Microsoft IIS Hacked
Wow. This is significant.
Microsoft’s IIS servers have been hacked, sending malicious code to you through your browser, if you visit an affected website.
This report says perhaps over .5 million web servers have been compromised.
johnhendron.net uses the Apache web server.
April 26th, 2008 at 9:34 pm
Yep, I use apache as well. Haven’t had an issues in the last 8 years with apache. Heck, I dont think I’ve even rebooted it sense. Then.
What version of Apache / OS you use?
April 26th, 2008 at 10:56 pm
I believe this site is hosted on Debian Linux with Apache 2.
The web server I manage at work is currently at 1.3 for apache on OS X Tiger server. I think with OS X Leopard server, you jump up to Apache 2 by default.
April 26th, 2008 at 11:08 pm
The OS of the server will not protect you from this sort of code injection. This hack is created by poor website development, not a crack in MS’s IIS.
April 27th, 2008 at 8:45 am
I don’t know M.W.; it seems only the OS from one manufacturer is listed here.
While the article suggests it’s a IIS issue; yes, commenters on the story I linked to–at least some–feel otherwise.
If 500,000 web servers “overnight” contain the tell-tale code described in the report, and they are all websites served by IIS, then it would be silly to suggest it’s just poor coding by web developers. It would raise the question of why they would want to develop on a platform that made this exploit possible.
April 29th, 2008 at 1:55 pm
M.W. does have a point. I’ve seen plenty of websites hacked from SQL injection. Basically its putting SQL in the form inputs on the pages.
The input from say, even this text box I am typing in, could possibly accept some sort of injection code, whether it be SQL, PHP or something else.
Still, you have to wonder……500K+ IIS Servers? Does this mean that all 500K server are running the same web documents(html/asp pages etc) designed by the same developer? Don’t think so….