Quote:
|
Originally Posted by Savaged00d
you have either
a) wrong person
b) wrong innocent person
Because anyone that does even the lowest level of `hacking` knows how to use annonimous proxies and doesn't connect with his real ip when he's going to fuck up the site.
That beeing said, even if he connected with his real ip because he's some imbecil, you really have 0 chance to prosecute him anywhere. Unless you can actually get a court order on his ISP to get you logs of his connections, and the times match with your logs, and there is no other "funny" connections on the guy's ip other then that, you could maybe have something.
Google a bit what is actually a proxy. I could connect to your site with my real ip, and in time for you to actually get a court order on my ISP (if you even can do that) to get you the logs, i'd fake so much traffic on my comp that i would be completelly held irresponsible of any doings on your site with a simple "my computer got hacked, it was someone else using my connetion/box as a proxy".
Get real with your fables please.
|
The person is the right person. He even admitted to having done it. Convicting someone isn't really very hard at all. Getting a court order is pretty easy also.
He did not use a hole in Wordpress.
He simply found a directory with admin scripts in it with directory indexing turned on.
You do not need to be root to delete databases.