Message14419

UW-HEP Help System

Issues
Show Unassigned
Show Critical
Show Urgent
Show Resolved
Show Open
Search

Login




Register
Lost your login?

Help
Roundup docs

Author rader
Recipients ajit, dan, dasu, help, rader, radtke, wcmaier, wsmith
Date 2008.06.30 19:50
Content
It happened again--the cause was: the index.html I created 
*disappeared*!

It appears the person abusing our system has exploited the 
ACLs on /afs/hep.wisc.edu/cms/data/rootFiles.

Since /afs/hep/home/dasu/www/rootFiles was a symlink to the 
directory above, so I just removed it (the symlink.)  The
loadave and the server is okay now.

On a lark, I checked for "viagra" in the logs and,
alas, found that we served up various URLs of the form
http://www.hep.wisc.edu//dasu/rootFiles/*/viagra about 1500
times during the last 32 days.

I guess we're okay now, but we should be aware that it seems
there's someobody out there who understands AFS and is 
using loose ACLs to "own" us.

steve
--
History
Date User Action Args
2008-06-30 19:50:19radersetrecipients: + rader, wcmaier, dan, ajit, radtke
2008-06-30 19:50:19raderlinkissue5332 messages
2008-06-30 19:50:18radercreate