---------- Forwarded message ---------- Date: Mon, 17 Dec 2001 17:46:34 -0500 (EST) From: security curmudgeon <jerichoat_private> To: defaced-commentaryat_private Subject: [defaced-commentary] Another HP machine defaced. Why don't they run their own OS? On December 16, a group known as 'AIC' compromised and defaced a server on Hewlett-Packard's network. Looking at the defacement archives over the past few years, this is not terribly interesting and barely qualifies as "high profile". What I found interesting is the history when looking at the operating system each defaced hp.com machine was running. Despite making a variety of unix called HP-UX, their network appears to be dominated by Windows NT machines. Of the three unix boxes defaced, two were linux and only one HP-UX it seems. This is more interesting when you read their front page highlights (partially quoted below). Also ironic is the amount of security software and services they tout on their pages. http://www.hp.com/ Highlights: http://www.hp.com/hpinfo/newsroom/press/10dec01a.htm Hewlett-Packard Company (NYSE:HWP) announced today that in the third quarter of calendar year 2001 it grew revenue market share in the entry-level, mid-range, high-end and total UNIX server categories worldwide and is in the lead position in mid-range and high-end server revenue.(1) http://www.hp.com/security/home.html http://www.hp.com/security/products/linux/ HP secure OS software for Linux They also have a line of products for Secure Web Server Platforms. -- Defacer: antihackerlink OS: Windows NT http://attrition.org/mirror/attrition/2000/12/15/www.hp.com.hk/ Defacer: Unknown OS: Unix http://defaced.alldas.de/mirror/2001/01/08/unix.hp.com/ Defacer: Silver Lords OS: Windows NT http://defaced.alldas.de/mirror/2001/01/10/quality.education.hp.com/ Defacer: Yoda's Klan OS: Linux http://attrition.org/mirror/attrition/2001/02/05/ma.cv.external.hp.com/ Defacer: sm0ked crew OS: Windows NT http://attrition.org/mirror/attrition/2001/02/14/e-learning.hp.com/ Defacer: iz c0rp OS: Windows NT http://attrition.org/mirror/attrition/2001/02/18/openview.hp.com/ Defacer: iz c0rp OS: Windows NT http://attrition.org/mirror/attrition/2001/02/22/www.netserver.hp.com/ Defacer: Agressive Boys OS: Windows NT http://defaced.alldas.de/mirror/2001/03/07/www.hp.com.tw/ Defacer: WoH OS: Windows NT http://attrition.org/mirror/attrition/2001/03/31/netsvwww.external.hp.com/ Defacer: PoizonB0x OS: Windows NT http://www.safemode.org/mirror/2001/06/14/netsvwww.external.hp.com/ Defacer: Hi-Tech Hate OS: Windows NT http://www.safemode.org/mirror/2001/06/22/atwnt368.external.hp.com/ Defacer: Hi-Tech Hate OS: Windows NT http://www.safemode.org/mirror/2001/06/23/ecs08.external.hp.com/ Defacer: Hi-Tech Hate OS: Windows NT http://www.safemode.org/mirror/2001/06/25/atwnt401.external.hp.com/ Defacer: Hi-Tech Hate OS: Windows NT http://www.safemode.org/mirror/2001/06/25/atwnt302.external.hp.com/ Defacer: AIC OS: Red Hat Linux http://www.safemode.org/mirror/2001/12/16/puffin.external.hp.com/ - The information and commentary is Copyright 2001, by the individual author. Permission is granted to quote, reprint or redistribute provided the text is not altered, and the author and attrition.org is credited. The opinions expressed in this mail are not necessarily the opinion of all Attrition staff members. Commentary Archive: http://www.attrition.org/security/commentary/ The Attrition Mirror: http://www.attrition.org/mirror/attrition/ Country/TLD Statistics: http://www.attrition.org/mirror/attrition/country.html Attrition Defacement Statistics: http://www.attrition.org/mirror/attrition/stats.html Operating System Graphs: http://www.attrition.org/mirror/attrition/os-graphs.html Other Web Defacement Mailing Lists: http://www.attrition.org/security/lists.html Contacting Attrition Staff: staffat_private To subscribe to Defaced Commentary, send mail to majordomoat_private with "subscribe defaced-commentary" in the BODY of the mail (without quotes). To unsubscribe, include "unsubscribe defaced-commentary" in the BODY of the mail. - ISN is currently hosted by Attrition.org To unsubscribe email majordomoat_private with 'unsubscribe isn' in the BODY of the mail.
This archive was generated by hypermail 2b30 : Wed Dec 19 2001 - 13:21:15 PST