Author |
Message |
pwwbear
419Eater is my life
Joined: 26 Jan 2006
Posts: 349
Location: Out of my mind. Back in 5 minutes.
|
Posted:
Wed Feb 28, 2007 9:38 pm |
|
A website of a good friend was hacked into oblivion (well okay it is on life support right now and it doesn't look good).
What I was wondering is she has an idea who might have done it, but is there anyway she can prove it?
I am so illiterate about such things... It was a message board type site, and alot of us are peeved right now. |
_________________ TRY AND PUT THIS ARTICLE OF MINE ON U'R 419EATERS CLUB...TELL U'R SITE FRIENDS THAT I GOT U N THEM IN A STREET OF GAME FIGHT...I AM WAITING FOR YOU GUYS TO DO WHAT U THINK U WANT TO DO TO ME - rev. botchway
Click here to support 419Eater.com |
|
|
|
IP Freely
Master of Master Baiters
Joined: 18 Feb 2007
Posts: 540
Location: I'm getting my bunny back.
|
Posted:
Thu Mar 01, 2007 1:46 am |
|
Either an (old?) forum software exploit, or the webserver had improper security. Then a jerk gained access, and well, you know the rest. |
|
|
|
|
battery
Master of Master Baiters
Joined: 31 May 2005
Posts: 930
Location: a wonderful yet shit place to live
|
Posted:
Thu Mar 01, 2007 2:24 am |
|
Isn't there a site dedicated to recording the site defacements of these php plums?
Leccy knows it. My mates site got done over too. The name was listed up on some "haXor" teams hall of fame.
I understand that there's a bunch of kids out there writing things known as Xploits or 'sploits, which roam the web automatically defacing any site which has a particular weakness, usually found in phpbb boards such as this one. The number of sites they are able to deface correlates exactly with their inability to find a girlfriend or cure their acne.
You just need to keep your security patches up to date. |
_________________ x14
DONATE
---
I don't deserve a pony
of course you deserve a pony-lotta
|
|
|
|
maztuhblastah
Disposable Ensign
Joined: 03 Apr 2004
Posts: 1432
Location: Far, far from home.
|
Posted:
Thu Mar 01, 2007 3:07 am |
|
Use crackertracker. It's a remarkably well-written piece of security software, and it can really harden a phpBB forum against attack. |
_________________ <i><b>As of 2007, I have retired from all baiting and baiting-related activities. I will be around occasionally until June of 2007, at which point this account will no longer be monitored.</i></b>
root@usm4n:/ # cat /var/log/kills.log
Banks: 26 HYIP/Misc: 23 Total: 49
x 9 x 7 x 2 x 2 x 1 x 1 x 1 x 1 x 1 x 1 x 1 x 1 x 22
<b>--._.->solidinvestment.com -- rest in pieces!<-._.--</b> |
|
|
|
DrWho
Baiting Guru
Joined: 14 Jan 2004
Posts: 5486
Location: Where ever I go, there I am
|
Posted:
Thu Mar 01, 2007 3:24 am |
|
There is some East European group of scriptkiddies, who get a hack script, then roam the internet looking for a server that the exploit will work on. Then they call themselves hackers and pretend they have a big penis. |
_________________ "i think you people do not know whom you are talking of,i am not in any terrorist organization or planning any such of terrorist activities."
"i am not a terrorist and your america cia cna also investigate me."
"i am not a terrorist.send the shit stuff and let me get it fillied."
x12
"To Serve Man" |
|
|
|
battery
Master of Master Baiters
Joined: 31 May 2005
Posts: 930
Location: a wonderful yet shit place to live
|
Posted:
Thu Mar 01, 2007 4:07 am |
|
The twerps who claimed my mate's site were from Turkey. They are all there on some forum I went to before. I'm wondering if it might not be possible to bait them from time to time. |
_________________ x14
DONATE
---
I don't deserve a pony
of course you deserve a pony-lotta
|
|
|
|
Stargate
Baiting Guru
Joined: 08 Feb 2005
Posts: 2301
|
Posted:
Thu Mar 01, 2007 4:45 am |
|
battery wrote: |
Isn't there a site dedicated to recording the site defacements of these php plums?
Leccy knows it. My mates site got done over too. The name was listed up on some "haXor" teams hall of fame. |
Code: |
http://www.zone-h.org |
I've used the site above to track website hacks. My personal website was listed there a long time ago, after it was defaced. |
_________________ x20 |
|
|
|
battery
Master of Master Baiters
Joined: 31 May 2005
Posts: 930
Location: a wonderful yet shit place to live
|
Posted:
Thu Mar 01, 2007 5:15 am |
|
rings a bell.
