Syntactic Confectionery Delight | |
PerlMonks |
Re: Company hacks through my Perl's Website Security holeby jepri (Parson) |
on May 21, 2004 at 16:29 UTC ( [id://355328]=note: print w/replies, xml ) | Need Help?? |
As a professional sysadmin, I can say that it isn't your fault if someone takes down the entire box thanks to your carelessness. Don't expect the admins to like you afterwards though. I'm not quite following how they 'hacked in' though. What's that code you posted? Were you running code submitted to a webpage or something? You sure had it coming if you did. I'm getting DNS errors trying to get to the site you mentioned. That doesn't necessarily mean the webserver has been hacked, but probably something is wrong with their systems. And a quick update, clarifying the first paragraph. It's the sysadmin's job to protect users from themselves. Sometimes the sysadmin is unable to protect the system from the boneheaded users. However ultimately the sysadmin decides who gets to run what, with what priority and how much system resources they may use. If they flub this, or if the OS contains a compromise, then it gets filed under "shit happens", they pull the backup tapes off the rack, and life goes on.
In Section
Seekers of Perl Wisdom
|
|