Not all hacks are bad hacks...
Posted on: 05/09/2000 11:54 AM

Last week, two crackers "0wned" Apache's main site and defaced it. They didn't exploit any bugs, just took advantage of several mis-configuration issues and were able to obtain root access.
"We did this hack because we could. The possible risks mentioned in the paper (Trojanning Apache source) were really an afterthought. We did this because is a high-profile site, and these configuration problems are common. Therefore defacing would be a great way to draw attention to these errors."
They defaced it the worst way possible, with a Microsoft logo. You can see an archive of the defacement here.
Linuxnews has an interesting "Pow wow" with both the hackers and the hacked here.

Printed from (