Guest anon Posted April 14, 2004 Report Share Posted April 14, 2004 Bastards Quote Link to comment Share on other sites More sharing options...
Gowator Posted April 14, 2004 Report Share Posted April 14, 2004 Things get even more interesting. I tried the pclinuxonline site this morning and was redirected to a lovely porn site. Anal sex is NOT something I really want to see at 7 AM. Especially at work. Heck, I'd rather not be at qwork at 7AM either ..... Im in WinBlows right now ... so better not to check.... Bastards !!!!!!!!!!!!!!!!!!1 Quote Link to comment Share on other sites More sharing options...
Ronin Posted April 14, 2004 Report Share Posted April 14, 2004 Heck,I'd rather not be at qwork at 7AM either ..... Im in WinBlows right now ... so better not to check.... Bastards !!!!!!!!!!!!!!!!!!1 Go for it Gowator.. :D I did at work just to see what happens. Homepage hijack and some "interesting" toolbars. Nothing that can't be fixed with Spybot and Adaware though. Quote Link to comment Share on other sites More sharing options...
zero0w Posted April 14, 2004 Report Share Posted April 14, 2004 This sucks. PCLinuxOnline got hacked again..... Quote Link to comment Share on other sites More sharing options...
aRTee Posted April 14, 2004 Report Share Posted April 14, 2004 Be very careful, I got a trojan warning every time I hit reload, so it's more than meets the eye. I pm-ed Texstar, hope he gets it; I do think that by now he knows... Quote Link to comment Share on other sites More sharing options...
Guest anon Posted April 14, 2004 Report Share Posted April 14, 2004 I pm-ed Texstar, hope he gets it; I do think that by now he knows... I e-mailed him also and offered some help. Lets hope we never get that shit happening here. Quote Link to comment Share on other sites More sharing options...
aRTee Posted April 14, 2004 Report Share Posted April 14, 2004 I agree,.. I think that this board has made no enemies though, and is lower profile than pclo. That said, I do hope you guys can make sure it is very very difficult to hack this board, right? :) Quote Link to comment Share on other sites More sharing options...
Guest anon Posted April 14, 2004 Report Share Posted April 14, 2004 Well thats my job as the board is on my server. I do my best, but i can't promise it won't happen. Quote Link to comment Share on other sites More sharing options...
aRTee Posted April 14, 2004 Report Share Posted April 14, 2004 Before being a victim, you have to be a target. Security needs depends on what's getting secured too. And I'm sure you all are doing a great job, thanks! Quote Link to comment Share on other sites More sharing options...
jlc Posted April 15, 2004 Report Share Posted April 15, 2004 Security Space ^Anyone ever hear of them?^ Wonder if there audits are any good for sites, like say MUB or PcOS Quote Link to comment Share on other sites More sharing options...
Michel Posted April 15, 2004 Report Share Posted April 15, 2004 (edited) I don't know how they hacked it, but if it are certain scripts or so that got "bad" input, he maybe could have a look here if the site is using apache ..... http://www.modsecurity.org/ as far as I can tell it protects against the "bad" input. Ofcourse you have to say what is allowed and what not. It would be better if the system itself was secure and I hope they'll get it fixed ....., but maybe this can help also. Edited April 15, 2004 by Michel Quote Link to comment Share on other sites More sharing options...
tyme Posted April 15, 2004 Report Share Posted April 15, 2004 they've been hit again...i'd give a screenshot but I'm at work and in windows, and don't want to hurt anyones eyes with the ugliness that is W2K....so go take a peak and someone else post a screenshot for future reference :-P http://www.pclinuxonline.com (right at the top) Quote Link to comment Share on other sites More sharing options...
Ghil Vertefeuille Posted April 15, 2004 Report Share Posted April 15, 2004 it's okay now, everything seems to be back to normal Okay, at least the hacker was kind enough to give me a hint on where to find the security hole this time. I've gone ahead and found the Nuke Cops patch for admin.php and applied it. I've also removed yet another god level admin account from the database. This is *not* the way to start two mornings in a row, let me tell ya. - TheDarb Quote Link to comment Share on other sites More sharing options...
Sarissi Posted April 15, 2004 Report Share Posted April 15, 2004 Looks like he got it patched, with a hint from the hacker. Hope that solves the problem. Quote Link to comment Share on other sites More sharing options...
AussieJohn Posted April 15, 2004 Report Share Posted April 15, 2004 I often think it is such a pity that more research is not being done to develop a method of detecting and tracking these kind of filthy scum. I know that they often use peoples highjacked computers but people who do not check to make sure that their computer is suitably protected should be charged for contributory negligence as well. I have no idea how these sort of things done technically, so can anyone tell me whether this effort was done by a windows type script kiddie or someone with linux knowledge? If the offending mongrel does get caught finally, I hope someone will work him over because the LAW certainly won't. At most he would only get a slap on the wrist. Cheerup Texstar. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.