Fucking Hacker Cunts - GoFuckYourself.com

halfpint · 08-30-2007, 10:39 AM

Some fucker hacked my website and deleted the whole fucking website, fucking hacker scumbags, This is total bullshit, so anybody who has links to my site, it will be back up within 24 hours

ridikuloz · 08-30-2007, 11:12 AM

ouch.... nice directory :X

Babaganoosh · 08-30-2007, 11:13 AM

If people would secure their shit...

Lets start by setting

Options -Indexes

halfpint · 08-30-2007, 11:28 AM

Quote:

Originally Posted by Babaganoosh

If people would secure their shit...

Lets start by setting

Options -Indexes

Ok so please help me out here with security issues as i am a noob at this game and any security help would really be apreciated

TubeTitans_SusieQ · 08-30-2007, 11:30 AM

that sucks, hope you get it fixed!

fatfoo · 08-30-2007, 11:31 AM

yea how do you secure shit?

halfpint · 08-30-2007, 11:39 AM

Quote:

Originally Posted by ADL_SusieQ

that sucks, hope you get it fixed!

Thanks, I do regular backups and so does the server, its just so bloody annoying , and inconvenient

drocd · 08-30-2007, 11:42 AM

black hackers?

halfpint · 08-30-2007, 11:43 AM

Quote:

Originally Posted by drocd

black hackers?

what do you mean by black hackers?

G-Rotica · 08-30-2007, 11:44 AM

hackers suck. if you're a hacker reading this, I didn't mean that. please leave my shit alone.

pornpf69 · 08-30-2007, 11:45 AM

1st thing upload and INDEX page to your site!

halfpint · 08-30-2007, 11:46 AM

Quote:

Originally Posted by G-Rotica

hackers suck. if you're a hacker reading this, I didn't mean that. please leave my shit alone.

Extreme John · 08-30-2007, 11:47 AM

that sucks man hopefully youll get everything up quick.

halfpint · 08-30-2007, 11:48 AM

Quote:

Originally Posted by pornpf69

1st thing upload and INDEX page to your site!

Thanks im doing that now

Martin3 · 08-30-2007, 11:51 AM

Ditch the virtual server and get a decent managed dedicated.

halfpint · 08-30-2007, 12:02 PM

Quote:

Originally Posted by Martin3

Ditch the virtual server and get a decent managed dedicated.

wish i could but i cant afford that I have only had the website on the net for just over 4 months and I have only just started making a few pennies out of it, then all this shit happens

halfpint · 08-30-2007, 12:19 PM

Quote:

Originally Posted by Extreme John

that sucks man hopefully youll get everything up quick.

Thanks, should all be up and running again within 24 hours , I have found all sorts of strange files in my public_hml directory, lol and they changed all the directory and file permissions

inabon · 08-30-2007, 12:35 PM

where are you hosting that site?

halfpint · 08-30-2007, 12:53 PM

Quote:

Originally Posted by inabon

where are you hosting that site?

Hi its on hostgator..Why?

HairToStay · 08-30-2007, 01:37 PM

What was exploited in this "hack"?

halfpint · 08-30-2007, 01:41 PM

Quote:

Originally Posted by HairToStay

What was exploited in this "hack"?

They deleted the whole website, I have only uploaded the index at the moment, The server host is doing the reinstall as they have the most recent backup of the website

riabanana · 08-30-2007, 01:50 PM

Bad times man...

halfpint · 08-30-2007, 02:41 PM

Found some pretty weird files in my public html folder

these are some of the names

.zshrc
.canna

TeenCat · 08-30-2007, 02:59 PM

funny

halfpint · 08-30-2007, 03:03 PM

Quote:

Originally Posted by TeenCat

funny

one of them had all this funny chinese writing in them lol

C-Bass · 08-30-2007, 03:11 PM

You's g0t di h4x0r3d

halfpint · 08-30-2007, 03:19 PM

[QUOTE=Spotter_03;13011354]You's g0t di h4x0r3d

I cannot fault hostgator they have reinstalled evrey thing and done it real quick, really great support from them

CaptainHowdy · 08-30-2007, 04:31 PM

Quote:

Originally Posted by halfpint

I cannot fault hostgator they have reinstalled evrey thing and done it real quick, really great support from them

Good to know

!

halfpint · 08-30-2007, 04:57 PM

Thought i would just say a thankyou to hostgator for their great support and change my sig..and maybe get other peeps to sign up

sortie · 08-30-2007, 05:04 PM

Quote:

Originally Posted by halfpint

Thought i would just say a thankyou to hostgator for their great support and change my sig..and maybe get other peeps to sign up

Dude, unless you have some bad cgi scripts you installed then it's totaly your hosting companies falut. The hackers most likely got in because you had a weak password or you have an old version of SSH installed on the server.

