack ?
daemon@ATHENA.MIT.EDU (Jordi \"=?iso-8859-1?Q?Matem=E0tic)
Tue Sep 17 17:16:34 1996
Date: Tue, 17 Sep 1996 20:57:29 -0100
From: "Jordi \"=?iso-8859-1?Q?Matem=E0tic?=\" Salvat" <jordi@webarna.com>
To: steen.larsen@ed.nce.sita.int
CC: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
Steen Larsen wrote:
> Maybe you have a case of a Distributed Coordinated Attack:
>
> Frederik B. Cohen wrote an interesting article in "Computers &
> Security", volume 15 no 2. The title is "A Note on Distributed
> Coordinated Attacks".
>
> He decribes a scenario were the bad guy puts some "attack code" on a
> WWW server. When an innocent person browses the bad page his browser
> will start to execute code that attacks another site.
> The target site will see attacks that seem to originate from all
> over the Internet.
>
You were (almost) absolutely right. Here is the mea-culpa/apology from
one of the attackers, who was detected and warned by his sysadmin:
<<<<<<<
Ostras... no pense que la cosa fuese tan fuerte... tranquilo que no
volvera
a pasar.
Simplemente es que me dieron por el irc una pagina web en la que metes
el
servidor
y te salen los nombres de los usuarios...ufff..
Bueno, de acuerdo, te prometo que no volvera a pasar. Y gracias por el
aviso, no
pensaba que esto fuese tan serio. De verdad. Perdona.
Por cierto, tendre que decir a la demas gente que lo sabe que no lo
hagan,
no vaya
a pasarles algo... :((
Repito mis disculpas y te mando un saludo.
>>>>>>>
Aprox. translation for those who don't read Spanish:
<<<<<
Ouch! I didn't think that was that bad! I promise it won't happen again.
I was simply told on the IRC of a web page in which you enter a server
and you get the user's names...oufff...
Well. I promise it won't happen again. And thanks for the warning, I
didn't think this was so serious. Truly. I'm sorry.
By the way, I will have to tell to other people who know not to do
it,...
Please accept my apologies and a salutation.
>>>>>>
--
Jordi Salvat i Alabart
Web Edicions Barcelona
edicions i consultoria Internet
http://www.webarna.com
