Re: Recent Web site cracks

At 09:46 AM 10/8/96 -0400, pjb@ny.ubs.com wrote:
The recent cracks of the DOJ, CIA and Dole web sites have caused me to think about just what is going on here.
Do you suppose that these entries were made via the httpd route, maybe via cgi-bin, or just a straight telnet-type entry to the server? I don't know what operating systems were involved with these three systems, or even if
The DOJ and CIA sites were actually cracked; don't know the mechanisms. The dole-kemp96.com and dole-kemp96.org domains were spoofs - they have similar names to the real site, and people reach them by accident or by hearing about them. According to today's San Jose Mercury News, the web designer who registered them did so just before Dole announced Kemp as his VP, and tried to sell his design services to the campaign. They didn't buy it, and the names were sitting around with nothing better to do anyway, so he decided to have a good time with them. Supposedly he's gotten about 40,000 hits and the "real" site got 1,000,000. # Thanks; Bill # Bill Stewart, +1-415-442-2215 stewarts@ix.netcom.com # You can get PGP outside the US at ftp.ox.ac.uk Imagine if three million people voted for somebody they _knew_, and the politicians had to count them all.

stewarts@ix.netcom.com wrote:
The DOJ and CIA sites were actually cracked; don't know the mechanisms. The dole-kemp96.com and dole-kemp96.org domains were spoofs - they have similar names to the real site, and people reach them by accident or by hearing about them. According to today's San Jose Mercury News, the web designer who registered them did so just before Dole announced Kemp as his VP, and tried to sell his design services to the campaign. They didn't buy it, and the names were sitting around with nothing better to do anyway, so he decided to have a good time with them. Supposedly he's gotten about 40,000 hits and the "real" site got 1,000,000.
Anyone got a copy of the cracked CIA page? - Igor.

stewarts@ix.netcom.com writes:
The DOJ and CIA sites were actually cracked; don't know the mechanisms.
They used firewalls that are known to be easily crackable. --- Dr.Dimitri Vulis KOTM Brighton Beach Boardwalk BBS, Forest Hills, N.Y.: +1-718-261-2013, 14.4Kbps

On Tue, 8 Oct 1996, Dr.Dimitri Vulis KOTM wrote:
stewarts@ix.netcom.com writes:
The DOJ and CIA sites were actually cracked; don't know the mechanisms.
They used firewalls that are known to be easily crackable.
I know, for a fact, that the CIA hack was a PHF exploit. (at least in part, obviously thats not the _entire_ thing, and there had to be some firewall penetration somewhere, but...) don't ask ;) --Deviant Legalize free-enterprise murder: why should governments have all the fun?
participants (4)
-
dlv@bwalk.dm.com
-
ichudov@algebra.com
-
stewarts@ix.netcom.com
-
The Deviant