{"id":2282,"date":"2007-06-06T17:49:03","date_gmt":"2007-06-06T16:49:03","guid":{"rendered":"https:\/\/www.fullo.net\/blog\/archives\/2007\/06\/06\/vulnerabilita-per-dreamhost\/"},"modified":"2007-06-06T17:49:03","modified_gmt":"2007-06-06T16:49:03","slug":"vulnerabilita-per-dreamhost","status":"publish","type":"post","link":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/","title":{"rendered":"Vulnerabilit\u00e0 per Dreamhost"},"content":{"rendered":"

Pare che oltre 3500 account siano stati compromessi<\/a> (fortunatamente non i miei) su Dreamhost<\/a>, dal comunicato ufficiale (che potete leggere qui<\/a>) alcuni cracker hanno modificato i dati del 20% dei 3500 account ftp violati inserendo pubblicit\u00e0, occultata tramite css, all’interno di index.php e index.html dei vari siti. Da notare che questo numero rappresenta solo lo 0.15% della totalit\u00e0 degli account del colosso dell’hosting.<\/p>\n

Il consiglio spassionato \u00e8 quindi quello di accedere al vostro pannello e cambiare immediatamente la password ftp dei vostri utenti.<\/p>\n

ciuaz<\/p>\n","protected":false},"excerpt":{"rendered":"

