[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Re: Indialinks cracked ? NOT!

To: Linux India General <linux-india-general@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Indialinks cracked ? NOT!
From: Atul Chitnis <achitnis@xxxxxxxxxxx>
Date: Wed, 22 Mar 2000 11:17:46 +0530 (IST)
In-reply-to: <4.2.0.58.20000322083900.00ada9e0@202.54.12.17>
Organisation: Exocore Consulting (P) Limited

On Wed, 22 Mar 2000, Udhay Shankar N wrote:

> Indialinks has apparently been cracked by some Pakistani script kiddies. 
> There are quotes from Bhavin in this story. Any recent changes to 
> http://www.linux-india.org/ ? ;-)

No, LI's site was safe because it was no longer located there. Read the
following mail from Bhavin of Indialinks - it is quite clear that the
place wasn't "cracked", someone at the ISP left the door wide open. 

I am satisfied with his explanation because I have used that infamous
control panel myself. I appreciate the fact that he was already moving
away from that ISP when the incident happened - the fact that LI's site
and several other high-profile sites didn't get hit (because they had
already been moved) is enough proof for me.

Also note his comment on "Pakistanis always tries to hack into servers
hosted at alabanza network". That is in no way an insult to Pakistanis but
more a comment on human nature. As we have seen here on this list just a
few days ago, "Indians always try to hack into servers hosted at
VSNL/Satyam/DoT/Mantra/etc. network" ;-)

Atul

---------- Forwarded message ----------
Date: Tue, 21 Mar 2000 19:44:17 +0500
From: IndiaLinks Web Hosting And Services <webmaster@xxxxxxxxxxxxxx>
To: Atul Chitnis <achitnis@xxxxxxxxxxx>

Atul,

Let me explain you everything in details...

Alabanza providers Web servers with lots of customisation and browser
based control panels which are not safe at all. Infact they give Control
panel to create domains, email accounts everything from web and worst part
is, if someone is logged on to control panel from one computer, from
second computer i can directly logon without giving password (by giving
URL of second page which comes after logging in...). So basically.. there
was nothing to hack into.. the system itself was open. Delhinet, Directi,
BiznetIndia are other providers who also hosts with Alabanza on the
similar server and i can send you the control panel snaps (html which was
saved by me) which will show you how Unsafe the alabanza servers are.

We were in process of moving those sites from alabanza to our existing
network and most of the sites were moved. I can say only about 50 sites
were not transfers. Rest of the sites were active on their new IPs
untouched.

Alabanza also hosts sites of most of the service providers of Pakistan and
thats the reason why Pakistanis always tries to hack into servers hosted
at alabanza network. I hope this explains you everything.

Bhavin Chandarana

References:
- Indialinks cracked ?
  - From: Udhay Shankar N

Prev by Subject: Indialinks cracked ?
Next by Subject: Interesting notice in REC Calicut
Previous by thread: Indialinks cracked ?
Next by thread: Re: Re: Multiple modems on Linux
Index(es):
- Subject
- Thread