__/ [ vrataj@xxxxxxxxx ] on Monday 22 May 2006 20:29 \__
> I think this was done through an ASP form mailer script that is
> installed by
> default on these hosting accounts.
> The hack seems to have been done through a asp script that is
> automatically installed on all hosting customers accounts on these
> particular servers.
> The mass defacement was placed in a sub directory on each site.
> http://www.stokia.com/news/iskorpitx-iis-ssfm-hack-info.htm for our
So there was a point to this assessment after all. ASP, _as well as the
clueless host_, using that closed-source black box, are to blame. Open
Source -> Open to supervision.