Bah - hacky kids

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

Grim...
DevNet Resident
Posts: 1445
Joined: Tue May 18, 2004 5:32 am
Location: London, UK

Bah - hacky kids

Post by Grim... »

One of my domains got hacked over the weekend - it looks like a script was used to replace anything with 'index.' in the filename with his lovely alternate version (work safe, but plays music).

Do you think I should report it? If so - who the hell do I report it to?
User avatar
Benjamin
Site Administrator
Posts: 6935
Joined: Sun May 19, 2002 10:24 pm

Post by Benjamin »

Freakin putz :evil:

Sorry to hear all that.. wonder how he got in. I don't think anyone would do anything about it if you reported it though honestly, but you never know, the FBI might go after them since it's terrorism related..
GM
Forum Contributor
Posts: 365
Joined: Wed Apr 26, 2006 4:19 am
Location: Italy

Post by GM »

Not just hacked...

Hacked "in the name of Allaah".

I wonder where in the Koran it is written that websites should be hacked...?
User avatar
patrikG
DevNet Master
Posts: 4235
Joined: Thu Aug 15, 2002 5:53 am
Location: Sussex, UK

Post by patrikG »

Sorry to hear you got hacked. I like the music, though ;)
User avatar
Chris Corbyn
Breakbeat Nuttzer
Posts: 13098
Joined: Wed Mar 24, 2004 7:57 am
Location: Melbourne, Australia

Re: Bah - hacky kids

Post by Chris Corbyn »

Grim... wrote:Do you think I should report it? If so - who the hell do I report it to?
Report it to your web host.

Is this a shared host? Make sure all the other thousands of users on the same server don't have access to your stuff. If it's a VDS or dedicated server first change your passwords immediately, make sure you have no stupid accounts with names like "test, password=test". Then upgrade what you can. Check your logs for access times and IP addresses and see if you can trace where this come from. Maybe even see if they left what they did in .bash_history.
Grim...
DevNet Resident
Posts: 1445
Joined: Tue May 18, 2004 5:32 am
Location: London, UK

Re: Bah - hacky kids

Post by Grim... »

d11wtq wrote:Report it to your web host.

Is this a shared host? Make sure all the other thousands of users on the same server don't have access to your stuff.
Yeah, I did that straight away. It looks like they went in via my FTP account, nothing else on the server was touched.
User avatar
Chris Corbyn
Breakbeat Nuttzer
Posts: 13098
Joined: Wed Mar 24, 2004 7:57 am
Location: Melbourne, Australia

Re: Bah - hacky kids

Post by Chris Corbyn »

Grim... wrote:
d11wtq wrote:Report it to your web host.

Is this a shared host? Make sure all the other thousands of users on the same server don't have access to your stuff.
Yeah, I did that straight away. It looks like they went in via my FTP account, nothing else on the server was touched.
So you'll have changed your password then :)
User avatar
shiznatix
DevNet Master
Posts: 2745
Joined: Tue Dec 28, 2004 5:57 pm
Location: Tallinn, Estonia
Contact:

Post by shiznatix »

it's people like that who if you where ever to meet in real life would end up with a broken nose and minus some teeth. sorry to that.
Grim...
DevNet Resident
Posts: 1445
Joined: Tue May 18, 2004 5:32 am
Location: London, UK

Post by Grim... »

And then I'd be in trouble for breaking his nose.

Pfft.
User avatar
jayshields
DevNet Resident
Posts: 1912
Joined: Mon Aug 22, 2005 12:11 pm
Location: Leeds/Manchester, England

Post by jayshields »

I remember back in the day when I used to run PHP-Nuke websites, they used to get hacked into every other week.

I can't understand why people would spend time and effort doing something to annoy someone else when they have nothing against them - obviously the reason is "just because they can", but they could also have spent that time clearing the streets from rubbish rather than hacking websites.
User avatar
RobertGonzalez
Site Administrator
Posts: 14293
Joined: Tue Sep 09, 2003 6:04 pm
Location: Fremont, CA, USA

Post by RobertGonzalez »

You're not, by any chance, on iPowerweb servers are you?
Grim...
DevNet Resident
Posts: 1445
Joined: Tue May 18, 2004 5:32 am
Location: London, UK

Post by Grim... »

Nope.
SpiderMonkey
Forum Commoner
Posts: 85
Joined: Fri May 05, 2006 4:48 am

Post by SpiderMonkey »

jayshields wrote:I can't understand why people would spend time and effort doing something to annoy someone else when they have nothing against them - obviously the reason is "just because they can", but they could also have spent that time clearing the streets from rubbish rather than hacking websites.
The answer to that question should be self evident - which is more fun, picking up half eaten kebabs or engaging in a battle of technical aptitude with a website designer?

Anyhow, what was the original content of this site, that it attracted such a hacker?
User avatar
Benjamin
Site Administrator
Posts: 6935
Joined: Sun May 19, 2002 10:24 pm

Post by Benjamin »

Grim,

Have you determined how he was able to obtain your login credentials? Was anyone else on the server effected? If not, and your on Windows, I would reformat and reinstall.
Grim...
DevNet Resident
Posts: 1445
Joined: Tue May 18, 2004 5:32 am
Location: London, UK

Post by Grim... »

Brute-force on my FTP password, according to the logs.
Post Reply