|
|
|
|
| |
| An attempted break-in to the White House web server occurred on Monday this week. It is still unclear whether the motive for the attack is political (due to the NATO bombing of China embassy) or the usual motive ("to show it can be done") as a member of a group called gH (Global Hell), who claimed responsibility for the attack, was quoted. |
| |
Credit:
See MSNBC's report: http://www.msnbc.com/news/268339.asp
|
| |
Apparently, the gH group caught a White House system administrator transferring files via a regular FTP session. gH had a sniffer on another computer on the network (the network containing the destination computer of this FTP session). The sniffer made it trivial for them to pick up the administrator's password (see how to avoid sniffers: Detecting sniffers on your network).
With the cooperation of a group called "the Hong Kong Danger Duo" gH hacked into the White House web site and defaced the site, replacing the original content with their own.
However, the White House uses crontab (a UNIX scheduler application) to refresh the content from a secure server. This is a recommended method to use in order to avoid attackers from defacing web sites. Since the content is refreshed every few minutes, cracking into the web server is not enough to make a real impact.
|
|
|
|
|
|
|
|
|
|
