Posted on 2006-04-28
Recently we got the following notice from godday regarding our virtual server (redhat):
"Our Security Operations Center has been alerted to an issue on your 'DomainName' Virtual Dedicated Server. The server has been compromised through a vulnerability in mod_ssl, which is called through Apache's mod_proxy module. Once the server was exploited it began attacking hosts outside our network. "
"We have disabled the mod_proxy module on this virtual server. Please upgrade to the latest version of mod_ssl before re-enabling the mod_proxy modules."
Since then, we are having problems authoring our websites with Frontpage.
What does this mean? Are we foobar? Can we fix this?