Am 12.07.2011 21:40, schrieb Frank Bonnet:
I think effectivelly users's requests have been redirected
to the hacked servers ...
Checked the access logs? If it's another server issuing the requests
you could notice by the the request IP addresses. Otherwise, use
only a HTTPS login - don't offer
Answers inline
-Original Message-
From: Patrick Proniewski [mailto:patrick.proniew...@univ-lyon2.fr]
Sent: Wednesday, July 13, 2011 2:34 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Re: phishing problem
On 12 juil. 2011, at 21:40, Frank Bonnet wrote:
> I think effectivelly u
Frank Bonnet wrote:
> I think effectivelly users's requests have been redirected
> to the hacked servers ...
>
> I wonder how they do that because users access directly to
> those servers ... they do not click in a fake email or anything
> like that , those servers are well known of our users ,
>
On Fri, Jul 8, 2011 at 5:34 PM, Rafael Hasson wrote:
> Hello all!
>
> I've a webserver running PHP 5.2.17, Apache 2.2.17 and MySQL 5.5.13.
> Tables' storage engine are MyISAM. I'm having a problem with all httpd
> processes locking during peak hours.
> Today while investigating the problem, I coul
On Mon, Jul 11, 2011 at 8:21 AM, Barry Scott wrote:
> We are porting our application to Fedora 15 and to systemd from SysV init.
> The httpd configuraturation we are using work without problem on earlier
> Fedora 13 systems.
>
> We are hitting an odd problem with httpd handling requests on localho
On Tue, Jul 12, 2011 at 12:37 PM, prahlad kumar wrote:
> Hi All,
> Please help me in understanding below mentioned error...
> [error] (70014)End of file found: proxy: prefetch request body failed to
> x.x.x.x:80 (x.x.x.x) from y.y.y.y ()
> [error] (70007)The timeout specified has expired: proxy: p
On 12 juil. 2011, at 18:49, Sander Temme wrote:
>
> On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
>
>> Hi,
>>
>> Apache servers are not victims of phishing attacks.
>> Users are victims of phishing attacks.
>>
>> As the OP is french, I'm continuing in french:
>
> Patrick, remember th
On 12 juil. 2011, at 21:40, Frank Bonnet wrote:
> I think effectivelly users's requests have been redirected
> to the hacked servers ...
so it's not a phishing, it's more like a man-in-the-middle, or a DNS cache
poisoning...
The only way for you to know what happens is to act as victims do (doin
I think effectivelly users's requests have been redirected
to the hacked servers ...
I wonder how they do that because users access directly to
those servers ... they do not click in a fake email or anything
like that , those servers are well known of our users ,
the extranet and one webmail
hac
I have provided a translation. See my message. I agree he should have
continued in the language of this newsgroup.
Sander Temme wrote:
> On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
>
>> Hi,
>>
>> Apache servers are not victims of phishing attacks.
>> Users are victims of phishing
Translation:
As I say above, your servers can not be victims of a phishing attack. A
phishing attack is a breach of confidence (or stupidity), and it is
therefore directly at the user level.
The only way to fight against phishing is to educate users. You can
always offer services in https, if user
On Jul 12, 2011, at 1:37 AM, Patrick Proniewski wrote:
> Hi,
>
> Apache servers are not victims of phishing attacks.
> Users are victims of phishing attacks.
>
> As the OP is french, I'm continuing in french:
Patrick, remember that one of the reasons we have these conversations on a
mailingli
Hi All,
Please help me in understanding below mentioned error...
[error] (70014)End of file found: proxy: prefetch request body failed to
x.x.x.x:80 (x.x.x.x) from y.y.y.y ()
[error] (70007)The timeout specified has expired: proxy: prefetch request
body failed to x.x..x.x:80 (x.x.x.x) from y.y.y.
On 07/12/2011 10:33 AM, Giles Coochey wrote:
On Tue, July 12, 2011 10:20, Frank Bonnet wrote:
Hello
Few weeks ago we discovered that two of our apache servers
has been victims of phishing attack.
The first one is running squirrelmail webmail and the second one
in running our extranet services
Hello Jeroen
I tried to send you configuration file the virtual host part and logs but it
can't be send L so would you please send me w website that explains how to
have subdomain in apache
Hello Jeroen
Thanks for reply.I already created 2 virtual host one pointing to (its
document root) /myd
Thanks for the reply, I use to separate all logs:
CustomLog /var/log/apache/domain1/access.log combined
CustomLog /var/log/apache/domain2/access.log combined
CustomLog /var/log/apache/domain2/access.log combined
But the problem is that with syslog-ng, on the remote host I
Thanks for the reply, where I must change it? On each vhost configuration or on
a global configuration?
Thanks for all your help.
Best regards.
-Mensaje original-
De: Eric Covener [mailto:cove...@gmail.com]
Enviado el: lunes, 11 de julio de 2011 15:53
Para: users@httpd.apache.org
Asunt
Hi,
Apache servers are not victims of phishing attacks.
Users are victims of phishing attacks.
As the OP is french, I'm continuing in french:
Comme je ne dis plus haut, tes serveurs ne peuvent pas ĂȘtre victimes d'une
attaque de phishing. Un phishing c'est une attaque par abus de confiance (ou d
On Tue, July 12, 2011 10:20, Frank Bonnet wrote:
> Hello
>
> Few weeks ago we discovered that two of our apache servers
> has been victims of phishing attack.
>
> The first one is running squirrelmail webmail and the second one
> in running our extranet services for students and professors.
>
> Bot
Hello
Few weeks ago we discovered that two of our apache servers
has been victims of phishing attack.
The first one is running squirrelmail webmail and the second one
in running our extranet services for students and professors.
Both of them are using https and require authentication.
The two
20 matches
Mail list logo
