|
|
|
|
||||
|
Welcome to the GoFuckYourself.com - Adult Webmaster Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact us. |
 |
|
|||||||
| Discuss what's fucking going on, and which programs are best and worst. One-time "program" announcements from "established" webmasters are allowed. |
|
|
Thread Tools |
04-09-2001, 12:05 PM
|
#1 |
|
赤い靴 call me 202-456-1111
Industry Role:
Join Date: Feb 2001
Location: The Valley
Posts: 14,831
|
Security Breach!!
I was uploading to my boss' server today. I'm what you might call "click happy". (I often move too fast and click the wrong button.)
While uploading using FTP, I clicked on an arrow that lead me deeper into the server, eventually I was at the main server administration page. From there I was able to see hundreds of usernames that were actually folders for that users ftp info. They were encoded: XXXXX-0945 XXXXX-0946 XXXXX-0947 and so on... I clicked on some of them which led deeper into the server. Several led me to password protected areas, and some files were labeled as user logs. With my curiosity peaked, I viewed one. I found slightly encrypted usernames and passwords. By slightly I mean, that their username and password weren't encrypted but their cc info was. Too many numbers to be CC. I then viewed a few html files and found the domain names that these usernames and passwords went to. (again, out of sheer curiosity) I'm too paranoid, and my morals are too high for me to do anything illegal with this info. Which brings me to why I'm posting it here. Is it really that easy for anyone to tap into our servers? I found it by accident, I'm sure some asshole that wants to do some damage, would have a field day with the info I was just exposed to. How can I prevent someone from accessing my FTP server like that? I even found some email logs with what looked like thousands of email addresses. Fuck, this is scary. It can't be that easy. Can it? Does this make me a hacker? Or an idiot? ------------------ [email protected] LeeannOnline.com |
|
|
|
04-09-2001, 02:06 PM
|
#2 |
|
Confirmed User
Join Date: Feb 2001
Location: Orlando FL
Posts: 3,014
|
You need spanked!
 ~ |
|
|
|
|
04-09-2001, 05:07 PM
|
#3 |
|
Hall Of Fame
Industry Role:
Join Date: Jan 2001
Location: Portland Oregon USA
Posts: 34,415
|
are you with conepuppy by any chance?
|
|
|
|
|
04-09-2001, 07:32 PM
|
#4 |
|
赤い靴 call me 202-456-1111
Industry Role:
Join Date: Feb 2001
Location: The Valley
Posts: 14,831
|
|
|
|
|
|
04-09-2001, 08:44 PM
|
#5 |
|
Confirmed User
Join Date: Feb 2001
Location: Las Vegas, NV
Posts: 374
|
Want to get real scared RedShoe, read the book The Cookoo's egg. It is dated, but it is the story of a Berkley student who through a simple accounting error in the server time found a hacker that was going through their computer to access military computers.
It can be pretty easy if you don't close your back doors. We have had Sub7 trojans probe our system, and have had some random attacks but with Norton Personal Firewall, Lockdown, and a good firewall built into my Netgear box, we have decreased the chances. But there are holes in a lot of the op systems, and if the hacker knows of the hole, and your sys op doesn't and he's left it open....bingo! I don't know how to hack, and I really don't want to learn, but a lot of the kids find it a challenge today. ------------------ ~Every time I call myself Webmistress, I feel I should be in spike heels with a whip~ Greatest ADULT WEB HOSTING on The NET ! Free Erotic Fantasy Best Quality TGP's |
|
|
|
