Re: DebianShop Hacked SIte ?

To: laurent@open-minds.org, debian-www@lists.debian.org
Cc: sales@debianshop.com
Subject: Re: DebianShop Hacked SIte ?
From: MJ Ray <mjr@phonecoop.coop>
Date: Tue, 26 Aug 2008 10:53:37 +0100
Message-id: <48b3d2a1.jzMZctlLaWvcV2/F%mjr@phonecoop.coop>
In-reply-to: <[🔎] 200808231236.16308.laurent@open-minds.org>
References: <[🔎] 5A404198CC6744CFBDF086D307A0550A@CENTAUR> <[🔎] 200808231236.16308.laurent@open-minds.org>

Laurent Léonard <laurent@open-minds.org> wrote:
> Le samedi 23 août 2008 à 01:38, Rouven Mueller a écrit :
> > the DebianShop URL: http://www.debianshop.com displays the following
> > message and nothing else:
> >
> > 0hhh o loveee joomla... yheee o love hacked joomla ;) ((( RED EYE OWNZ
> > )))by m4V3RiCk
>
> The security hole is fixed since 12/08 : 
> http://developer.joomla.org/security/news/35-core-security/241-20080801-core-password-remind-functionality.html
>
> Apply this patch or upgrade to 1.5.6, redefine the admin password and check 
> what is modified on the database (because the hacker had an admin access to 
> the Joomla) or restore a data backup. 

I have commented debianshop out of vendors.CD in CVS so it should be
removed from the listing on www.debian.org soon - it can be
uncommented once the site is repaired.

Hope that helps,
-- 
MJR/slef
My Opinion Only: see http://people.debian.org/~mjr/
Please follow http://www.uk.debian.org/MailingLists/#codeofconduct

Reply to:

References:
- DebianShop Hacked SIte ?
  - From: "Rouven Mueller" <rouven@rasmaster.ath.cx>
- Re: DebianShop Hacked SIte ?
  - From: Laurent Léonard <laurent@open-minds.org>

Prev by Date: Re: [PATCH] Adding coordination pages to the web site po-debconf l10n statistics
Next by Date: Who's using Debian?
Previous by thread: Re: DebianShop Hacked SIte ?
Next by thread: DSA-1628 and DSA-1630 is not on website
Index(es):
- Date
- Thread