Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 23

Thread: Vandalism and Recovery

  1. #11
    Aquarezz's Avatar
    Aquarezz is offline Master Net Builder
    Join Date
    Dec 2008
    Location
    Belgium
    Posts
    3,846
    Blog Entries
    4
    Thanks
    683
    Thanked 590 Times in 462 Posts
    Damn, that's kinda stupid. You didn't do anything wrong.. glad it's back and hopefully it won't happen again
    |Nico Lawsons

  2. #12
    Snak3's Avatar
    Snak3 is offline Moderator
    Join Date
    Jul 2009
    Location
    Undisclosed Location
    Posts
    629
    Thanks
    155
    Thanked 190 Times in 121 Posts
    Quote Originally Posted by vectro View Post
    The header on the hacked tech-faq homepage said "r00t3d". Was it just the scripts or was root hacked? We were debating in another thread.
    It was a root hack. I certainly have no idea as to how he pulled it off but as Will said, one/some of the the huge number of scripts may have had a security hole that he exploited.

    Bad news : Unless the vulnerability is figured out and patched, this server may still be vulnerable to a future attack.

  3. #13
    Keldorn's Avatar
    Keldorn is offline Net Builder
    Join Date
    Dec 2008
    Location
    Canada
    Posts
    400
    Thanks
    21
    Thanked 60 Times in 52 Posts
    This is the downside of using premade scripts you can just download. You can;t be sure if its secure without auditing it yourself, or paying someone to audit the source code. Just throwing it up on your server is big chance of risk.

    But glad NB is okay.
    Submit new proxies -

  4. #14
    Coastercraze's Avatar
    Coastercraze is offline Net Builder Legend
    Join Date
    Jan 2009
    Location
    Under powerlines
    Posts
    499
    Blog Entries
    3
    Thanks
    94
    Thanked 59 Times in 48 Posts
    Well that sucks, glad NB is back up.
    Webmaster Forums
    Host Mist | Shared | Reseller | VPS | Dedicated
    Arcade Master - Rule the arcade!

  5. #15
    vectro's Avatar
    vectro is offline I Like Stuff
    Join Date
    Dec 2008
    Location
    U.S.A.
    Posts
    625
    Thanks
    192
    Thanked 100 Times in 79 Posts
    Quote Originally Posted by Snak3 View Post
    It was a root hack. I certainly have no idea as to how he pulled it off but as Will said, one/some of the the huge number of scripts may have had a security hole that he exploited.

    Bad news : Unless the vulnerability is figured out and patched, this server may still be vulnerable to a future attack.
    Quote Originally Posted by Keldorn View Post
    This is the downside of using premade scripts you can just download. You can;t be sure if its secure without auditing it yourself, or paying someone to audit the source code. Just throwing it up on your server is big chance of risk.

    But glad NB is okay.
    Yes that's the downside to using pre-made scripts. I use many on my server but I have found one saving grace. I use a module for Apache that allows PHP scripts to run as the user for that account instead of running as the default "nobody" user. This prevents files from needing to be chmod 755 or 777 to be written to by PHP. Files can have stricter permissions than that and still be written to because the PHP script is running as the same username as the file which needs to be modified. So even for generic scripts where the instructions say to chmod certain files as 755 or 777, you can still use something like 644 and it will work just the same.

  6. #16
    ruben's Avatar
    ruben is offline Net Builder
    Join Date
    Oct 2009
    Posts
    378
    Blog Entries
    1
    Thanks
    44
    Thanked 56 Times in 47 Posts
    I'm glad NB is back, and I'm glad to here you managed to get early backups

  7. #17
    Hellas's Avatar
    Hellas is offline Very Unusual Member
    Join Date
    Dec 2008
    Location
    Bosnia
    Posts
    1,051
    Thanks
    214
    Thanked 292 Times in 205 Posts
    Interesting weekend we had . Shame a was off for last 3 days .

  8. #18
    jakki's Avatar
    jakki is offline Directory Submission Service
    Join Date
    Mar 2009
    Posts
    962
    Blog Entries
    2
    Thanks
    146
    Thanked 90 Times in 74 Posts
    Thank god, everything is on track now.
    Premium Directory :: PR4 Submit Your Link
    Lamrod.org :: Best Product Review and Price Comparison Site One LD :: PR1 Directory



  9. #19
    ruben's Avatar
    ruben is offline Net Builder
    Join Date
    Oct 2009
    Posts
    378
    Blog Entries
    1
    Thanks
    44
    Thanked 56 Times in 47 Posts
    I suggest we take actions against the kid
    lets massive ping him or something lol

  10. #20
    weirdnessme is offline Newbie Net Builder
    Join Date
    Mar 2009
    Posts
    286
    Blog Entries
    1
    Thanks
    19
    Thanked 31 Times in 30 Posts
    Its good that we are back , i also had my server rooted recently by pakbugs . they destroyed whole the data on it and i dinn have full backup of things so it was really hard to get things on track

    anyways nice to see forums back keep rocking :P . Lets Ddos them i will pass the server anyone interested :O

Page 2 of 3 FirstFirst 123 LastLast

Similar Threads

  1. Recovery of files using Ubuntu
    By xxtoni in forum Tech-Talk
    Replies: 2
    Last Post: 3 June, 2010, 05:52 AM
  2. Global recovery at hand: Bernanke
    By GeeOne in forum General Chat
    Replies: 1
    Last Post: 22 August, 2009, 07:23 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •