From owner-freebsd-security Thu Apr 26 7:33:39 2001 Delivered-To: freebsd-security@freebsd.org Received: from caerulus.cerintha.com (caerulus.cerintha.com [207.18.92.26]) by hub.freebsd.org (Postfix) with ESMTP id 42BAD37B422 for ; Thu, 26 Apr 2001 07:33:37 -0700 (PDT) (envelope-from scheidell@Cerintha.com) Received: (from scheidell@localhost) by caerulus.cerintha.com (8.11.3/8.11.3) id f3QEXaf70269; Thu, 26 Apr 2001 10:33:36 -0400 (EDT) Message-Id: <200104261433.f3QEXaf70269@caerulus.cerintha.com> Subject: Re: defaced websites and the like In-Reply-To: <3AE831F5.9C65BDFB@gmx.net> "from Raoul Schroeder at Apr 26, 2001 10:34:29 am" To: freebsd-security@freebsd.org Date: Thu, 26 Apr 2001 10:33:36 -0400 (EDT) From: Michael Scheidell Reply-To: Michael Scheidell X-Loop: scheidell@fdma.com X-Mailer: ELM [version 2.4ME+ PL77 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > I hate to toot my own horn, but... *TOOT* > > > > Check out http://www.attrition.org/mirror/attrition/ for a relatively > > comprehensive list of defacements, including breakdowns (and graphs) > > by OS, web server type, etc... for example: > > Nice page. > It would be nice to have a comparison with how many systems are out there. > Clearly, there is more NT out there than RedHat, and more RedHat than FreeBSD > (I guess). > Also, there are great fluctuations per month, which makes comparision > difficult. I didn't check thoroughly - is there a yearly average somewhere? http://www.theregister.co.uk/content/8/18515.html -----> Records kept by security site Attrition.org indicate that an average of 55 per cent of Web site defacements so far this year are linked to exploitation of Windows NT operating systems vulnerabilities. Linux is the second most commonly hacked Web server and accounted for around 21 per cent of Web page defacement last month. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message