Have been hacked..

http://www.sco.com/

It's been like this for a few hours - I'm guessing their webmaster is tucked up in bed as I write this..

they do this (keep hacked page) for purpose... just to get some attention.

<g> SCO - The security experts

Have been hacked..

http://www.sco.com/

It's been like this for a few hours - I'm guessing their webmaster is tucked up in bed as I write this..
What did I miss? It apparently is offline now.. I dont get any response from their server..

moved to wibble.

Taken from a library computer ;p

ha!

sure it was hacked andthey just didnt get the urge to post their real feelings?
;)

u know what, now to think about it, i think they didnt get hack on that one :p

I don't condone such cracking, but I can't make myself feel sorry for SCO. Especially when they generate free publicity (http://news.netcraft.com/archives/2004/11/29/sco_own_all_your_code.html).

Note that the lady in the hacked picture is writing "Hacked by realloc()".

This doesn't say anything about the security of SCO products as according to Netcraft, sco.com is running Apache on Linux and something else (http://uptime.netcraft.com/up/graph/?host=sco.com).

I don't condone such cracking, but I can't make myself feel sorry for SCO. Especially when they generate free publicity (http://news.netcraft.com/archives/2004/11/29/sco_own_all_your_code.html).

Note that the lady in the hacked picture is writing "Hacked by realloc()".

This doesn't say anything about the security of SCO products as according to Netcraft, sco.com is running Apache on Linux and something else (http://uptime.netcraft.com/up/graph/?host=sco.com).

Yeah, they're running Apache. I can see they decided to suppress the Apache/mod software versions from their http headers, however, why they left the PHP tag in there is beyond me:

-=-=-
[root@localhost swf]# wget -S sco.com
--20:02:53-- http://sco.com/
=> `index.html'
Resolving sco.com... 216.250.128.12
Connecting to sco.com[216.250.128.12]:80... connected.
HTTP request sent, awaiting response...
1 HTTP/1.1 200 OK
2 Date: Wed, 01 Dec 2004 01:02:43 GMT
3 Server: Apache
4 X-Powered-By: PHP/4.3.2
5 Connection: close
6 Content-Type: text/html
-=-=-

Why would a security company use a deprecated version of php? I mean, no biggie, but makes me wonder. That makes me think they WANT people to try and hack/deface them. This has to be intentional IMHO.

I have many servers running Apache/apache mods/PHP, that suppress the php version number and mod versions.

In fact, my blog details suppressing this stuff.

Well, anyone wanna feel my questions, I'm curious. :)

- J

Why assume it was a PHP vunerability? It could have been a flaw in PHP code, open permissions on files, a compromised account, any number of things.

SCO is not a security company, it is a "Unix company". Although lately they seem to specialize in litigation. And they might have hired someone else to do it.

This actually says very little about SCO. All it means is that someone disliked them enough to do a little online vandalism.

Windows says, "You must reboot!"
Linux says, "You must be root!"

Nice that gave me an idea for a pic.