Quote:
Originally posted by goBigtime
100 Webmasters who should subscribe to bugtraq before pointing fingers
I am pretty sure the only thing that matrix is guilty of in this case is the same thing that 99% of you reading this thread are -- not keeping your servers software and any canned scripts you run patched up free of vulnerabilities. 
And if you think "oooh but my hosting company takes care of that stuff for me". In most cases (even if you pay for managed service) you're probably wrong & if you DON'T pay for managed services - you're definitely wrong.
Any true admins care to back me up on that one?
The net is a mess. Probably 80-90% of home users out there are hacked (via trojans or loaded down with spyware).
And a good portion of the webservers out there are vulnerable because webmasters seem to think their hosts will keep them up to date and safe from the bad guys.
Who knows what really happend here, but I would say that the chances are good that Matrix was hacked somehow.
|
I can say this ... many of you know I do work for a bunch of hosting companies including a lot of private clients and the level of updates to servers is sickening.
This week alone I have logged into servers that are still running freebsd 4.1 and 4.5 and a few redhat boxes still running 5.2 and 6.0.
I won't even discuss ssh, apache, and php.