[thelist] hacked by yossi and I can't get up

Ron ronr at linuxdude.com
Wed Aug 1 10:37:07 CDT 2012

Just did a quick telnet pembrokeshirepaths.co.uk 80

it shows

Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 
FrontPage/ mod_bwlimited/1.4 mod_auth_passthrough/2.1 
mod_perl/2.0.4 Perl/v5.8.8 Server at cpanel17.uk2.net

Isn't that a very old version of Frontpage?


On 08/01/2012 11:10 AM, Joel Canfield wrote:
> a friend's site has been hacked and I can't find the hole
> http://pembrokeshirepaths.co.uk/
> looking via ftp, in WordPress, MySQL, I can't figure out where this is
> coming from. index.php is the usual WordPress file, there's no other index
> file in the root, database looks normal.
> ideas?

More information about the thelist mailing list