Tom - I missed the email that Mark sent with that same blog post (which was written by me). Mark and I tag team this stuff regularly.
Wil Genovese Sr. Web Application Developer/ Systems Administrator CF Webtools www.cfwebtools.com [email protected] www.trunkful.com On Nov 12, 2014, at 4:27 PM, Tom McNeer <[email protected]> wrote: > > Wil, > > Thanks. I'd already checked that. Mark chimed in earlier, and it's his post. > > Pete, > > Thanks. I was so concerned that the server was compromised in a way that > would affect its performance as a server, I hadn't had a chance to start > googling the text itself. > > And Dave, > > Thanks again. Yes, it's just a client-side problem. And Pete seems to have > identified the particular hack. > > On Wed, Nov 12, 2014 at 5:13 PM, Dave Watts <[email protected]> wrote: > >> >>>> One is that, while it doesn't show up in the view source for a given >> page, a JS library referenced in >>>> the page has been compromised to rewrite page content. >>> >>> Of course, this is quite possible in theory, however it would imply that >> the hacker has already hacked >>> the server, and one could ask what he is still trying to hack. >> >> That's pretty obvious: the client. Lots of server hacks are pretty >> trivial in their effect on the server, and are ultimately aimed at >> compromising clients (whether the client is a browser or a search >> engine). >> >> Dave Watts, CTO, Fig Leaf Software >> 1-202-527-9569 >> http://www.figleaf.com/ >> http://training.figleaf.com/ >> >> Fig Leaf Software is a Service-Disabled Veteran-Owned Small Business >> (SDVOSB) on GSA Schedule, and provides the highest caliber vendor- >> authorized instruction at our training centers, online, or onsite. >> >> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359638 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