Pare che oltre 3500 account siano stati compromessi (fortunatamente non i miei) su Dreamhost, dal comunicato ufficiale (che potete leggere qui) alcuni cracker hanno modificato i dati del 20% dei 3500 account ftp violati inserendo pubblicit\u00e0, occultata tramite css, all’interno di index.php e index.html dei vari siti. Da notare che questo numero rappresenta solo lo […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[5],"tags":[313,1780,364,307,1781],"class_list":["post-2282","post","type-post","status-publish","format-standard","hentry","category-tecnologia","tag-dreamhost","tag-ftp","tag-hacking","tag-sicurezza","tag-unsecurity"],"yoast_head":"\nVulnerabilit\u00e0 per Dreamhost - Fullo<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerabilit\u00e0 per Dreamhost - Fullo\" \/>\n<meta property=\"og:description\" content=\"Pare che oltre 3500 account siano stati compromessi (fortunatamente non i miei) su Dreamhost, dal comunicato ufficiale (che potete leggere qui) alcuni cracker hanno modificato i dati del 20% dei 3500 account ftp violati inserendo pubblicit\u00e0, occultata tramite css, all’interno di index.php e index.html dei vari siti. Da notare che questo numero rappresenta solo lo […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/\" \/>\n<meta property=\"og:site_name\" content=\"Fullo\" \/>\n<meta property=\"article:published_time\" content=\"2007-06-06T16:49:03+00:00\" \/>\n<meta name=\"author\" content=\"Francesco Fullone\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@fullo\" \/>\n<meta name=\"twitter:site\" content=\"@fullo\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Francesco Fullone\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/\"},\"author\":{\"name\":\"Francesco Fullone\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"headline\":\"Vulnerabilit\u00e0 per Dreamhost\",\"datePublished\":\"2007-06-06T16:49:03+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/\"},\"wordCount\":86,\"commentCount\":2,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"keywords\":[\"dreamhost\",\"ftp\",\"hacking\",\"sicurezza\",\"unsecurity\"],\"articleSection\":[\"tecnologia\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/\",\"name\":\"Vulnerabilit\u00e0 per Dreamhost - Fullo\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\"},\"datePublished\":\"2007-06-06T16:49:03+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2007\\\/06\\\/06\\\/vulnerabilita-per-dreamhost\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Vulnerabilit\u00e0 per Dreamhost\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\",\"name\":\"Fullo\",\"description\":\"nulla e' impossibile per chi non lo deve fare!\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\",\"name\":\"Francesco Fullone\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"width\":622,\"height\":622,\"caption\":\"Francesco Fullone\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/www.fullo.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/fullo\",\"https:\\\/\\\/x.com\\\/fullo\"],\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/author\\\/fullo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Vulnerabilit\u00e0 per Dreamhost - Fullo","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/","og_locale":"en_US","og_type":"article","og_title":"Vulnerabilit\u00e0 per Dreamhost - Fullo","og_description":"Pare che oltre 3500 account siano stati compromessi (fortunatamente non i miei) su Dreamhost, dal comunicato ufficiale (che potete leggere qui) alcuni cracker hanno modificato i dati del 20% dei 3500 account ftp violati inserendo pubblicit\u00e0, occultata tramite css, all’interno di index.php e index.html dei vari siti. Da notare che questo numero rappresenta solo lo […]","og_url":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/","og_site_name":"Fullo","article_published_time":"2007-06-06T16:49:03+00:00","author":"Francesco Fullone","twitter_card":"summary_large_image","twitter_creator":"@fullo","twitter_site":"@fullo","twitter_misc":{"Written by":"Francesco Fullone"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/#article","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/"},"author":{"name":"Francesco Fullone","@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"headline":"Vulnerabilit\u00e0 per Dreamhost","datePublished":"2007-06-06T16:49:03+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/"},"wordCount":86,"commentCount":2,"publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"keywords":["dreamhost","ftp","hacking","sicurezza","unsecurity"],"articleSection":["tecnologia"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/","url":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/","name":"Vulnerabilit\u00e0 per Dreamhost - Fullo","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/#website"},"datePublished":"2007-06-06T16:49:03+00:00","breadcrumb":{"@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fullo.net\/blog\/2007\/06\/06\/vulnerabilita-per-dreamhost\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fullo.net\/blog\/"},{"@type":"ListItem","position":2,"name":"Vulnerabilit\u00e0 per Dreamhost"}]},{"@type":"WebSite","@id":"https:\/\/www.fullo.net\/blog\/#website","url":"https:\/\/www.fullo.net\/blog\/","name":"Fullo","description":"nulla e' impossibile per chi non lo deve fare!","publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fullo.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c","name":"Francesco Fullone","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","width":622,"height":622,"caption":"Francesco Fullone"},"logo":{"@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1"},"sameAs":["http:\/\/www.fullo.net","https:\/\/www.linkedin.com\/in\/fullo","https:\/\/x.com\/fullo"],"url":"https:\/\/www.fullo.net\/blog\/author\/fullo\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3OSc1-AO","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":2319,"url":"https:\/\/www.fullo.net\/blog\/2007\/08\/03\/dreamhost-vps\/","url_meta":{"origin":2282,"position":0},"title":"Dreamhost VPS","author":"Francesco Fullone","date":"03\/08\/2007","format":false,"excerpt":"jTheo mi ha fatto notare che da ieri \u00e8 possibile fare richiesta di attivazione di un Virtual Private Server su Dreamhost. Per ora l'attivazione sar\u00e0 possibile solo su invito per\u00f2 in futuro sar\u00e0 attiva per chiunque. La cosa interessante di questi VPS \u00e8 che spazio e banda saranno quelli abituali\u2026","rel":"","context":"In "tecnologia"","block_context":{"text":"tecnologia","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2304,"url":"https:\/\/www.fullo.net\/blog\/2007\/07\/15\/spostare-i-dns-da-tophost-a-dreamhost\/","url_meta":{"origin":2282,"position":1},"title":"Spostare i DNS da TopHost a Dreamhost","author":"Francesco Fullone","date":"15\/07\/2007","format":false,"excerpt":"Ultimamente ho registrato per comodit\u00e0 alcuni domini .IT su TopHost, gestendoli poi direttamente sul mio account di Dreamhost. La scelta \u00e8 ricaduta su Tophost perch\u00e8 (tralasciando il servizio di hosting che vale quanto costa) permette di modificare i propri DNS molto semplicemente ed ha dei decenti tempi di aggiornamento. Le\u2026","rel":"","context":"In "sysadmin"","block_context":{"text":"sysadmin","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/amministrazione-di-sistema\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2382,"url":"https:\/\/www.fullo.net\/blog\/2007\/12\/20\/googlebot-dreamhost-e-wordpress\/","url_meta":{"origin":2282,"position":2},"title":"GoogleBot, DreamHost e WordPress","author":"Francesco Fullone","date":"20\/12\/2007","format":false,"excerpt":"Questo trittico di pezzi da novanta per dire che GoogleBot sta diventando sempre pi\u00f9 aggressivo, il 90% delle template di WordPress permette di fare browsing, indicizzazione e navigazione anche di pagine di archivio con contenuti duplicati (archivi, categorie, tag, ricerche, etc) e DreamHost non apprezza particolarmente di avere degli shared\u2026","rel":"","context":"In "tecnologia"","block_context":{"text":"tecnologia","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2990,"url":"https:\/\/www.fullo.net\/blog\/2012\/04\/09\/silex-phar-e-mongodb-su-dreamhost\/","url_meta":{"origin":2282,"position":3},"title":"Silex, phar e mongodb su DreamHost","author":"Francesco Fullone","date":"09\/04\/2012","format":false,"excerpt":"Qualche giorno fa ho voluto sperimentare una microapplicazione Silex sul mio account DreamHost ed ho notato, con un po' di disappunto, che n\u00e8 il modulo PHAR n\u00e8 quello Mongo erano attivi sul server. Fortunatamente DreamHost permette di personalizzare la versione del PHP.ini che gira sul proprio account abilitando (o compilando)\u2026","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1499,"url":"https:\/\/www.fullo.net\/blog\/2005\/07\/04\/dreamhost-procontro\/","url_meta":{"origin":2282,"position":4},"title":"dreamhost pro\/contro","author":"Francesco Fullone","date":"04\/07\/2005","format":false,"excerpt":"oggi ho paciugato meglio con il pannello di dreamhost e mi sono accorto che il tool per le statistiche \u00e8 l'osceno analog, per questo armato di sana pazienza ho iniziato a cercare sul web se \u00e8 possibile installare awstats. Sommo \u00e8 stato il mio gaudio quando ho scoperto che tutta\u2026","rel":"","context":"In "tecnologia"","block_context":{"text":"tecnologia","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2018,"url":"https:\/\/www.fullo.net\/blog\/2006\/07\/29\/activecollab-e-dreamhost\/","url_meta":{"origin":2282,"position":5},"title":"ActiveCollab e Dreamhost","author":"Francesco Fullone","date":"29\/07\/2006","format":false,"excerpt":"Dreamhost ha aggiunto alla lista dei programmi installabili direttamente da interfaccia web ActiveCollab, giovane concorrente di BaseCamp, ma che c'entra poco o nulla (per ora) con software come phpCollab. Siccome sono molto curioso, soprattutto riguardo alle metodologie GTD ed al Project Management, non ho resistito e l'ho installato al volo.\u2026","rel":"","context":"In "open source"","block_context":{"text":"open source","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/open-source\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/2282","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/comments?post=2282"}],"version-history":[{"count":0,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/2282\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/media?parent=2282"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/categories?post=2282"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/tags?post=2282"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}