Wil - understood. I just appreciate the fact that so many people are willing to help.
And I apologize for panicking over what was just a fairly simple local virus (now removed). But when you're working on a server that runs critical sites for one of your clients, and you start seeing injections into your CF admin login page, you get a tiny bit concerned. Especially when you've tried to follow as many of Pete's lockdown guide recommendations as you could. Thanks to everyone, and sorry for the trouble. On Wed, Nov 12, 2014 at 6:19 PM, Wil Genovese <jugg...@trunkful.com> wrote: > > Tom - I missed the email that Mark sent with that same blog post (which > was written by me). Mark and I tag team this stuff regularly. > > > > > Wil Genovese > Sr. Web Application Developer/ > Systems Administrator > CF Webtools > www.cfwebtools.com > > wilg...@trunkful.com > www.trunkful.com > > On Nov 12, 2014, at 4:27 PM, Tom McNeer <tmcn...@gmail.com> wrote: > > > > > Wil, > > > > Thanks. I'd already checked that. Mark chimed in earlier, and it's his > post. > > > > Pete, > > > > Thanks. I was so concerned that the server was compromised in a way that > > would affect its performance as a server, I hadn't had a chance to start > > googling the text itself. > > > > And Dave, > > > > Thanks again. Yes, it's just a client-side problem. And Pete seems to > have > > identified the particular hack. > > > > On Wed, Nov 12, 2014 at 5:13 PM, Dave Watts <dwa...@figleaf.com> wrote: > > > >> > >>>> One is that, while it doesn't show up in the view source for a given > >> page, a JS library referenced in > >>>> the page has been compromised to rewrite page content. > >>> > >>> Of course, this is quite possible in theory, however it would imply > that > >> the hacker has already hacked > >>> the server, and one could ask what he is still trying to hack. > >> > >> That's pretty obvious: the client. Lots of server hacks are pretty > >> trivial in their effect on the server, and are ultimately aimed at > >> compromising clients (whether the client is a browser or a search > >> engine). > >> > >> Dave Watts, CTO, Fig Leaf Software > >> 1-202-527-9569 > >> http://www.figleaf.com/ > >> http://training.figleaf.com/ > >> > >> Fig Leaf Software is a Service-Disabled Veteran-Owned Small Business > >> (SDVOSB) on GSA Schedule, and provides the highest caliber vendor- > >> authorized instruction at our training centers, online, or onsite. > >> > >> > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359640 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