Your host should detect the attempts at your password and shut login down and they should have the lastest SSH installed.

halfpint · 08-30-2007, 05:10 PM

Quote:

Originally Posted by sortie

Dude, unless you have some bad cgi scripts you installed then it's totaly your hosting companies falut. The hackers most likely got in because you had a weak password or you have an old version of SSH installed on the server.

Your host should detect the attempts at your password and shut login down and they should have the lastest SSH installed.

I think a lot of it was my fault, I was messing about with some cgi scripts, one which was yours

and i had changed some of the directory and file perrmissions, so I guess this made it much more easyier to hack the site

(not your scripts fault btw its was my stupidity i guess)

sortie · 08-30-2007, 07:23 PM

Quote:

Originally Posted by halfpint

I think a lot of it was my fault, I was messing about with some cgi scripts, one which was yours

and i had changed some of the directory and file perrmissions, so I guess this made it much more easyier to hack the site

(not your scripts fault btw its was my stupidity i guess)

Damn dude, you never ran the script so it can't be hacked.

Hackers can't do anything with bad file permissions unless they are actually on your server already.

File permissions stop other accounts on your server from writing to your files.
And if your server is partioned to private virtual account that shit don't even matter because nobody can even get a path to your account to even attempt to write.

FACT: If you have to chmod to keep others from writing to your files then your hosting is SHIT!!

But hey, you will not listen...so good luck.

halfpint · 08-30-2007, 07:36 PM

Quote:

Originally Posted by sortie

Damn dude, you never ran the script so it can't be hacked.

Hackers can't do anything with bad file permissions unless they are actually on your server already.

File permissions stop other accounts on your server from writing to your files.
And if your server is partioned to private virtual account that shit don't even matter because nobody can even get a path to your account to even attempt to write.

FACT: If you have to chmod to keep others from writing to your files then your hosting is SHIT!!

But hey, you will not listen...so good luck.

Ok i also recieved this from the tech guys "but keep in mind if your scripts have SQL injection or other vulnerabilities this isn't something we can really actively scan for. You'll need to keep any scripts and/or CMS systems you have installed updated to the latest versions"
also I was playing with another script which i did install and ran what I said was it had nothing to do with your script..unless you cant read, I also said that it was most probally my stupidy for leaving the directories/files vunrable

directfiesta · 08-30-2007, 07:44 PM

Quote:

Originally Posted by halfpint

Ok i also recieved this from the tech guys "but keep in mind if your scripts have SQL injection or other vulnerabilities this isn't something we can really actively scan for. You'll need to keep any scripts and/or CMS systems you have installed updated to the latest versions"
\

They are right.
A lot of open source scripts ( Wordpress,joomla,etc...) have holes that hackers use to either change your front page or delete your site.
Keep your scipts up-to-date and lower as much as possible the permission of your folders.

tony286 · 08-30-2007, 07:48 PM

man that sucks.

halfpint · 08-30-2007, 07:49 PM

Quote:

Originally Posted by directfiesta

They are right.
A lot of open source scripts ( Wordpress,joomla,etc...) have holes that hackers use to either change your front page or delete your site.
Keep your scipts up-to-date and lower as much as possible the permission of your folders.

Thank you. The script which i installed was nothing to do with the cgi tube, it was a topsite script, and as sortie stated i could not install his script as it gave me an internal server error and because i was mesing about with scripts I was changing directory perrmissions and did not put them back so this just makes it all the more easeir for some one to do what they did

halfpint · 08-30-2007, 10:37 PM

Haha do you want to know what is funny about this, because pornpf69 sugested i upload my index page before the website was reinstalled I got a signup from my index page,

nothing big, but it was a signup, suppose it was because the users had nowhere else to go on the website but the index page, so after all this crap it actually turned out not so bad, maybe this is the way to go a one page website.....

