TRUNASUCI 15 Report post Posted April 13, 2008 aku br dpt info, around 3:30 td kut camtu.. yg web UITM kena hacked.. running RedHat, apache 2.0.52.. mcm default cd je.. http://toolbar.netcraft.com/site_report?ur...www.uitm.edu.myweb tu dah pakai apache version tu sejak 2006.. wow.. lamanya tak upgred ..http://www.apacheweek.com/features/security-v2.0.52pandai2 la admin dia dan pihak2 berwajib menjawap Quote Share this post Link to post Share on other sites
TemanX 0 Report post Posted April 13, 2008 Konfirm by TemanX pada pukul 6.24 AM..... huyoooo, camman diorang buat yek.... Quote Share this post Link to post Share on other sites
TRUNASUCI 15 Report post Posted April 13, 2008 Konfirm by TemanX pada pukul 6.24 AM..... huyoooo, camman diorang buat yek.... bro, kalau la server mana2 tak patch dan run versi default ( kene pulak default cd yg dah berzaman ) mmg boleh kena mudah2 je..so kije admin nak maintain/upgrade/patch bukan senang Quote Share this post Link to post Share on other sites
sharuzzaman 1 Report post Posted April 15, 2008 jawapan saya yang saya copy paste dari mailing list mypenguin99website uitm tu tak kena deface pun... tapi cuma kena DNS poisoningjer...cuba tengok posting dalam blog Irwan kat http://blog.irwan.name/?p=473kelihatan DNS jaring dan Tmnet akan redirect ke IP 66.197.236.37IP tu hosted kat US. kalau taip IP tu terus dalam web browser akankeluar website 000webhost.com nyer pageSemalam test kat opis, bila masuk http://www.uitm.edu.my dia keluar000webhost.com nyer pageselepas beberapa jam, isu ni akan pulih selepas DNS cache tu expire,dan DNS server jaring dan TMnet akan request data dari DNS server yangsebenarso, solution kat sini lebih kepada ISP untuk mempertingkat tahapkeselamatan dan kebolehpercayaan DNS server diaorang... Quote Share this post Link to post Share on other sites
the cracker 0 Report post Posted April 16, 2008 Yap just DNS poisoning through MYNIC.. server xde effect ape2 pun.. jgn harap leh godam server uitm nyer.. kecuali admin die sdr Quote Share this post Link to post Share on other sites
TRUNASUCI 15 Report post Posted April 21, 2008 Yap just DNS poisoning through MYNIC.. server xde effect ape2 pun.. jgn harap leh godam server uitm nyer.. kecuali admin die sdrare u really2 sure? Quote Share this post Link to post Share on other sites
slaughters 1 Report post Posted April 28, 2008 pas aku flush dns server aku, problem selesai.. part nie aku risau ade hole pada dns server aku sendiri..hermm.. any comment ?ISP jaring.. Quote Share this post Link to post Share on other sites
shamsay 0 Report post Posted April 28, 2008 aku dgr....penggodam tu ble masuk semua server uitm...semua information dia dah grab down...btol ke?jgn terlalu yakin the cracker... Quote Share this post Link to post Share on other sites
amin007 1 Report post Posted April 28, 2008 jawapan saya yang saya copy paste dari mailing list mypenguin99website uitm tu tak kena deface pun... tapi cuma kena DNS poisoningjer...cuba tengok posting dalam blog Irwan kat http://blog.irwan.name/?p=473kelihatan DNS jaring dan Tmnet akan redirect ke IP 66.197.236.37IP tu hosted kat US. kalau taip IP tu terus dalam web browser akankeluar website 000webhost.com nyer pageSemalam test kat opis, bila masuk http://www.uitm.edu.my dia keluar000webhost.com nyer pageselepas beberapa jam, isu ni akan pulih selepas DNS cache tu expire,dan DNS server jaring dan TMnet akan request data dari DNS server yangsebenarso, solution kat sini lebih kepada ISP untuk mempertingkat tahapkeselamatan dan kebolehpercayaan DNS server diaorang...dari apa yang aku fahamtaip aje domain uitm -> ip yg lain2tak static laabetul ker tekaan aku??? Quote Share this post Link to post Share on other sites
DarkWan 3 Report post Posted April 28, 2008 dari apa yang aku fahamtaip aje domain uitm -> ip yg lain2tak static laabetul ker tekaan aku??? Yang lain2 tak static? Ape tu ek? Aku plak yg tak paham posting ko neh Quote Share this post Link to post Share on other sites
TRUNASUCI 15 Report post Posted April 29, 2008 pas aku flush dns server aku, problem selesai.. part nie aku risau ade hole pada dns server aku sendiri..hermm.. any comment ?ISP jaring..possibly tuh ada.. pertama tgk pakai apa as DNS, normal kalau linux/UNIX pakai BIND.. BIND version 8.x mmg tak secure dah walaupun simple+ringan.. then now aku pakai 9.3.x..http://www.isc.org/index.pl?/sw/bind/bind-security.phpanyway now keep on patching kalau ada vuln je.. alhamdulillah takde masalah lg setakat ni..anyway bro.. it's good to worry about this pun .. good admin attitude Quote Share this post Link to post Share on other sites
Baldi 0 Report post Posted April 29, 2008 hikss Quote Share this post Link to post Share on other sites
Meister. Example010 0 Report post Posted April 29, 2008 (edited) btol tk kalu aku cakap die wat DNS poison pkai Cain Edited April 29, 2008 by Meister. Example010 Quote Share this post Link to post Share on other sites
slaughters 1 Report post Posted April 30, 2008 possibly tuh ada.. pertama tgk pakai apa as DNS, normal kalau linux/UNIX pakai BIND.. BIND version 8.x mmg tak secure dah walaupun simple+ringan.. then now aku pakai 9.3.x..http://www.isc.org/index.pl?/sw/bind/bind-security.phpanyway now keep on patching kalau ada vuln je.. alhamdulillah takde masalah lg setakat ni..anyway bro.. it's good to worry about this pun .. good admin attitudememang dalam proses nak upgrade DNS aku nieh.. Quote Share this post Link to post Share on other sites
amin007 1 Report post Posted April 30, 2008 Yang lain2 tak static? Ape tu ek? Aku plak yg tak paham posting ko neh setakat yang aku faham, domain merujuk kepada satu ip unikentah macam mana bagi kes ni, domain merujuk kepada ip lain selain ip uitm laaa.seseorang telah mengalihkan domain dari refer ip asal uitm kepada ip lainaku lupalah apa orang panggilfishing lebbih kurang laa Quote Share this post Link to post Share on other sites
gengstapo 0 Report post Posted May 4, 2008 Yap just DNS poisoning through MYNIC.. server xde effect ape2 pun.. jgn harap leh godam server uitm nyer.. kecuali admin die sdrhuishh.. overconfident btol mamat ni? Quote Share this post Link to post Share on other sites
slaughters 1 Report post Posted May 8, 2008 fishing ? pishing ? wishing ? pilih mane satu yang betul.. Quote Share this post Link to post Share on other sites
amin007 1 Report post Posted May 8, 2008 fishing ? pishing ? wishing ? pilih mane satu yang betul..pishing lah. Quote Share this post Link to post Share on other sites