|
|
| Ghostkid |
  Posted 4th Aug 2008 10:59pm |  |
Invisible Kid
L4Y Member
Post 1907 / 2212
 |
Guess metlak deleted my thread.
Whats happening? Who's winning? xD |
Xbox 360 Gamertag: Firefist1
Xfire: Ghostkid1 |
|
|
Garner  |
Posted 4th Aug 2008 11:01pm | |
Post 3798 / 4125
 |
Restored from backup hence the site is back to exactly the way it was yesterday (with the one exception of a password change to a random mashing of the keyboard for a certain compromised account...) |
"Science is this extraordinary transnational, transcultural, trans-everything language which is the only way to discover Truth and its regrettable that billions are still stuck in the Middle Ages believing the crap propagated by Popes and priests..."
- Peter Atkins |
|
|
| Ghostkid |
Posted 4th Aug 2008 11:02pm | |
Invisible Kid
L4Y Member
Post 1908 / 2212
|
| Quoting Garner | | Restored from backup hence the site is back to exactly the way it was yesterday (with the one exception of a password change to a random mashing of the keyboard for a certain compromised account...) |
Soooo, What did the guy do, and why did it work ? |
Xbox 360 Gamertag: Firefist1
Xfire: Ghostkid1 |
|
|
sobe  |
Posted 4th Aug 2008 11:05pm |
Post 2871 / 3194
 |
Either that or Frank was super awesome enough to leave a "trail" by browsing something he shouldn't have or so  |
| "Apparently, Plaintiff believes that he could sue an egg company for fraud for labeling a carton of 12 eggs a dozen, because some bakers would view a dozen as including 13 items." - Western Digital 2006 |
|
|
| Garner |
Posted 4th Aug 2008 11:07pm | |
Post 3799 / 4125
|
Putting it simply...
Got/guessed/brute forced/whatevered a password of a network admin here. Nothing other than a few config variable changes, word censor changes, other admin account passwords changed, a few staff members removed... all in what would appear to be an attempt to hamper restoring the site.
One simple little command to use a backup however and the site reverts back... 2 minutes work really. Spent far longer working out what happened... but even that wasn't hard as the site logs everything and spotting the compromised account was bloody easy. |
"Science is this extraordinary transnational, transcultural, trans-everything language which is the only way to discover Truth and its regrettable that billions are still stuck in the Middle Ages believing the crap propagated by Popes and priests..."
- Peter Atkins |
|
|
| KILLER |
Posted 4th Aug 2008 11:08pm |
Post 1071 / 1723
 |
Well, my account seems compromised. Still listed as a staff member here, but no Admin Panel, nor access to staff forums. 
EDIT : Fixed. It finally kicked out my login and re logged in, THANK YOU GARNER!!! |
| P.L.U.R.Peace-Love-Unity-Respect |
Modified Aug 4th, 11:11pm by KILLER |
|
| Ghostkid |
Posted 4th Aug 2008 11:09pm | |
Invisible Kid
L4Y Member
Post 1909 / 2212
|
| Quoting Garner | Putting it simply...
Got/guessed/brute forced/whatevered a password of a network admin here. Nothing other than a few config variable changes, word censor changes, other admin account passwords changed, a few staff members removed... all in what would appear to be an attempt to hamper restoring the site.
One simple little command to use a backup however and the site reverts back... 2 minutes work really. Spent far longer working out what happened... but even that wasn't hard as the site logs everything and spotting the compromised account was bloody easy. |
So, cant you like trace him or something ? |
Xbox 360 Gamertag: Firefist1
Xfire: Ghostkid1 |
Modified Aug 4th, 11:12pm by Ghostkid |
|
| Garner |
Posted 4th Aug 2008 11:11pm | |
Post 3800 / 4125
|
KILLER - you were one of the deleted staffers, log out and back in again to get the restored copy of your account. |
"Science is this extraordinary transnational, transcultural, trans-everything language which is the only way to discover Truth and its regrettable that billions are still stuck in the Middle Ages believing the crap propagated by Popes and priests..."
