Re: secure-tunnel.com status?

From: Concertina (none_at_none.com)
Date: 10/26/04 

Date: 26 Oct 2004 13:05:11 -0500

notrom@nym.cryptofortress.com wrote in
news:1098796735_11390@216.128.74.13:
 
> I spoke with one of their support guys on Monday. His statement to me
> was that their firewall had crashed. He sounded pretty frazzled at the
> time. It looks like they are completely cut off from the 'net. I did
> not ask him if this was an attack or simple hardware failure.
>

Tuesday afternoon by about 2PM EDT, the SSH service was back up, as was
their web front page, but the members area accessed via HTTPS was still
down and that's where they usually post 'We're moving this server, so
expect a new key' type messages or 'Server such and such is down due to
a powerfailure'.

I'd expect this kind of issue to get at least a mention, since the
company makes its money on providing a secure service. I know that I'd
like to know:

1. Was the company attacked by a 3rd party or was a hardware failure
responsible for the outage?

2. If the company was attacked, what kind of attack was it? Was it a
DDOS or did someone root the SSH server? If so, was any confidential
data stolen? Logs, subscriber records, etc?

3. What's the status on the member's HTTP info page?

I feel bad for the guys, but they've got a responsibility to be
forthcoming about everything that went on.

Relevant Pages

  • Re: secure-tunnel.com status?
    ... :> not ask him if this was an attack or simple hardware failure. ... expect a new key' type messages or 'Server such and such is down due to ... Was the company attacked by a 3rd party or was a hardware failure ... I feel bad for the guys, but they've got a responsibility to be ...
    (comp.security.ssh)
  • [NT] Web Browsers Vulnerable to the Extended HTML Form Attack
    ... inject HTML scripts, which makes use of the same method described in the ... The Original HTML form attack: ... server 7 open ...
    (Securiteam)
  • Re: UML Question (Object <-> ObjectFinder?)
    ... They aren't simply providing different mechanical implementations of exactly the same responsibility, ... where would I would I look for the instructions that handle the attack message sent to Quail? ... The 'attacked' message would be defined in the interface rather than as a method in the ... interface can be a separate model element from the class itself, the mapping can be done outside the class definition when the interface message is mapped to the class operation. ...
    (comp.object)
  • [UNIX] DoS Attack Against FreeRADIUS (Other RADIUS Servers Affected)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... to create a high-performance and highly configurable GPL'd RADIUS server. ... program with failed requests causing a denial of service attack. ... Access-Request to the RADIUS server, ...
    (Securiteam)
  • Re: I was hacked
    ... > I have a Windows 2000 server that is current w/ the latest patches from MS. ... > It is running an IIS server that is configured w/ Microsoft's URLScan tool. ... > It is also running Terminal Services w/ 128 bit encryption turned on. ... > the first visible process of the attack. ...
    (alt.computer.security)