[Rack] Fwd: Malware notification regarding noisebridge.net
Rubin Abdi
rubin at starset.net
Thu Dec 8 02:31:36 UTC 2011
All of my sites under that shared host account have gotten touched. So I
doubt the target was specifically the nb blog. If it was a php/wordpress
exploit, they got to touch everything else under my home directory.
.htaccess from the nb blog...
http://pastebin.com/HDeBzddW
Weirdly enough it seems like noisebridge.starset.net was the only site
that actually respected the redirects. I don't understand why none of my
other sites are barfing...
.htaccess from a different site that's nothing more than a file store...
http://pastebin.com/hfYwaFyt
Anyhow. So our options are...
* Give up on the blog - Suck
* Migrate to some other blogging technology that is either just as
broken, or wont be as easy to post to as the current blog as been - I'm
not doing the migration work
* Leave the blog running on Dreamhost and hope my shared server doesn't
get the lulz p0ned - Fuck
* Migrate the db to a wordpress network instance I'm running on an
entirely different VPS that's a little more locked down - Requires time
--
Rubin
rubin at starset.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <http://www.noisebridge.net/pipermail/rack/attachments/20111207/e100e7df/attachment.sig>
More information about the Rack
mailing list