Greatest RPG Fans Forum

"Secuity breach"

Email this topic to a friend
Printer-friendly version of this topic
Bookmark this topic (Registered users only)
 
Previous Topic | Next Topic 
Conferences Potpourri, Grab Bag, etc. Conferences All about this board (Protected)
Original message

Llevram (5022 posts) Click to EMail Llevram Click to send private message to Llevram Click to view user profile Click to check IP address of the poster
May-17-01, 08:12 PM (Pacific)
"Secuity breach"
Yesterday (5-17-01) a hacker broke into the forum. There appeared to be no damage as they were caught right away (within a few minutes). It was kind of obvious, since the genius used a login name of EvilHacker (duh!). They used a security loophole (which has been fixed) and made themselves an administrator. No files appeared to have been tampered with or deleted.

I reviewed my web site access logs and it appears the only thing they did was register (probably planned on coming back later, if they thought it was safe).

Please direct any conerns you may have to me.

Tools for your Wizardry(r) toolkit

  Alert Edit | Reply | Reply With Quote | Top

  Table of Contents

 
 
Lobby | Topics | Previous Topic | Next Topic

Messages in this topic

Jay (112 posts) Click to EMail Jay Click to send private message to Jay Click to view user profile Click to check IP address of the poster
May-18-01, 07:00 AM (Pacific)
1. "RE: Secuity breach"
Why would someone hack into a message board? That seems pretty dumb. Why not something really challenging like FBI, CIA, Microsoft (Ha Ha)? What would one do with admin privileges on a message board anyway? Maybe they could change the content of some of the messages. (Oh no!)

Rick I hope you can catch the guy.

Jay

  Remove | Alert Edit | Reply | Reply With Quote | Top

Llevram (5022 posts) Click to EMail Llevram Click to send private message to Llevram Click to view user profile Click to check IP address of the poster
May-18-01, 07:36 AM (Pacific)
2. "I've got their IP address"
But, ya, I had the same thought - why? Apparently just to see if they could. About the only thing the admin can do is make mischief (go in and change everyone's passwords, delete message and whole forums, send out the subscriptions early, ...).

The only thing I was (kind of) concerned over, was that the admin can see anyone's email. But short of going to the user admin screens, listing all users, then making screen prints of each page, that doesn't seem a feasible way to harvest email addresses. Besides, based on the access logs, I don't think they tried that.

Tools for your Wizardry(r) toolkit

  Remove | Alert Edit | Reply | Reply With Quote | Top

Jimbo (18 posts) Click to EMail Jimbo Click to send private message to Jimbo Click to check IP address of the poster
May-19-01, 02:03 AM (Pacific)
3. "It's not STC at all, is it?"
Attempting to locate and destory any negative comment about Wiz8?
  Remove | Alert Edit | Reply | Reply With Quote | Top

Joebob (212 posts) Click to EMail Joebob Click to send private message to Joebob Click to view user profile Click to check IP address of the poster
May-19-01, 05:32 AM (Pacific)
4. "As if Microsoft is a challenge?"
The FBI and CIA a little harder of course if your good enough and you get caught you might just get a full time job working for them
JB
  Remove | Alert Edit | Reply | Reply With Quote | Top

Asrial (215 posts) Click to EMail Asrial Click to send private message to Asrial Click to view user profile Click to check IP address of the poster
May-19-01, 11:18 PM (Pacific)
5. "RE: As if Microsoft is a challenge?"
..if your good enough and you get caught..

~~~~~

If you were good in the first place, you wouldn't get caught ;)

  Remove | Alert Edit | Reply | Reply With Quote | Top

Joebob (212 posts) Click to EMail Joebob Click to send private message to Joebob Click to view user profile Click to check IP address of the poster
May-20-01, 05:15 AM (Pacific)
6. "RE: As if Microsoft is a challenge?"
..if your good enough and you get caught..

Remember grasshopper no matter how good you are there is always someone better.

What i was refering to was there have been people who were very good who got caught after many hacks who were offered jobs with the government or the private sector. I buddy of mine got a job with the government after hacking some of their more secure mainframes.

JB

  Remove | Alert Edit | Reply | Reply With Quote | Top

Llevram (5022 posts) Click to EMail Llevram Click to send private message to Llevram Click to view user profile Click to check IP address of the poster
May-20-01, 06:04 AM (Pacific)
7. "Usually that job ..."
... involves wearing a striped suit (or sometimes orange) and breaking rocks.

Tools for your Wizardry(r) toolkit

  Remove | Alert Edit | Reply | Reply With Quote | Top

Joebob (212 posts) Click to EMail Joebob Click to send private message to Joebob Click to view user profile Click to check IP address of the poster
May-25-01, 05:07 PM (Pacific)
9. "RE: Usually that job ..."

JB
  Remove | Alert Edit | Reply | Reply With Quote | Top


Lock | Archive | Remove

Lobby | Topics | Previous Topic | Next Topic
Rate this topic (1=skip it, 10=must read)? [ 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 ]
Powered by DCF2000 ©1997-2000 by DCScripts. All rights reserved.