Thanks guys for your help

TeenCat · 08-31-2007, 12:14 AM

hey man what about to leave internet and bake some cookies? ;)

ladida · 08-31-2007, 07:00 AM

Quote:

Originally Posted by sortie

Dude, unless you have some bad cgi scripts you installed then it's totaly your hosting companies falut. The hackers most likely got in because you had a weak password or you have an old version of SSH installed on the server.

Your host should detect the attempts at your password and shut login down and they should have the lastest SSH installed.

Clueless. Refrain from giving advices on these matters.

drjones · 08-31-2007, 07:10 AM

Quote:

Originally Posted by sortie

Damn dude, you never ran the script so it can't be hacked.

Hackers can't do anything with bad file permissions unless they are actually on your server already.

File permissions stop other accounts on your server from writing to your files.
And if your server is partioned to private virtual account that shit don't even matter because nobody can even get a path to your account to even attempt to write.

FACT: If you have to chmod to keep others from writing to your files then your hosting is SHIT!!

But hey, you will not listen...so good luck.

Hackers can do plenty if you are publicly serving world writable directories and files through your webserver. No shell access needed.

Libertine · 08-31-2007, 07:12 AM

Quote:

Originally Posted by sortie

Damn dude, you never ran the script so it can't be hacked.

Hackers can't do anything with bad file permissions unless they are actually on your server already.

File permissions stop other accounts on your server from writing to your files.
And if your server is partioned to private virtual account that shit don't even matter because nobody can even get a path to your account to even attempt to write.

FACT: If you have to chmod to keep others from writing to your files then your hosting is SHIT!!

But hey, you will not listen...so good luck.

Note to self: stay the fuck away from TubeCGI... the guy who made it knows absolutely nothing about computers.

sortie · 08-31-2007, 08:19 AM

Quote:

Originally Posted by Libertine

Note to self: stay the fuck away from TubeCGI... the guy who made it knows absolutely nothing about computers.

Ok, please explain how a hacker who cannot get in thru SSH or a script or a server port can write to any directory.

I would like to know this.

Didn't the wordpress hacks etc... all involve the script accepting data from an html page and then executing it, which is a no-no. They fixed that issue as soon as they realized the mistake.

I'm serious, please explain. I'm not being sarcastic. If you have this information then please share it so people can protect themselves.

sortie · 08-31-2007, 08:26 AM

Quote:

Originally Posted by drjones

Hackers can do plenty if you are publicly serving world writable directories and files through your webserver. No shell access needed.

Yeah, they can do plenty without shell access but doesn't it mostly involve feeding something to a script that executed it and they gain access that way.

They could flood the old version of SSH and cause integer overflow which allowed them server access without a password.

What have you seen that was different then that?

I mean, if you know then don't keep it a secret and let us all get hacked.

sortie · 08-31-2007, 09:07 AM

Quote:

Originally Posted by sortie

FACT: If you have to chmod to keep others from writing to your files then your hosting is SHIT!!

http://resources.bravenet.com/articl...php_script s/

Have a good day.

halfpint · 08-31-2007, 10:04 AM

Hi just an update on what has happened The tech guys sent me this

This appears to be telnet script which allows the user to remove files. I have disabled these scripts from the cgi-bin and blocked the connecting IP. I am also showing that this user connected to the toplist scripts,
If this script is not being used, I would recommend removing the toplist scripts from your account.

I had an idea it was this stupid topsite script that caused it, the name of the toplist is "Best Top List" so stay away from it it is bad news

halfpint · 08-31-2007, 10:13 AM

BTW The IP address is showing up from Mauritius
Africa but whois is to know that this is their real IP but glad they sorted it

alby_persignup · 08-31-2007, 11:05 AM

that shit hurts! sucks

Libertine · 08-31-2007, 11:27 AM

Quote:

Originally Posted by sortie

Ok, please explain how a hacker who cannot get in thru SSH or a script or a server port can write to any directory.

I would like to know this.

Didn't the wordpress hacks etc... all involve the script accepting data from an html page and then executing it, which is a no-no. They fixed that issue as soon as they realized the mistake.

I'm serious, please explain. I'm not being sarcastic. If you have this information then please share it so people can protect themselves.

It's all about maximum security.

The reason you always set permissions as low as possible is so that, for example, you have some added security against badly written scripts.

Every programmer knows, or should know, that mistakes can and will slip through. By using security at every level, you can prevent those mistakes from becoming disasters.

You use low permissions for the same reason you don't keep unencrypted user passwords in your database: to make sure that if someone manages to slip through, he can do as little as possible.

Libertine · 08-31-2007, 11:33 AM

Quote:

Originally Posted by sortie

http://resources.bravenet.com/articl...php_script s/

Have a good day.

From your own damn link:

Quote:

Q. So with Chmod 777 not being a security problem, why should I use other chmod settings?
A. Because we all take a maximum security view point and keeping chmod settings lower than 777 will simply provide additional security for each individual file. This is part of a maximum security philosophy.

halfpint · 08-31-2007, 11:40 AM

Quote:

Originally Posted by alby_persignup

that shit hurts! sucks

Yeah its a pain in the arse but most of it was my own fault for installing a crappy script in the first place, it has taught me not to use free scripts and from what i saw of the script that was deleteing my pages it was actually looking for files, it had commands like this

'find suid files'
'find config* files'
'find all writable files'
'find all writable directories'
'find all service.pwd files'
'show opened ports'

and a load more, Im not gonna post them all here

Pretty mad but I have learned a good lesson from this, like i would never get hacked, its always somebody else, and anyway why would someone hack a small site like mine so just watch what scripts you install

08-30-2007, 10:39 AM	#1
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Fucking Hacker Cunts Some fucker hacked my website and deleted the whole fucking website, fucking hacker scumbags, This is total bullshit, so anybody who has links to my site, it will be back up within 24 hours __________________ Get FREE website listings on Cryptocoinshops.net

08-30-2007, 11:12 AM	#2
ridikuloz Confirmed User Join Date: Jun 2005 Location: ▓NY▓ Posts: 2,080	ouch.... nice directory :X __________________ Each persons' level of stupidity makes us different.

08-30-2007, 11:13 AM	#3
Babaganoosh ♥♥♥ Likes Hugs ♥♥♥ Industry Role: Join Date: Nov 2001 Location: /home Posts: 15,841	If people would secure their shit... Lets start by setting Options -Indexes __________________ I like pie.

08-30-2007, 11:30 AM	#5
TubeTitans_SusieQ Confirmed User Join Date: May 2007 Location: Sunny Florida Posts: 3,884	that sucks, hope you get it fixed! __________________ Make $40 on Every FREE Lifetime Registration ICQ: 370399852

08-30-2007, 11:31 AM	#6
fatfoo ICQ:649699063 Industry Role: Join Date: Mar 2003 Posts: 27,763	yea how do you secure shit? __________________ Send me an email: [email protected]

08-30-2007, 11:42 AM	#8
drocd Confirmed User Join Date: Aug 2007 Posts: 128	black hackers? __________________ 230-699

08-30-2007, 11:44 AM	#10
G-Rotica Confirmed User Industry Role: Join Date: Aug 2005 Location: Austin, TX Posts: 4,258	hackers suck. if you're a hacker reading this, I didn't mean that. please leave my shit alone. __________________

08-30-2007, 11:45 AM	#11
pornpf69 Too lazy to set a custom title Join Date: Jun 2004 Location: Brasil Posts: 15,778	1st thing upload and INDEX page to your site! __________________ Do you need cheap, fast and reliable porn website hosting? Host Head is the way to go!! Asian Gay Special \| Live on MSN - Live Webcam Chat \| Live Adult Webcam Performances \| MY SWEET BLACKS LIVE ON CAM Cash X \| OK Pay \| Pukka Ropes \| Pukka Fetish \| STRAPED BLOG \| Male Bound and Fucked Pukka Tranny \| Tattooed Shemales \| She's A He \| Menu Porno \| Porn Performances \| All Chubby MY ICQ# 169833797

08-30-2007, 11:47 AM	#13
Extreme John Confirmed User Join Date: Apr 2002 Location: Fl Posts: 1,475	that sucks man hopefully youll get everything up quick. __________________ Florida Honnies - Extreme John 51299342

08-30-2007, 11:51 AM	#15
Martin3 Confirmed User Join Date: Oct 2005 Location: Houston Posts: 1,529	Ditch the virtual server and get a decent managed dedicated. __________________ 264-543-302

08-30-2007, 12:35 PM	#18
inabon Good Old Fat Webmaster Industry Role: Join Date: Jul 2002 Location: Boquete, Panamá Posts: 967	where are you hosting that site? __________________ Whoever dies with most toys wins.

08-30-2007, 01:37 PM	#20
HairToStay Confirmed User Join Date: Oct 2002 Location: Southcoast, Mass. Posts: 1,521	What was exploited in this "hack"?

08-30-2007, 01:50 PM	#22
riabanana Confirmed User Join Date: Jul 2007 Posts: 313	Bad times man... __________________ Vibrators, dildos, cock rings and all other sex toys? We've got them ALL for you. http://venustoys.com

08-30-2007, 02:41 PM	#23
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Found some pretty weird files in my public html folder these are some of the names .zshrc .canna __________________ Get FREE website listings on Cryptocoinshops.net

08-30-2007, 02:59 PM	#24
TeenCat Too lazy to set a koala Industry Role: Join Date: Jan 2007 Location: CZ/EU forever! Posts: 16,139	funny __________________ 6bot / Coming again very soon! Svit Zlin Radio 24/7!

08-30-2007, 03:11 PM	#26
C-Bass Confirmed User Join Date: Apr 2003 Location: th3 1nt3Rwebz Posts: 3,153	You's g0t di h4x0r3d __________________ "Unhappy with the riches 'cause you're piss poor morally." Trade traffic? - Highdef Blog

08-30-2007, 03:19 PM	#27
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	[QUOTE=Spotter_03;13011354]You's g0t di h4x0r3d I cannot fault hostgator they have reinstalled evrey thing and done it real quick, really great support from them __________________ Get FREE website listings on Cryptocoinshops.net

08-30-2007, 04:57 PM	#29
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Thought i would just say a thankyou to hostgator for their great support and change my sig..and maybe get other peeps to sign up __________________ Get FREE website listings on Cryptocoinshops.net Last edited by halfpint; 08-30-2007 at 04:58 PM..

08-30-2007, 07:48 PM	#35
tony286 lurker Industry Role: Join Date: Aug 2002 Location: atlanta Posts: 57,021	man that sucks.

08-30-2007, 10:37 PM	#37
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Haha do you want to know what is funny about this, because pornpf69 sugested i upload my index page before the website was reinstalled I got a signup from my index page, nothing big, but it was a signup, suppose it was because the users had nowhere else to go on the website but the index page, so after all this crap it actually turned out not so bad, maybe this is the way to go a one page website..... Thanks guys for your help __________________ Get FREE website listings on Cryptocoinshops.net

08-31-2007, 12:14 AM	#38
TeenCat Too lazy to set a koala Industry Role: Join Date: Jan 2007 Location: CZ/EU forever! Posts: 16,139	hey man what about to leave internet and bake some cookies? ;) __________________ 6bot / Coming again very soon! Svit Zlin Radio 24/7!

08-31-2007, 10:04 AM	#45
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Hi just an update on what has happened The tech guys sent me this This appears to be telnet script which allows the user to remove files. I have disabled these scripts from the cgi-bin and blocked the connecting IP. I am also showing that this user connected to the toplist scripts, If this script is not being used, I would recommend removing the toplist scripts from your account. I had an idea it was this stupid topsite script that caused it, the name of the toplist is "Best Top List" so stay away from it it is bad news __________________ Get FREE website listings on Cryptocoinshops.net

08-31-2007, 10:13 AM	#46
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	BTW The IP address is showing up from Mauritius Africa but whois is to know that this is their real IP but glad they sorted it __________________ Get FREE website listings on Cryptocoinshops.net

08-31-2007, 11:05 AM	#47
alby_persignup Confirmed User Join Date: May 2007 Posts: 3,119	that shit hurts! sucks __________________ OnProbation Links Directory \| OnProbation Design Services \| OnProbation Cash