Cellar briefly hacked
 

The entire system was hacked tonight and was down for two hours. It was a defacement hacking. All sites on my server were affected. All are restored. Total down time was 2 hours. The back door they used is a known one and I am to be slapped around because I left it open for a convenience.

So...didja save any screenshots?

Yeah, I saw it 'spode.

I said Saudis Suck or something. I closed the window real fast.

I was IM'ing with my 17yo nephew when I noticed this. The conversation went:

me: uh oh looks like a web site I visit just got pwned
him: ...
him: uhhhh
him: did you just use the word "pwned"???

And so I had to splain to him that even though I seem old and stuffy to the untrained teenage observer, that I do know some interesting things.

It was an amusing moment, though I'm sorry it came at your expense UT.

I can still see the hacked page -____-

I am terminally *un*hip. What the hell does "pwned" mean?

I got it. :eyebrow:

Els: pwned

A deliberate mispelling of "owned", or "got the better of".

[edit]: What he said.

You know, this is all the fault of those This Is Not Porn dweebs.

Does the gibberish under the photo mean anything in technoslovokian?
Fast clean up UT, above and beyond as usual.

Griff: Roughly translated into english: We completely own this computer and can do what we want, we would like to get laid one day but this is a second best that keeps us going for now.

i wonder if it's "teh 1337 hax0r" who erased his own drive.

Thanks for fixing the login. I was unable to get back on the Cellar after the hack, probably because I don't save my cookies.

Well, there are so many hackers out there. I'm just glad some people are helping us learn to identify them. (Courtesy of my nephew.)

BWAHAHAHAHAHAHAHA! :lol2:

Top Ten Signs Your Child is a Hacker.

1) Asks you to buy large quantities of Twinkies and Jolt Cola.
2) Brings home a DVD of the next Star Wars movie - 2 years before it's release date.
3) Is able to run his own FBI background checks on potential babysitters.

....

"however, lunix is a capricious beast"

Oh my.

I was also surprised to find my reading list referred to as "hacker manuals." I must have missed some subtext somewhere ...

Surfing about a bit ... it's a shame that this is an archival site only. He spreads much important truth.

Witchcraft

You are Not Irish, They are Not Republicans.

A really tasty recipe.

Actually, I think that the warning at the bottom of the recipe page should be posted on top of every single page of the site.

ditto ... likewise ... etc :)

ok, please tell me that this is satire? please? it is pretty funny, but if that guy is serious, then i am really, really afraid. :worried:

its parody

and its awesome in the extreme

i was laughing my arse off assuming it was a joke, but then it kept going and going and i read his other articles... it is pretty funny.

but then if you read some of the posts and replies to his articles - then you see scary.

I, too, managed to get a taste of going cold turkey. I could not login at all. I managed to work myself into a perfect froth of unhappiness at not being able to login.



I think I could benefit from limiting my time yakking here.





Nah.

I don't know which was funnier...the "article", or the fact that a lot of people didn't know it was satire.

The "article" is way funnier, cause people who don't understand that it is satire, are not funny, they're either ignorant (no bad thing, not everyone cares about computers) ore they do care and they believe it. They're not funny, they're scary.

Oh yeah, funny.
It has recently been announced that the People's Republic of China has been pioneering the practice of using the organs of the condemned to help the living. For years, with the help of new and innovative execution methods, kidneys, skin, and corneas have successfully been harvested from dead criminals and used to better the lives of those in need. In China, capital punishment is no longer an animal lashing-out against the enemies of society, but a wholesome, constructive act of giving new life.

There is no reason that the United States cannot step up its death penalty convictions to match Chinese levels and achieve the same benefits -- but this won't happen without your help. Write your elected representatives and let them know what you think about the tremendous waste represented by the death penalty as it is used in the United States today. Inform them that you support capital punishment for drug traffickers, a mandatory death penalty for violent criminals, and research on transplant-friendly means of execution.
:worried:

I didn't realize that it was satire because it was very believable to me that there many people out there as uninformed as the article suggests its author is. Read the letters to the editor in 2600 sometime and you will see what I mean.

I love it everytime witches get their panties in a bunch over landoverbaptist.com.

People who typically consider themselves educated and sophisticated that can't discern satire and hyperbole (and can't pronounce it, either) really, really worry me.

"A Modest Proposal".

Also, Larry Niven's organlegging books.

OK, the system was defaced again last night and I tried to set things up quickly on another machine and failed. Doh.

OK, great, and I forgot to re-setup routing to it overnight because I was up late trying to get it fixed.

Sigh.

And yet, the cellar remains accessible. You've considerable resilience, apparently. Get some rest.

RAndom act, or someone like the poet laureate of atlantis getting a shot in for making fun of him?

I think it's a kiddie who has found a back door I wasn't previously aware of. I'm not posting all the details though because that wouldn't be prudent.

Of course, there's people like Fred Phelps at www.godhatesfags.com who make this sort of thing a bit more ambiguous.

I tried to log in last night after work and got very, very worried when I started getting "Connection refused by" messages ... then I tried tracert'ing and pinging cellar and one of your business servers and got time-outs.

Figured it was one of the little bastids. We're not at another webscalpel anniversary date, are we?

wow......someone needs a blowjob *bad*.

I'm thinking he might have had one from his uncle at some critical moment in his early development. the Matthew Shepherd thing happened 40 miles from here, we enjoyed a demonstration by phelps et al at our homecoming football game against Wyoming. Don't know who they were rooting for. I think it was more likely the Cowboys, since our mascot at CSU is a ram. :snort: :laff:

I thought witches went commando.

Only when we're overdue on getting down to the laundromat.

Or when the boywitches are wearing kilts.

I do..I do. :blush:

I wrote out a long reply to a PM and couldn't send it. Then I couldn't get back in. I was wondering if the perps that hacked in the other day, did some exploring while they were here and checked out all the doors and windows?
Probably just swam up the toilet, rat bas-turds. :rar:

WWJD? Jesus would administer a much-needed asswhoopin' to Mr. Phelps; that's what Jesus would do. Jesus loved sinners but had nothing but contempt for those who overlooked their own faults in favor of the faults of others.

Since the little weasels probably had time to snoop around in the system, I changed my password.

Oh Yeah, how do we know you is you?? :eyebrow:

Hmmmm... good question...

So, "Rich", tell us again why Bush is the greatest president in American History.

BUsh is a lying asshole. meat is murder. fight the power \m/

has anyone read tw's last post in regarding 70hp/liter? it is really insightful and i must admit that he has brought me around to his way of thinking. now if we can only get rid of that mental midget, religious extremist who couldn't do anything for 7 minutes until Andy Card reminded him that he had an MBA and should pretend he was in charge...

seriously though. has anyone else taken note that the hacks started right after certain smartass cellarites put T-I-N-P somewhere in their signature causing the google ranking to rise? think there might be a connection?

*slinks away to delete the phrase from signature*

Yeah. One happened first, the next happened later.

I think we had puh-lenty tnip visibility before the joke about the sigs.

Seriously.

Perhaps UT has some insight as to the forensic evidence left by the attackers. I googled up the Red Devils Crew (RDC, get it?) and got a long list of sites defaced by them. None seemed TNIP-centric in the least. my :2cents:

:rar:

Another two hours wasted... another hole closed.

What I do know is that these are strictly script hacking kiddies. I can restore to a better system at any time, so the long term health of the system is not affected, rest assured. And all the data is backed up. God dammit.

CAN YOU RETURN FIRE?!

hack the hackers?

set a trap? do something evil? wtf?

He could but you really don't want to wage war with these kids. Next thing you know, you have a full-scale DDOS attack on your hands. Best thing is to defend well and they'll eventually move on in search of an easier target.

You don't want to end up like this guy.

He's shined up that page a lot. I think I first read it when it was just plain vanilly html, courier type.

The problem with hacking the hackers is then you're the one who ends up getting in trouble over it.

I think it would be very cool, however, to be able to call their parents, and give them a bill for the hours to correct their actions ...

Correct me if I'm wrong UT but the passwords here are hashed, meaning that the password is stored in a way that allows you to compare the one you send to the one on file but not read the one on file. They could have snooped on connections of people logging in while they were in but these are script kiddies and that is probably beyond them.

When I clicked on it, google had intervened and translated it from Korean. Didn't make a damn bit of sense to me but it looked like a message board. I snipped some words and phrases out that seemed to reinforce the idea that some rookie crackers are the posters such as: kernel, php, crack, can't get laid to save my ass, nuclear acne, buffer overflow, etc.)

I thought this exchange was hilarious. I so love machine translators.

Right, I linked the Google translation page which is the first Google evidence of the keywords of some of the trojans. Messages dated April 29 - recent, current. Also tells us that the guaranteed solution is a kernel upgrade.

I'm still thinking that my main error was leaving open (an insecured FTP) for a few days as a favor to a small client. Duh. I also made a smaller error in leaving open a file upload service leading to a web-readable directory. It was password-protected but only VERY rudimentarily. Duh.

I have closed the doors I know about and gotten rid of the trojans I know about, but can't assume it's perfectly fixed. It means that I have to assume this system is insecure until I move things systematically to an entirely secure server.

from my non-tech perspective: why exactly would someone want to hack the cellar? there is no financial incentive. no societal incentive whatsoever from what i can tell. there is no agenda that they are pushing on us.

are people really so bored with their sad little lives that effing with a bulletin board is worth their time and effort?

Reminds me of something I ran across on www.enlightenedcaveman.com .

"Nathaniel West wrote, I thought, beautifully about that syndrome, and W.H. Auden, the poet, wrote an essay about West's analysis of that syndrome, which he called, 'West's Disease.' It's about people who, for whatever reason, are unable to turn wishes into passions in their life, and lacking that capacity, sit passively in mute outrage, anticipating disasters. They go to fires. Any sort of natural disaster attracts them. And in the absence of a natural disaster, they sometimes try and create disasters. And they hate the people whose lives, whether successful or not, are pursued with passion. And first they idolize them, then they want to destroy them. They want to appropriate the vitality of those people..."

In a word, yes.