Click "c Board" to see the hack. I noticed it about an hour ago.
Click "c Board" to see the hack. I noticed it about an hour ago.
Mainframe assembler programmer by trade. C coder when I can.
It appears the front page was hacked. Buncha pimply-faced morons.
Yup. Was afraid the whole thing had gone down the drain. Been checking VBulletin boards. May have been done through some insecure script. I highly doubt they had any other kind of server access.
Script kiddies losers, I betcha.
Originally Posted by brewbuck:
Reimplementing a large system in another language to get a 25% performance boost is nonsense. It would be cheaper to just get a computer which is 25% faster.
Hmm... all index.php were defaced. cprogramming.com, the forums archive, ... mod_rewrite?
Originally Posted by brewbuck:
Reimplementing a large system in another language to get a 25% performance boost is nonsense. It would be cheaper to just get a computer which is 25% faster.
Seems as though all passwords still work and users can still log-in. I'll bookmark this until the main page is back up.
I have no idea what this proves except that some morons can hack a page. Stupid.
Last edited by VirtualAce; 04-27-2008 at 09:17 PM.
Yeah this will be fun. I've had a bit of experience fighting hackers myself (some hacked into our servers where I work).
Most likely cause: somewhere in the site the "get" and "post" variable inputs are not being checked, and so the hackers probably got access do the database and used SQL injection to discover admin passwords, logged in as an admin, uploaded some scripts and defaced the site.
I noticed it a while ago too.
Does anyone know when the site will be fixed?
Has anyone contacted the webmaster or kermi?
Looks fine to me. What did I miss?
My homepage
Advice: Take only as directed - If symptoms persist, please see your debugger
Linus Torvalds: "But it clearly is the only right way. The fact that everybody else does it some other way only means that they are wrong"
The two 'dudes' (<no credit due>) are members of some defacing "security" group. Wow, sounds fun...
They're probably not aware that hacking in Egypt has recently been made illegal, and carries a hefty penalty. Only time will tell.
If by that comment you mean it's still in a hacked state then I guess it has to do with someone's ISP's caching now.
I actually make shortcuts directly to the forums I visit, so I wouldn't see it anyway.
My homepage
Advice: Take only as directed - If symptoms persist, please see your debugger
Linus Torvalds: "But it clearly is the only right way. The fact that everybody else does it some other way only means that they are wrong"
Yeah, HaTsA4 and H666p said they wheren't sorry that the admins thought their site was secure.
Their text are was pretty good actually.
Anyway...
BURN!
I doubt they were from egypt. The javascript variables were in Spanish and the img tags were pointing to a site in San Diego, California.
Originally Posted by brewbuck:
Reimplementing a large system in another language to get a 25% performance boost is nonsense. It would be cheaper to just get a computer which is 25% faster.