Cellar briefly hacked - Page 4

lookout123 · 05-06-2005, 11:39 AM

has anyone read tw's last post in regarding 70hp/liter? it is really insightful and i must admit that he has brought me around to his way of thinking. now if we can only get rid of that mental midget, religious extremist who couldn't do anything for 7 minutes until Andy Card reminded him that he had an MBA and should pretend he was in charge...

lookout123 · 05-06-2005, 12:27 PM

seriously though. has anyone else taken note that the hacks started right after certain smartass cellarites put T-I-N-P somewhere in their signature causing the google ranking to rise? think there might be a connection?

*slinks away to delete the phrase from signature*

BigV · 05-06-2005, 12:47 PM

Yeah. One happened first, the next happened later.

I think we had puh-lenty tnip visibility before the joke about the sigs.

Seriously.

Perhaps UT has some insight as to the forensic evidence left by the attackers. I googled up the Red Devils Crew (RDC, get it?) and got a long list of sites defaced by them. None seemed TNIP-centric in the least. my

Undertoad · 05-07-2005, 05:45 PM

Another two hours wasted... another hole closed.

What I do know is that these are strictly script hacking kiddies. I can restore to a better system at any time, so the long term health of the system is not affected, rest assured. And all the data is backed up. God dammit.

lumberjim · 05-07-2005, 07:30 PM

CAN YOU RETURN FIRE?!

hack the hackers?

set a trap? do something evil? wtf?

Beestie · 05-07-2005, 08:30 PM

He could but you really don't want to wage war with these kids. Next thing you know, you have a full-scale DDOS attack on your hands. Best thing is to defend well and they'll eventually move on in search of an easier target.

You don't want to end up like this guy.

Quote:

Nothing more than the whim of a 13-year old hacker is required to knock any user, site, or server right off the Internet.

wolf · 05-08-2005, 10:37 AM

He's shined up that page a lot. I think I first read it when it was just plain vanilly html, courier type.

The problem with hacking the hackers is then you're the one who ends up getting in trouble over it.

I think it would be very cool, however, to be able to call their parents, and give them a bill for the hours to correct their actions ...

Undertoad · 05-10-2005, 12:14 PM

does anybody know korean?

jaguar · 05-10-2005, 12:40 PM

Quote:

Since the little weasels probably had time to snoop around in the system, I changed my password.

Correct me if I'm wrong UT but the passwords here are hashed, meaning that the password is stored in a way that allows you to compare the one you send to the one on file but not read the one on file. They could have snooped on connections of people logging in while they were in but these are script kiddies and that is probably beyond them.

Beestie · 05-10-2005, 12:51 PM

Quote:

Originally Posted by Undertoad

does anybody know korean?

When I clicked on it, google had intervened and translated it from Korean. Didn't make a damn bit of sense to me but it looked like a message board. I snipped some words and phrases out that seemed to reinforce the idea that some rookie crackers are the posters such as: kernel, php, crack, can't get laid to save my ass, nuclear acne, buffer overflow, etc.)

wolf · 05-10-2005, 01:05 PM

I thought this exchange was hilarious. I so love machine translators.

Quote:

Most sight of an airplane: Before it knows the bedspread.

Box: The accounts groove blood which I use encountered, well! the same bedspread.

Undertoad · 05-10-2005, 01:10 PM

Right, I linked the Google translation page which is the first Google evidence of the keywords of some of the trojans. Messages dated April 29 - recent, current. Also tells us that the guaranteed solution is a kernel upgrade.

I'm still thinking that my main error was leaving open (an insecured FTP) for a few days as a favor to a small client. Duh. I also made a smaller error in leaving open a file upload service leading to a web-readable directory. It was password-protected but only VERY rudimentarily. Duh.

I have closed the doors I know about and gotten rid of the trojans I know about, but can't assume it's perfectly fixed. It means that I have to assume this system is insecure until I move things systematically to an entirely secure server.

lookout123 · 05-10-2005, 01:23 PM

from my non-tech perspective: why exactly would someone want to hack the cellar? there is no financial incentive. no societal incentive whatsoever from what i can tell. there is no agenda that they are pushing on us.

are people really so bored with their sad little lives that effing with a bulletin board is worth their time and effort?

Troubleshooter · 05-10-2005, 01:33 PM

Reminds me of something I ran across on www.enlightenedcaveman.com .

"Nathaniel West wrote, I thought, beautifully about that syndrome, and W.H. Auden, the poet, wrote an essay about West's analysis of that syndrome, which he called, 'West's Disease.' It's about people who, for whatever reason, are unable to turn wishes into passions in their life, and lacking that capacity, sit passively in mute outrage, anticipating disasters. They go to fires. Any sort of natural disaster attracts them. And in the absence of a natural disaster, they sometimes try and create disasters. And they hate the people whose lives, whether successful or not, are pursued with passion. And first they idolize them, then they want to destroy them. They want to appropriate the vitality of those people..."

SteveDallas · 05-10-2005, 02:22 PM

Quote:

Originally Posted by lookout123

are people really so bored with their sad little lives that effing with a bulletin board is worth their time and effort?

