Skip the navigation

California state site can't shake porn problems

Site taken down for second time

By Robert McMillan
October 11, 2007 12:00 PM ET

IDG News Service - The Web site blamed for last week's Internet problems within the state of California has been taken offline after links to pornographic material reappeared on the site.

The Transportation Authority of Marin's tam.ca.gov Web site was offline Wednesday, its front page replaced with a placeholder page saying the site is down for maintenance.

The Web site was taken down after security experts reported that it was hosting pornographic material over the past weekend.

"The site was shut down ... to step back and determine what was the best action to take to address the continued contamination," said Dianne Steinhauser, the authority's executive director, in an e-mail message. "The site is down until it is re-structured with additional security, can be sponsored by a more reliable ISP, and perhaps secured from this occurring."

Steinhauser's 10-person agency has had a rough month. The agency switched Internet service providers in early September after first discovering that its servers had been hacked. And last week, it was at the heart of a crisis that threatened to pull the entire state of California off the Internet.

On Oct. 2, the U.S. General Services Administration moved in and began the process of removing all ca.gov servers from its .gov Domain Name Service (DNS) registry, citing problems with the Transportation Authority of Marin's Web site.

"The potential exposure of pornographic material to the citizens -- and tens of thousands of children -- in California was a primary motivator for GSA to request immediate corrective action," a GSA spokeswoman said in an e-mailed statement. "Also, in these days of heightened security concerns from hackers, it is important to quickly stop potentially harmful damage to federal, state and local Web sites from those who have no love for our country."

The GSA's actions would have eventually made it impossible for Internet users to visit California's state Web sites or send e-mail to government officials. However, state officials were able persuade the GSA to reverse course within a few hours, and only minimal disruptions were reported.

The GSA now says it is revising procedures to avoid this kind of incident in the future.

That's a good idea, because the Transportation Authority of Marin's problems are not unique. Last week, similar problems were discovered on Web sites for the Brookhaven National Laboratory and the Superior Court of Madera County, Calif. On Wednesday, a Google search uncovered similar content on the Web site for the city of Somerset, Texas.

In fact, small businesses as well as government agencies can easily experience these problems, according to Maxim Weinstein, a manager at consumer advocacy group StopBadware.org. The Transportation Authority of Marin's problem "really underscores the need for customers of hosting companies and Internet providers to really expect and demand best security practices from those vendors," he said.

Earlier this year, StopBadware identified five hosting providers that were inadvertently hosting thousands of hacked Web sites.

The service providers named by StopBadware were often using out-of-date management software that was peppered with well-known bugs, Weinstein said.

In the end, however, it's the technical staffers connected with the Web sites in question who suffer most from these security lapses.

"It's not the fault of an unsuspecting webmaster, but the ultimate responsibility does lie with them," Weinstein said.

Reprinted with permission from IDG.net. Story copyright 2014 International Data Group. All rights reserved.
Our Commenting Policies