07-05-2003, 07:52 PM
|
|
Pontificator
Join Date: Aug 2006
Posts: 1,177
|
|
Defacers Challenge Tomorrow
http://edition.cnn.com/2003/TECH/internet/07/03/hacker.warnings.ap/index.html
A global hacker / cracker contest is rumoured to take place tomorrow, July the 6th. The contest is called Defacers Challenge and has web site of its own. According to CNN, "the Department of Homeland Security said Wednesday it was aware of the hackers' plans but did not expect to issue any formal public warnings. The Chief Information Officers Council, part of the Office of Management and Budget, cautioned U.S. agencies and instructed experts to tighten security at federal Web sites."
If you run a web site, I suggest you make sure all the latest security patches and updates have been applied. I recently read from a public security newsgroup the following statement about the contest: "Supposedly its true but don't let that make you think you have to switch your servers off this weekend to be safe or that you don't have to worry about this problem at any other time of the year. Hackers are always with us."
While on the subject of security! If you believe you have found a security vulnerability affecting a Microsoft product you can always contact Microsoft Security Response Center either by e-mail ([email protected]) or by filling out this web form.
|
| |
|
|
|
07-05-2003, 08:12 PM
|
|
Thinker
Join Date: Jul 2003
Posts: 366
|
|
Just for kicks, I took a look at the site that is organizing this. Ironically, the winner gets something else for everyone to hack:
500mb of hosting
webmail
email forward (limitless)
Domain Name (that YOU choose)
It's almost like awarding a gasoline generator to the Greenpeace effort that causes the most uproar...... :idontthinkso:
|
| |
|
|
|
07-05-2003, 08:30 PM
|
|
Ponderer
Join Date: Jul 2003
Posts: 64
|
|
Good luck to all sites tomorrow. Be safe.  uppydogeyes:
__________________
PCsynapse.com
"When the sky looks like crap, that's when you know it's time for God to change his graphics card" |
| |
|
|
|
07-05-2003, 09:00 PM
|
|
Contributing Editor Emeritus
Join Date: Aug 2006
Posts: 8,228
|
|
Don't people have anything better to do? :roll:
|
| |
|
|
|
07-05-2003, 09:17 PM
|
|
Philosopher
Join Date: Jul 2003
Posts: 541
|
|
Re: Defacers Challenge Tomorrow
Quote:
|
Originally Posted by Andy Sjostrom
While on the subject of security! If you believe you have found a security vulnerability affecting a Microsoft product you can always contact Microsoft Security Response Center either by e-mail ( [email protected]) or by filling out this web form. |
Hah! Good luck with getting anything useful from that.
http://www.pivx.com/larholm/unpatched/
Also see the XBox hackers, which are mislabelled (note: they're still idiots) but did try to get in contact with MS for 2 months.
Besides, this is getting everyone to worry about security right? So it's not like "they don't have anything better to do" they're getting sites to ramp up security. Anyone who gets hacked now is basically due to their own stupidity.
|
| |
|
|
|
07-05-2003, 09:46 PM
|
|
Contributing Editor Emeritus
Join Date: Aug 2006
Posts: 8,228
|
|
Re: Defacers Challenge Tomorrow
Quote:
|
Originally Posted by sponge
Besides, this is getting everyone to worry about security right? So it's not like "they don't have anything better to do" they're getting sites to ramp up security.
|
So, you won't mind if I break into your house and make a mess to show you you could do a better job of personal security? :roll:
|
| |
|
|
|
07-05-2003, 10:39 PM
|
|
Sage
Join Date: Oct 2006
Posts: 797
|
|
Great...
Stay tuned for the next episode of script-kiddies-run-amok... :devilboy:
Keep puffing out your chests boys; at the end of the day, you still ain't nothin'
|
| |
|
|
|
07-06-2003, 12:53 AM
|
|
Swami
Join Date: May 2004
Posts: 4,396
|
|
Re: Defacers Challenge Tomorrow
Quote:
|
Originally Posted by Ed Hansberry
Quote:
|
Originally Posted by sponge
Besides, this is getting everyone to worry about security right? So it's not like "they don't have anything better to do" they're getting sites to ramp up security.
|
So, you won't mind if I break into your house and make a mess to show you you could do a better job of personal security? :roll: |
Bingo! I love the cracker claims that they're just illustrating the lack of security. If they're really so good, why not offer their services as security testers before hacking into a site?
Even if they do hack into a Web site, do they really have to deface it? If their ego requires changing something, instead of a big, gaudy "This site hacked by L00zers" message, they could just put something at the bottom of the page and then notify the Web master of the site. Of course, that's just a matter of degree, like doing a big burglary vs. a small one.
Yes, people without security are pretty foolish, but being foolish should not be taken as an offer to be hacked, just like leaving my front door open should not be taken as consent to steal my belongings.
Steve
|
| |
|
|
|
07-06-2003, 12:58 AM
|
|
Philosopher
Join Date: Jul 2003
Posts: 541
|
|
I VERY highly doubt that they're doing it to prove that security is a problem (if so, it's just a reason to hack) but nevertheless, this will make sure your securtity on your webserver is up to snuff.
Using the house analogy, if there were a burglar going around in your neighborhood, and he announced he was going to raid everyone's houses on a night, are you going to make sure your house is safe, or are you just going to complain about the criminals?
|
| |
|
|
|
07-06-2003, 01:31 AM
|
|
Swami
Join Date: May 2004
Posts: 4,396
|
|
Burglar
Quote:
|
Originally Posted by sponge
I VERY highly doubt that they're doing it to prove that security is a problem (if so, it's just a reason to hack) but nevertheless, this will make sure your securtity on your webserver is up to snuff.
|
If I want to know if my Web server security is good, I'll pay someone to test it. If somebody wants to test it for free, they can ask for permission.
Quote:
|
Originally Posted by sponge
Using the house analogy, if there were a burglar going around in your neighborhood, and he announced he was going to raid everyone's houses on a night, are you going to make sure your house is safe, or are you just going to complain about the criminals?
|
I'm going to call the cops and have them stake out my neighborhood.
By the way, did you miss where I said people without security are foolish? However, lack of security in no way mitigates criminal behavior. The only reason we have security is because most of us are realistic enough to understand that there are losers out there.
Steve
|
| |
|
|
|
|
|
Linear Mode