- Peter Atkins |
|
|
| Garner |
Posted 4th Aug 2008 11:12pm | |
Post 3801 / 4125
|
| Quoting Ghostkid | | Quoting Garner | Putting it simply...
Got/guessed/brute forced/whatevered a password of a network admin here. Nothing other than a few config variable changes, word censor changes, other admin account passwords changed, a few staff members removed... all in what would appear to be an attempt to hamper restoring the site.
One simple little command to use a backup however and the site reverts back... 2 minutes work really. Spent far longer working out what happened... but even that wasn't hard as the site logs everything and spotting the compromised account was bloody easy. |
So, can you like trace him or something ? |
Got all the IP's, to be honest it'll likely lead nowhere unless the guy was a complete muppet. |
"Science is this extraordinary transnational, transcultural, trans-everything language which is the only way to discover Truth and its regrettable that billions are still stuck in the Middle Ages believing the crap propagated by Popes and priests..."
- Peter Atkins |
|
|
| Ghostkid |
Posted 5th Aug 2008 12:06am | |
Invisible Kid
L4Y Member
Post 1910 / 2212
|
if anyone is intrested i'll ask my turkish friend what it means tommorrow? |
Xbox 360 Gamertag: Firefist1
Xfire: Ghostkid1 |
|
|
| Ghostkid |
Posted 5th Aug 2008 12:14am | |
Invisible Kid
L4Y Member
Post 1911 / 2212
|
| Quoting Colt Walker | Yeah that would be cool I was kinda wondering about that.
But I got a pretty good feeling what it says. |
Probably some crap about war and stuff. |
Xbox 360 Gamertag: Firefist1
Xfire: Ghostkid1 |
|
|
Assman15  |
Posted 5th Aug 2008 12:18am | |
Post 1551 / 2085
 |
Glad to see you backup the site often. Not so glad to see that there seems to be no automatic measures taken against brute forcing; maybe some sort of lockout system should be put in place? Something like 4 or 5 failed attempts and the account gets locked out, sending an email to the account holder and a PM to a staff member? Just a thought. Good to know things can be worked out fairly quickly even when something big minor like that happens. |
|
|
| Assaultman67 |
Posted 5th Aug 2008 12:20am | |
Post 3296 / 4376
 |
there is a lockout system ... |
|
|
| Assman15 |
Posted 5th Aug 2008 12:35am | |
Post 1552 / 2085
|
Is there? It doesn't seem to have worked well if the password was brute-forced. |
|
|
| Garner |
Posted 5th Aug 2008 12:54am | |
Post 3803 / 4125
|
| Quoting Naruto 53 | Heh, I know this would happen sooner or later.  Getting some ones PW is a walk in the park, but if there is no IP/ an untracable IP. It would have been an experianced hacker.... 
Hate to say I didnt tell you so.... There is only one person smarter than all of yall to catch this hacker... I will ask him once he logs onto msn.
Somone forward this dang post...  |
There was no brute force, 2 failed logins from NCF only in the logs. Looks highly likely like just an easy password...
Staff already have two passwords (password and memorable word), think its time for forcing password strength and changing it every 2 hours as well  |
"Science is this extraordinary transnational, transcultural, trans-everything language which is the only way to discover Truth and its regrettable that billions are still stuck in the Middle Ages believing the crap propagated by Popes and priests..."
- Peter Atkins |
|
|
| Johnny_Suave |
Posted 5th Aug 2008 1:02am |
L4Y Member
Post 1000 / 1154
 |
When I tried to log in earlier, the RF section was nearly all black and buttons seemed to be missing as well. I was trying to tell him he's a loser, but it didn't work out. |
|
|
Page 1
Multiple Page Topic : 1 2 3 4 5 6 7 |
    |
|
|
|
