Monthly Archives: May 2008

I love EC2 and RightScale!

Monday morning, one of our web sites got infected by a javascript virus that spreads through SQL Injection. I don’t work on mondays (good life) so I wasn’t there to see the chaos but I eared that it was quite bad: customers complaining that our web site infected them for example.

The people working that day took the server offline, restored the infected DB from a clean backup and all was good (temporarily).

I got a couple phone calls, we talked about installing a reverse proxy to catch these kinds of attacks. It would take a few days to set this up.

They looked for the piece of code where the injection occurred, but missed one (or many) because the day after the server got infected again.

Continue reading