Sattan.org Hack

[Frank]

sattan.org has a wordpress hack that appears to only intend to redirect traffic (which is pretty dang annoying), but it can mess up wordpress sites.

Anyway, keep on the lookout. It hit a site I visit, recently.

---

To be clear:

sattan.org is the enemy
sattan.org is the hacker

Do not visit that site else risk getting hacked yourself (I presume.)

---

Google search for info on this. Google brings up many results.

[Macrobius]

General info on security for websites that have 'soft' targets like blogging software, vBulletin, etc.

http://www.howtoforge.com/apache_mod_security

http://gotroot.com/tiki-index.php?pa...security+rules

Of the 15,000 available security rules, many are very product specific. You don't turn them all on unless you run one of everything in the software universe.

If you don't run apache as your webserver, you can still put mod_security on a reverse proxy in front of the 'application server' (which is really just a webserver + perl or php in this case).

The one-month delay is annoying for new attacks, but if you want to stay current, you can always pay the subscription I guess, or learn to write your own custom rules. Fiat money is nice but can I have some fiat time please?

I'm moving towards this architecture myself, since the spamming and hacking has just gotten out of hand with the spread of well-known pre-packed free software like WordPress, which makes it economical to write well-known pre-packaged free hacking software.