Update - Hacking from Lacnic
Date: Saturday, May 29 @ 17:21:22 CEST
Topic: PHP-Nuke


It seems a wide variety of hits from Lacnic sites in the 200 and 201 IP range are union attempts, or calls on admin.php

Lacnic will issue a trouble ticket number, but they never reply and never close the trouble ticket. LACNIC is member of the NRO (Number Resource Organization)

The ineffectiveness of Lacnic to stop Brazilian hackers and others, and their abuse of their own trouble ticket system demands attention.


Recently we've seen attempts to access admin.php while spoofing Google's IP addresses. To automatically ban the IP's means a webmaster's site would no longer be spidered by Google. Google Adsense revenue and other income would drop off.

Also at issue is one website with a .ws extension. We contacted administrators for .ws, and got the same lack of interest as we did from Lacnic. Again, PhpNuke webmasters are still vulnerable due to lack of action on the part of the providers.

From a legal standpoint, the US Supreme Court ruled that the registrars are not responsible for the registrant. So Network Solutions could take your money, but are not responsible for anything the registrant does. It falls back on the hosting company to take action.

Yahoo, for one does not include hacking as an area for complaints. (see http://abuse.yahoo.com/ ) where most providers that offer free sites (the cause of many problems) include hacking on their abuse reporting page.

At NukeFind ( www.NukeFind.com ) we recommend deleting admin.php and auth.php from the web directory all together. When we need to perform admin functions, we FTP the files back to the server and take care of business. When finished we delete them.

For more, and to see addresses to hacker websites to watch out for, our IP address ban list, helpful contact information, etc, download our zip compressed text file from:
our livephone.us website here

(We will not publish this information where it can be spidered or accessed directly.)

LivePhone.us specializes in voice over the Internet. Our NukeFind website is the world's largest database of Nuke Powered websites.










This article comes from NukeCops
http://www.nukecops.com

The URL for this story is:
http://www.nukecops.com/modules.php?name=News&file=article&sid=2195