Joomla.org has been hacked

Joomla ^ | 8/18/2007 | armymarinemom

[vbmoneyspender]

Thanks for posting this. Very interesting

[armymarinemom]

Geeks UNITE!

LOL. I do use the software.

[Salo]

Pings.

[Conservative Infidel]

ALL YOUR BASE ARE BELONG TO US!!

[Clioman]

I’m not worried. I have a POCKET PROTECTOR!

[Larry Lucido]

OMG, not Joomla!!!!!!!!!!!!

Wait, what’s Joomla?

[Larry Lucido]

orginaztion's portal has been hacked

I used to do orginaztion portal repair. Never had much demand, though.

[vbmoneyspender]

Joomla.org Hacked

[vbmoneyspender]

From the article, it appears they got hacked twice. Once is wrong. Twice is just being mean.

[papasmurf]

I wouldn’t be too concerned. It’s only a learning opportunity. :)

[armymarinemom]

Twice is just being mean.

Ouch.

[longjack]

I’ve had some sites hacked by the Turk group.

They overwrite the configuration.php file with their own version. Their version redirects to their own server.

I keep backup configuration.php files on hand so I can get the site back up in a few seconds.

Now I keep configuration.php unwriteable unless I work on the site from the backend. I also move configuration.php out of webroot .

[armymarinemom]

Now I keep configuration.php unwriteable unless I work on the site from the backend. I also move configuration.php out of webroot .

I do keep a backup config file but it is a good idea to make it unwritable. Thanks.

[N3WBI3]

Army,

Depends on the hack. Of course this could be bad for the most recent build *or* an admin got lazy and did not properly secure his site. Could be a poor apache or mysql config. Then again it could be a poorly written stored procedure.

Look at the hack of the ubuntu site recently. They were running on unsupported hardware so they could not patch the kernel *and* they were running clear text ftp. Happens to windows, Linux, Solaris, and pretty much every app out os out there..

[N3WBI3]

How was the hack accomplished?

[armymarinemom]

How was the hack accomplished?

Not announced yet.

[N3WBI3]

config PHP should *always* be unwritable! you practice good administrative practices. I have seen more than one occasion where someone chmods it so they can edit and never set the perms back. Somebody needs to buy the folks who run that site (this looks less like a Joomla problem than an Apache/PHP misconfig) some Apache administrator books..

[N3WBI3]

OSS Ping..

Welcome RhoTheta to the list..

If you want on the OSS ping list please ping or mail me..

[Publius6961]

From the article, it appears they got hacked twice. Once is wrong. Twice is just being mean carelessness.

[Vinnie]

It runs on PHP which has some known security issues.

Should have stuck with the 'G' version, PGP. :^)