Hacked!!! - GoFuckYourself.com

goBigtime · 01-13-2003, 08:13 AM

So has anyone here ever had their servers hacked into?

What did they do?

How did they get in?

Tell us about it....

Socks · 01-13-2003, 08:14 AM

I'll tell you as soon as I'm done deleting your files.. sec..

Dveron · 01-13-2003, 08:15 AM

Quote:

Originally posted by Socks
I'll tell you as soon as I'm done deleting your files.. sec..

goBigtime · 01-13-2003, 08:18 AM

Quote:

Originally posted by Socks
I'll tell you as soon as I'm done deleting your files.. sec..

have fun

goBigtime · 01-13-2003, 08:20 AM

I know some bigwigs in the industry have been hit in the past... so I could only imagine alot of people here have had problems.

funkmaster · 01-13-2003, 08:21 AM

... happens all the time, all you can do is get the latest security patches and pray.

MonkeyMan · 01-13-2003, 08:28 AM

Theres a better way....

If your running linux take every background process you have running and do a "______ exploit" google search on each one. (you may want to include version numbers) That often helps me know exactly what things I'm running may be at risk and respond appropriately.

Its also good to actually learn how to hack boxes because the more you know the safer you are.

Praying doesn't work because.... well... there is no god.

res · 01-13-2003, 08:30 AM

If anyone need security audit of owns servers we can provide that. We have some posts on bugtraq and any computer security sites

Contact me if interesting

funkmaster · 01-13-2003, 08:33 AM

"We have some posts on bugtraq and any computer security sites"

... yes, this is where script kiddies hang out to get the latest exploits ... sad but true ...

ytcracker · 01-13-2003, 08:34 AM

Quote:

Originally posted by funkmaster
"We have some posts on bugtraq and any computer security sites"

... yes, this is where script kiddies hang out to get the latest exploits ... sad but true ...

im still in the 0day loop so none of you are safe MahuahduahuaHSUHASUAHUSHAUSHuhsuahsiahds ssh owns

goBigtime · 01-13-2003, 08:36 AM

Quote:

Originally posted by MonkeyMan

Praying doesn't work because.... well... there is no god.

There is a god, but I think we might have just been a one night stand

Either way, I would wonder how much god knows about unix anyway.

MonkeyMan · 01-13-2003, 08:37 AM

Quote:

Originally posted by ytcracker
im still in the 0day loop so none of you are safe MahuahduahuaHSUHASUAHUSHAUSHuhsuahsiahds ssh owns

0day?!?!?! wtf are you gonna do with that. Go Icon Creator 6.0 on my ass.... hahahahahahah

res · 01-13-2003, 08:40 AM

Quote:

Originally posted by funkmaster
"We have some posts on bugtraq and any computer security sites"

... yes, this is where script kiddies hang out to get the latest exploits ... sad but true ...

No, its not a true... My friends is security analyzers the same as cert.org... Bugtraq is only way to notify everyone...

goBigtime · 01-13-2003, 08:45 AM

Quote:

Originally posted by res

No, its not a true... My friends is security analyzers the same as cert.org... Bugtraq is only way to notify everyone...

Huh? Can you say that again res?

You said your friend runs a site called "Security Analyzers" that is similar to cert.org & Bugtraq is not the only source for security updates... right?

(I think thats what he said)

BigFrog · 01-13-2003, 08:46 AM

Quote:

Originally posted by MonkeyMan

0day?!?!?! wtf are you gonna do with that. Go Icon Creator 6.0 on my ass.... hahahahahahah

LMAO

res · 01-13-2003, 08:51 AM

Quote:

Originally posted by goBigtime

Huh? Can you say that again res?

You said your friend runs a site called "Security Analyzers" that is similar to cert.org & Bugtraq is not the only source for security updates... right?

(I think thats what he said)

Of course we read bugtraq, but only for update our knowledge base... Also we have our research centre for security analyzing and development... We found 9 big holes in Microsoft products and 4 holes (remote roor spawm) in *nix-clones...

strainer · 01-13-2003, 09:07 AM

I got hacked a few months ago by a cp outfit who turned my server into a cp spam factory. What I did was:

1. Reinstall the OS (Linux)

2. Use iptables to block almost 100% of the server, even including common things like SSH, etc. Obviously you have to put in some back doors so you can manage it, but most importantly of all, never use plaintext protocols like telnet, ftp, etc.

3. That leaves the only possible exploits as coming in through apache or dns or something you can't turn off. As long as you always run the latest patch of those, its not that likely you'll get hacked.

01-13-2003, 08:13 AM	#1
goBigtime Confirmed User Join Date: Nov 2002 Posts: 7,761	Hacked!!! So has anyone here ever had their servers hacked into? What did they do? How did they get in? Tell us about it....

01-13-2003, 08:14 AM	#2
Socks Confirmed User Industry Role: Join Date: May 2002 Location: Toronto Posts: 8,475	I'll tell you as soon as I'm done deleting your files.. sec..

01-13-2003, 08:20 AM	#5
goBigtime Confirmed User Join Date: Nov 2002 Posts: 7,761	I know some bigwigs in the industry have been hit in the past... so I could only imagine alot of people here have had problems.

01-13-2003, 08:21 AM	#6
funkmaster So Fucking Banned Join Date: Sep 2001 Location: shell beach Posts: 7,938	... happens all the time, all you can do is get the latest security patches and pray.

01-13-2003, 08:28 AM	#7
MonkeyMan So Fucking Banned Join Date: Dec 2002 Location: New York.... Not the city... Up north further. Its about a six hour drive to the city from here. I don't like the city much. The air is not as clean, but they do have better strip clubs. Posts: 1,026	Theres a better way.... If your running linux take every background process you have running and do a "______ exploit" google search on each one. (you may want to include version numbers) That often helps me know exactly what things I'm running may be at risk and respond appropriately. Its also good to actually learn how to hack boxes because the more you know the safer you are. Praying doesn't work because.... well... there is no god.

01-13-2003, 08:30 AM	#8
res Confirmed User Join Date: Nov 2002 Location: Europe Posts: 1,118	If anyone need security audit of owns servers we can provide that. We have some posts on bugtraq and any computer security sites Contact me if interesting

01-13-2003, 08:33 AM	#9
funkmaster So Fucking Banned Join Date: Sep 2001 Location: shell beach Posts: 7,938	"We have some posts on bugtraq and any computer security sites" ... yes, this is where script kiddies hang out to get the latest exploits ... sad but true ...

01-13-2003, 09:07 AM	#17
strainer Confirmed User Join Date: Oct 2002 Location: Philadelphia Posts: 418	I got hacked a few months ago by a cp outfit who turned my server into a cp spam factory. What I did was: 1. Reinstall the OS (Linux) 2. Use iptables to block almost 100% of the server, even including common things like SSH, etc. Obviously you have to put in some back doors so you can manage it, but most importantly of all, never use plaintext protocols like telnet, ftp, etc. 3. That leaves the only possible exploits as coming in through apache or dns or something you can't turn off. As long as you always run the latest patch of those, its not that likely you'll get hacked.