Kayla

In the past week there have been issues on several servers which point back to TopSites installations. TopSites is a popular site ranking script which you may be familiar with.

Even the website for TopSites seems to be suffering from attack, I am unable to connect successfully:
The problem we see is that many different IPs (most are hijacked PCs located in Turkey, used as bot networks) are hammering these TopSites directories, acting as mini DoS attacks against those servers. The last security advisory for TopSites was last year, but apparently it remains unpatched. This does not give us much faith in the developers - it could have been fixed a long time ago, then we would not be dealing with this problem now.

The bottomline is that we are forced to disable the affected directories as we find them. We do recommend replacing this script with a similar one.
We are likely disabling TopSites in all Fantastico panels.

__________________

Dan

Is it that people are sending tons of connections to the topsites to try to increase their ranking on them or just trying to bring down the topsites?

__________________
D4nz Net - Surpass Help Desk - NES Forever
Use the thanks button. It works!
AIM: dansorl

Kayla

The bot networks are trying to access the directories to hack into the accounts since they still have the vulnerability from last year. http://secunia.com/advisories/19911
They are not going to get in due to our server configuration, but them trying is enough harm to Apache's stability.

__________________

Neil

Could this result in CPU ratings clearing 17, mail refusing connections and servers such as Pass62 generally reacting very slowly?

__________________
D17/D21/P59/P62/VPSX - "Faith can move mountains" (Faiths a big girl....) - I'm not paranoid, I know they are out to get me!

Kayla

On Pass62 specifically I do not see any requests for TopSites directories. What I do see is a few forums taking up some load.

__________________

Neil

OK thanks.

__________________
D17/D21/P59/P62/VPSX - "Faith can move mountains" (Faiths a big girl....) - I'm not paranoid, I know they are out to get me!

David

Actually, it's because my blog is listed on all of these, and people are just visiting a lot.

__________________

panache

ok, here is my question on topsites, I am wondering which software you are talking about and is there a better topsites software then others that would follow more into what you are thinking about Kayla..

or you would rather not have any at all..

I have one, but it sits dead at the moment, I wont say the address here, but I will say it in a support ticket if need be...

I am curious as to which software is better or worse and which ones are not patched, or should I just can the idea...

thx

MJ

__________________

Kayla

The one in question here, Aardvark TopSites is currently not patched.

I think it's one of the most popular scripts out there due to it being packed with Fantastico.. and since so many servers are equipped with cPanel.

As I browse around for different topsites scripts, it is pretty disappointing. Many are paid-only scripts (which means updates and support) but free ones are outdated.. such as:
http://www.evo-dev.com/products/evotopsites (2005)

I am looking towards the can here...

__________________