My server techs found some serious security issues with your script and they got my server hacked, need to get ahol of you right now so we can resolve this!
Levi, hit me up asap! Scrypted creator.
Collapse
X
-
Tags: None
-
-
thanks levi swift reply got it all done in seconds, great service as alwaysSkype Horusmaia
ICQ 41555245
Email [email protected]
Comment
-
ok I guess I have an update, turns out that my server got hacked because Levi left the admin folder of the script at chmod 777 when he updated the script for me (which I appreciate). Lost tons of my visitors and some of my best trades for many sites... Thanks buddy!
And I didnt even get a sorry mate it was a mistake.
[18:31] Kandah: why didnt you fix the permissions when you upgraded
[18:31] Kandah: got several of my sites hacked
[18:32] Levi: dude wtf is your problem? I gonna help your update your shit anymore.
[18:32] Levi: I am not*
[18:32] Kandah: err
[18:33] Kandah: sorry but how would I know you left the admin at 777
[18:33] Kandah: and didnt pw protect it
[18:34] Kandah: I appreciate you did it and all but it cost me many of my best trades for other sites
[18:34] Levi: lol that admin is password protected and I am not your server admin. It's up to you keep scripts secure. If you would have read the README files. Wouldn't have been hacked.
[18:34] Kandah: lol dude
[18:34] Kandah: you updated it so I kind of expected you to not leave admin open at 777
[18:36] Levi: Alright you can do your own updates.Skype Horusmaia
ICQ 41555245
Email [email protected]
Comment
-
-
From the Scrypted README file:
Originally posted by Scrypted READ ME FILE1) Download the cms.zip from within the scrypted.com members area and upload all files.
2) Edit the variables inside 'mysqlvalues.inc.php'.
3) Set the permissions for 'templates' & 'images' directory plus all subdirectories to 777 ( read, write, executable by all )
4) Set the permissions for 'admin/galleries.txt' to 777 ( read, write, executable by all )
5) Set the permissions for 'galleries' directory to 777 ( read, write, executable by all )
6) Execute domain.com/install/install.php in your web browser.
7) Follow directions.
Follow the directions and you are safe.subarus.Comment
-
yeah of course, but when you say that you are going to update it I wont go through it I expect you to do it right and not leave the site wide open to hackers.Originally posted by calmlikeabombFrom the Scrypted README file:
Follow the directions and you are safe.Skype Horusmaia
ICQ 41555245
Email [email protected]
Comment
-
First of all, I am not your server admin.Originally posted by kandahyeah of course, but when you say that you are going to update it I wont go through it I expect you to do it right and not leave the site wide open to hackers.
Secondly, scrypted doesn't contain information related to accessing your server in the admin directories.
You're a known troll on this forum that likes to start shit.subarus.Comment
-
No, im not a known troll and the server techs at webair confirmed that the vulnerability was in your script and the way you set it up. Im just saying what the professionals told me.Originally posted by calmlikeabombFirst of all, I am not your server admin.
Secondly, scrypted doesn't contain information related to accessing your server in the admin directories.
You're a known troll on this forum that likes to start shit.Skype Horusmaia
ICQ 41555245
Email [email protected]
Comment
-
-
yeah, didnt get it for free though. Hes been good to me in the past but this was just bullshit.Originally posted by candyflipWeren't you the one all happy that you got his script for free AND went on about the great service?Skype Horusmaia
ICQ 41555245
Email [email protected]
Comment
-
Wasn't sure. There was someone on here who was very happy with the service and support.Originally posted by kandahyeah, didnt get it for free though. Hes been good to me in the past but this was just bullshit.
You should post the vulnerablity like me mentioned, or at least have Webair back you up.
Comment
-
Levi is a good guy, he's helped alot of people including myself. Kandah you fucked up and won't post proof.Originally posted by calmlikeabombPost the vulnerability or stfu.
kandah = troll
http://www.gfy.com/showthread.php?t=...ghlight=kandahLast edited by Zarathustra; 05-24-2006, 09:25 AM.Comment
-
Many months ago - before the script was called Scrypted, Kandah paid $75, then decide he didn't need the script, so I refunded his money.Originally posted by candyflipWeren't you the one all happy that you got his script for free AND went on about the great service?
Then a few days later he wants to buy it again, but for only $50.
I agreed and sold him the web application. So technically he never bought a Scrypted license, but I wont go there ; - )subarus.Comment


Comment