So what happened last night?

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

User avatar
nielsene
DevNet Resident
Posts: 1834
Joined: Fri Aug 16, 2002 8:57 am
Location: Watertown, MA

So what happened last night?

Post by nielsene »

I was starting to wonder if all of phpDB is under attack. First we lose the walrus, then this site was gone for a while, etc....
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

it appears a few russian hackers ran some exploitations or something last night.. we got it band-aided at this point, we're updating several other systems to fix it good.
McGruff
DevNet Master
Posts: 2893
Joined: Thu Jan 30, 2003 8:26 pm
Location: Glasgow, Scotland

Post by McGruff »

Unfortunately php bbcode tags have been affected by the changes. New posts should be fine but older ones aren't being formatted properly. Hopefully this will be sorted out soon.

I wish I had unit tests to work against...
User avatar
Ambush Commander
DevNet Master
Posts: 3698
Joined: Mon Oct 25, 2004 9:29 pm
Location: New Jersey, US

Post by Ambush Commander »

How do you know they're russian?
theda
Forum Contributor
Posts: 332
Joined: Sat Feb 19, 2005 8:35 am
Location: USA

Post by theda »

Probably because they spoke upside down English?
Roja
Tutorials Group
Posts: 2692
Joined: Sun Jan 04, 2004 10:30 pm

Post by Roja »

theda wrote:Probably because they spoke upside down English?
No, thats the Australians.

The site was briefly redirected to a .ru site - russian, and the text was entirely cyrillic (also russian). Of course, it could have been a notrealcountrian, who wanted to be funny and redirect it at a Russian site for no particular reason.
User avatar
Ambush Commander
DevNet Master
Posts: 3698
Joined: Mon Oct 25, 2004 9:29 pm
Location: New Jersey, US

Post by Ambush Commander »

Hmm... that's interesting.

I don't mean to have the mentality of "why didn't you do something beforehand" but do we know what the exploit was?
McGruff
DevNet Master
Posts: 2893
Joined: Thu Jan 30, 2003 8:26 pm
Location: Glasgow, Scotland

Post by McGruff »

Can't really discuss server security measures on a public forum I'm afraid.
User avatar
shiznatix
DevNet Master
Posts: 2745
Joined: Tue Dec 28, 2004 5:57 pm
Location: Tallinn, Estonia
Contact:

Post by shiznatix »

i dont understand peoples hatred of this forum. this is the second major attack iv seen since i joined here and its like why, we do nothing to anyone and provide help to everyone that wants it. gah i hate people
User avatar
CoderGoblin
DevNet Resident
Posts: 1425
Joined: Tue Mar 16, 2004 10:03 am
Location: Aachen, Germany

Post by CoderGoblin »

Is the problem phpBB related or the server. If phpBB is there any details on the phpBB web site (couldn't see any yesterday). Are there any fixes (I know of a least customer of my firm that uses phpBB and although not responsible for it would like to inform them of any possible hack prevention).
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

we're still investigating the actual cause, but gut reaction says phpbb..
theda
Forum Contributor
Posts: 332
Joined: Sat Feb 19, 2005 8:35 am
Location: USA

Post by theda »

Oh come on, you can talk security here :). We'd all love to log into the main FTP server.
Roja
Tutorials Group
Posts: 2692
Joined: Sun Jan 04, 2004 10:30 pm

Post by Roja »

theda wrote:Oh come on, you can talk security here :). We'd all love to log into the main FTP server.
ftp.example.com
Username: phpdn
password: 12345

Oddly, Jason has the same password on his luggage.
theda
Forum Contributor
Posts: 332
Joined: Sat Feb 19, 2005 8:35 am
Location: USA

Post by theda »

Oh damn... For a second there, I thought I was going to be teh 1337 h4x0rs.
User avatar
evilmonkey
Forum Regular
Posts: 823
Joined: Sun Oct 06, 2002 1:24 pm
Location: Toronto, Canada

Post by evilmonkey »

What russian site just out of curiosity? I speak Russian, might shed some light. If it was something generic, like aport.ru or rambler.ru, then no. But I'd still be interesting if you posted the site it redirected to.
Post Reply