Feeds

Infamous porn site gets a hacker makeover

Stile Project defaced in the hacker stylee

  • alert
  • submit to reddit

New hybrid storage solutions

Updated The Stile Project, a gross-out comedy-cum-sex site that has grown infamous on the Net, claims to have been defaced.

The home page of the site, which won a Webby award in the weird category last year and has a cult following, was replaced by a profane message from hacker Fluffy Bunny, which featured a toy pink rabbit sticking its arse in the air. Charming, especially when you consider its bottom clearly needed wiping, and the people behind the Stile Project (which some describe as postmodern pornography) aren't amused.

A rant from the site's administrator, Stile, threatens dire (and depraved) retribution against Fluffy Bunny, who is best known as the hacker who caused chaos by breaking into the servers of SourceForge and the Apache Project earlier this year.

Stile, who claims to have spent eight hours bringing the site back online, said it had been the victim of "this new FreeBSD exploit that lets people get root access on the server and do whatever they want with it".

"Looks like I was a victim of that exploit, even though we thought we had it patched", he added.

Stile suggests the vulnerability, the nature of which he explains here, extends to other mainstream Web operating systems, including Linux and Solaris and involves telnet daemons.

The bug is a multiple vendor telnet daemon buffer overflow vulnerability, a nasty exploit (discovered last week) about which you can find more information here. Many other sites may be vulnerable to the same exploit, according to Stile, who has warned his fellow admins to bolt up their security hatches. ®

Update:
Reg readers have written to remind us that last year Stile faked his own hanging on the site, which he broadcast using a Web cam. He denies the defacement is another publicity stunt and we'll leave it up to you to decide what you make of that. Stile isn't above defacing his own site at a stunt.

External Links

Multiple Vendor Telnetd Buffer Overflow Vulnerability
Fluffy Bunny's hack of the Stile Project
...and a rant by Stile on the subject

Related Stories

Cowboy cracker nails Apache
McHackers use DNS exploit to poke fun
Hackers run amok during Defcon

Secure remote control for conventional and virtual desktops

More from The Register

next story
Leak of '5 MEELLLION Gmail passwords' creates security flap
You should be OK if you're not using ANCIENT password
Google recommends pronounceable passwords
Super Chrome goes into battle with Mr Mxyzptlk
Reddit wipes clean leaked celeb nudie pics, tells users to zip it
Now we've had all THAT TRAFFIC, we 'deplore' this theft
Enigmail PGP plugin forgets to encrypt mail sent as blind copies
User now 'waiting for the bad guys come and get me with their water-boards'
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
TorrentLocker unpicked: Crypto coding shocker defeats extortionists
Lousy XOR opens door into which victims can shove a foot
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.