I remember it being like a sort dickhead of hall of fame. I'm not going to open it and check because I'm browsing with the computer equivalent of a very large bucket of bling, and I don't want to hurt it. |
_________________ x14
DONATE
---
I don't deserve a pony
of course you deserve a pony-lotta
|
|
|
|
IP Freely
Master of Master Baiters
Joined: 18 Feb 2007
Posts: 540
Location: I'm getting my bunny back.
|
Posted:
Thu Mar 01, 2007 5:30 am |
|
|
|
|
phukin_scheep
Not quite a Newb
Joined: 02 Jun 2005
Posts: 61
|
Posted:
Fri Mar 02, 2007 2:52 am |
|
pwwbear wrote: |
What I was wondering is she has an idea who might have done it, but is there anyway she can prove it?
|
check the server logs. you might be able to match ip addys. in my experience skript kiddies don't think to use proxy servers. |
_________________ Click here to support 419Eater.com
FUCK YOU Elias Hirst IF AT ALL YOU EVEN GIVE ME YOUR PHONE NUMBER I WOULD HAVE FORWARD IT TO JEEVES FUCK YOU DONT WRITE MA AGAIN YOUR NOTHING BUT A CARWARD (Usman Bello)
You are a he goat.You are the most stupid goat I havever seen |
|
|
|
battery
Master of Master Baiters
Joined: 31 May 2005
Posts: 930
Location: a wonderful yet shit place to live
|
Posted:
Fri Mar 02, 2007 4:31 am |
|
I'd love to actually hunt down a few script kids and send them a fat turd in the mail or something.
Might make a little project out of that. |
_________________ x14
DONATE
---
I don't deserve a pony
of course you deserve a pony-lotta
|
|
|
|
Dott. Giascopato
Elite Baiter
Joined: 09 Sep 2005
Posts: 1174
Location: Germany
|
Posted:
Fri Mar 02, 2007 10:45 am |
|
Our small village has been donated a website, made up by two private people living here.
They went online after long time of developement.
They told me that the server, on which the site is hosted (not only the site!) had been hacked two times by SubZ3rr0. Their site is on 85.25.139.169. Obviously SubZ3rr0 is some member of former aniden. org, which seems to have been a turkish hacker site that has been suspended meanwhile. http://www.aniden.org
On metacrawler.com you find a lot of their defaced pages and they look as if there has been some kind of hacking contest.
aniden.org whois:
Quote: |
Domain ID:D118375702-LROR
Domain Name:ANIDEN.ORG
Created On:13-Mar-2006 16:52:52 UTC
Last Updated On:18-Oct-2006 17:30:13 UTC
Expiration Date:13-Mar-2007 16:52:52 UTC
Sponsoring Registrar:Direct Information PVT Ltd dba PublicDomainRegistry.com (R27-LROR)
Status:CLIENT DELETE PROHIBITED
Status:CLIENT RENEW PROHIBITED
Status:CLIENT TRANSFER PROHIBITED
Status:CLIENT UPDATE PROHIBITED
Registrant ID:DI_2638610
Registrant Name:aniden
Registrant Organization:aniden
Registrant Street1:Turkey
Registrant Street2:
Registrant Street3:
Registrant City:Turkey
Registrant State/Province:Turkey
Registrant Postal Code:00000
Registrant Country:TR
Registrant Phone:+111.1111111
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.:
Registrant Email:[email protected]
Admin ID:DI_2638610
Admin Name:aniden
Admin Organization:aniden
Admin Street1:Turkey
Admin Street2:
Admin Street3:
Admin City:Turkey
Admin State/Province:Turkey
Admin Postal Code:00000
Admin Country:TR
Admin Phone:+111.1111111
Admin Phone Ext.:
Admin FAX:
Admin FAX Ext.:
Admin Email:[email protected]
Tech ID:DI_2638610
Tech Name:aniden
Tech Organization:aniden
Tech Street1:Turkey
Tech Street2:
Tech Street3:
Tech City:Turkey
Tech State/Province:Turkey
Tech Postal Code:00000
Tech Country:TR
Tech Phone:+111.1111111
Tech Phone Ext.:
Tech FAX:
Tech FAX Ext.:
Tech Email:[email protected]
Name Server:NS1.GOCMENIM.COM
Name Server:NS2.GOCMENIM.COM
Name Server: |
Screenshot was:
http://i8.photobucket.com/albums/a13/dott_giascopato/screenshot.jpg |
_________________ Dott. Giascopato
non importunare.
Some from: x7
Failure to complies with this order require a severe act by the mets and
purnishment by law. (The Metropolitan Police)
fork off.. ([email protected]) |
|
|
|
|