CJPC said:
Not a bug in the forum code proper, it is a result of the crackers lack of knowledge, or sloppy work.
WTF is this goons crap
- Thread starter Texanmutt
- Start date
- Latest activity Latest activity:
- Replies 72
- Views 10K
- Status
Not a bug in the forum code proper, it is a result of the crackers lack of knowledge, or sloppy work.
I know WHAT"s happening, just not HOW, **YET**.
I have a script that fixes it.
LER
PS: I'm not going to say more in a non-staff forum.
I have a script that fixes it.
LER
PS: I'm not going to say more in a non-staff forum.
I tried getting to the home page earlier and kept getting redirected. Why would anyone want to attack a satellite forum. What a bunch of a**holes.
Add there it goes again. I'll just add the goons to my url filter. Then i cant be redirected. :neener
There are some posts that have been corrupted by... (well you know)... If you come across them, please post in this thread the link and we will clean it up.... Also a piece of advice is to set your browser to high security so that when you click on the corrupted thread or post, you are not re-directed to the... (you know) site.
Sean Mota said:
It happened earlier when i tried to get the main web page ( http://www.satelliteguys.us/ ). I guess that page is still php, so it was affected a few times as well. But that goon crap is on my proxy's blocked list now.
I found this petition online to bring these hackers to justice:
http://www.petitiononline.com/ccd0722/petition.html
http://www.petitiononline.com/ccd0722/petition.html
I think we could be all set now (crosses fingers)
There is a bug in the version of vBulletin we are running which is a slightly older version. The "hack" was able to happen because I enabled "show template names" in the forum software setup options a few days ago. This option was turned on so I could easily find portions of code so I could add that code to our new software which I have been working on for the past few weeks.
I am told with this option on a hacker can issue a simple web site url with a few added options on the end to cause the havoc we have been having the past two days.
In addition to turning this option off, I have also been sent a new php file for our software which we can put in place IF this happens again.
The good news is that our server the entire time was very secure, no root kits were installed, no one had root access. Checking out http://www.zone-h.org/en/defacements/filter/filter_defacer=g00ns/ we were very lucky as this hack group has destroyed other sites and servers. This list of their past hacks actually shows how good our security is compaired to other sites.
i consider ourselves VERY lucky, and not only lucky to have been spared the wrath that this group is known for, but also very lucky to have a guy like Larry Rosenman (you know him as LER) who worked like crazy over the past few days restoring our server whenever we were down.
Because of the problems I was going to do the new software upgrade today, however now I am going to keep an eye on the site and see how it goes, if we are redirected again I will apply the PHP patch I was sent.
I am keeping a close eye on this and thank all of you for your patience and understanding.
There is a bug in the version of vBulletin we are running which is a slightly older version. The "hack" was able to happen because I enabled "show template names" in the forum software setup options a few days ago. This option was turned on so I could easily find portions of code so I could add that code to our new software which I have been working on for the past few weeks.
I am told with this option on a hacker can issue a simple web site url with a few added options on the end to cause the havoc we have been having the past two days.
In addition to turning this option off, I have also been sent a new php file for our software which we can put in place IF this happens again.
The good news is that our server the entire time was very secure, no root kits were installed, no one had root access. Checking out http://www.zone-h.org/en/defacements/filter/filter_defacer=g00ns/ we were very lucky as this hack group has destroyed other sites and servers. This list of their past hacks actually shows how good our security is compaired to other sites.
i consider ourselves VERY lucky, and not only lucky to have been spared the wrath that this group is known for, but also very lucky to have a guy like Larry Rosenman (you know him as LER) who worked like crazy over the past few days restoring our server whenever we were down.
Because of the problems I was going to do the new software upgrade today, however now I am going to keep an eye on the site and see how it goes, if we are redirected again I will apply the PHP patch I was sent.
I am keeping a close eye on this and thank all of you for your patience and understanding.
Pepper said:
We'd end up with thousands of people as pissed off as us coming here thinking that SatGuys hacked their site.
There's nothing a techno-weenie can do that a good old-fashioned firebomb couldn't do better.
I would like to thank all who helped get the SateliteGuys.US site going again. I would also remind everyone that backups help when things like this happen.
If you look at http://www.pricewatch.com/prc.aspx?i=26&a=5727
and see that a gig is going for $0.33 so USB or firewire extranel drives make GREAT backups!
If you look at http://www.pricewatch.com/prc.aspx?i=26&a=5727
and see that a gig is going for $0.33 so USB or firewire extranel drives make GREAT backups!
We have backups, the site is actually backed up to two seperate offsite backup servers.
I am glad we are back again.
I am glad we are back again.
Glad we are back up I heard from the Cert this morning. There working on shutting these guys down. I hope its soon and I hope these guys go to jail.
I heard from the Cert this morning. There working on shutting these guys down. I hope its soon and I hope these guys go to jail.
I'm not a Nazi ... but in every hacker case: let this suckers burn!
(this post is ready for censorship)
(this post is ready for censorship)
I would think that if they are smart enough to do what they have already done to many websites then they would be very smart in covering their tracks on not being traced back to any individuals. I would imagine that at least the server they are doing this from would be shut down or be made to shut the site down. I wonder how many registered to read their forums since it wanted people to do so before they could even read anything. I wonder if those people would be in trouble as well.
The sheer arrogance of these guys! They claim Constitutional freedom of speech protection for their activities. I don't think the courts will see it that way.
Their right to swing their fist ends where it comes into contact with my nose.
Their right to swing their fist ends where it comes into contact with my nose.
- Status