In a word, yes.

05-06-2005, 11:39 AM	#46
lookout123 changed his status to single Join Date: Apr 2004 Location: Right behind you. No, the other side. Posts: 10,308	has anyone read tw's last post in regarding 70hp/liter? it is really insightful and i must admit that he has brought me around to his way of thinking. now if we can only get rid of that mental midget, religious extremist who couldn't do anything for 7 minutes until Andy Card reminded him that he had an MBA and should pretend he was in charge... __________________ Getting knocked down is no sin, it's not getting back up that's the sin

05-06-2005, 12:27 PM	#47
lookout123 changed his status to single Join Date: Apr 2004 Location: Right behind you. No, the other side. Posts: 10,308	seriously though. has anyone else taken note that the hacks started right after certain smartass cellarites put T-I-N-P somewhere in their signature causing the google ranking to rise? think there might be a connection? slinks away to delete the phrase from signature __________________ Getting knocked down is no sin, it's not getting back up that's the sin

05-06-2005, 12:47 PM	#48
BigV Goon Squad Leader Join Date: Nov 2004 Location: Seattle Posts: 27,063	Yeah. One happened first, the next happened later. I think we had puh-lenty tnip visibility before the joke about the sigs. Seriously. Perhaps UT has some insight as to the forensic evidence left by the attackers. I googled up the Red Devils Crew (RDC, get it?) and got a long list of sites defaced by them. None seemed TNIP-centric in the least. my __________________ Be Just and Fear Not.

05-07-2005, 07:30 PM	#50
lumberjim I can hear my ears Join Date: Oct 2003 Posts: 25,571	CAN YOU RETURN FIRE?! hack the hackers? set a trap? do something evil? wtf? __________________ This body holding me reminds me of my own mortality Embrace this moment, remember We are eternal, all this pain is an illusion ~MJKeenan

05-08-2005, 10:37 AM	#52
wolf lobber of scimitars Join Date: Jul 2001 Location: Phila Burbs Posts: 20,774	He's shined up that page a lot. I think I first read it when it was just plain vanilly html, courier type. The problem with hacking the hackers is then you're the one who ends up getting in trouble over it. I think it would be very cool, however, to be able to call their parents, and give them a bill for the hours to correct their actions ... __________________ wolf eht htiw og "Conspiracies are the norm, not the exception." --G. Edward Griffin The Creature from Jekyll Island High Priestess of the Church of the Whale Penis

05-07-2005, 05:45 PM	#49
Undertoad Radical Centrist Join Date: Jan 2001 Location: Cottage of Prussia Posts: 31,423	Another two hours wasted... another hole closed. What I do know is that these are strictly script hacking kiddies. I can restore to a better system at any time, so the long term health of the system is not affected, rest assured. And all the data is backed up. God dammit.

05-10-2005, 12:14 PM	#53
Undertoad Radical Centrist Join Date: Jan 2001 Location: Cottage of Prussia Posts: 31,423	does anybody know korean?

05-10-2005, 01:10 PM	#57
Undertoad Radical Centrist Join Date: Jan 2001 Location: Cottage of Prussia Posts: 31,423	Right, I linked the Google translation page which is the first Google evidence of the keywords of some of the trojans. Messages dated April 29 - recent, current. Also tells us that the guaranteed solution is a kernel upgrade. I'm still thinking that my main error was leaving open (an insecured FTP) for a few days as a favor to a small client. Duh. I also made a smaller error in leaving open a file upload service leading to a web-readable directory. It was password-protected but only VERY rudimentarily. Duh. I have closed the doors I know about and gotten rid of the trojans I know about, but can't assume it's perfectly fixed. It means that I have to assume this system is insecure until I move things systematically to an entirely secure server.

05-10-2005, 01:23 PM	#58
lookout123 changed his status to single Join Date: Apr 2004 Location: Right behind you. No, the other side. Posts: 10,308	from my non-tech perspective: why exactly would someone want to hack the cellar? there is no financial incentive. no societal incentive whatsoever from what i can tell. there is no agenda that they are pushing on us. are people really so bored with their sad little lives that effing with a bulletin board is worth their time and effort? __________________ Getting knocked down is no sin, it's not getting back up that's the sin

05-10-2005, 01:33 PM	#59
Troubleshooter The urban Jane Goodall Join Date: Jan 2004 Location: Florida Posts: 3,012	Reminds me of something I ran across on www.enlightenedcaveman.com . "Nathaniel West wrote, I thought, beautifully about that syndrome, and W.H. Auden, the poet, wrote an essay about West's analysis of that syndrome, which he called, 'West's Disease.' It's about people who, for whatever reason, are unable to turn wishes into passions in their life, and lacking that capacity, sit passively in mute outrage, anticipating disasters. They go to fires. Any sort of natural disaster attracts them. And in the absence of a natural disaster, they sometimes try and create disasters. And they hate the people whose lives, whether successful or not, are pursued with passion. And first they idolize them, then they want to destroy them. They want to appropriate the vitality of those people..." __________________ I have gained this from philosophy: that I do without being commanded what others do only from fear of the law. - Aristotle

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode