| Author | Message | 
	
		| The Apache BECAUSE I'M A STUPID IDIOT
 
  
 Age:34
 Gender:
  Joined: Jul 10 2006
 Posts: 294
 Location: High Wycombe
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sat Nov 25, 2006 10:06 am   Post maybe stupid    Post subject: Assassin2684's website was hacked |  |   |  |  
				| 
 |  
				| http://www.assassins-junkyard.com/ lol, i was looking for his little program he made, and i got through to his website to find it out it got hacked...
  |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| BDwinsAlt Agurus's Posse
 
  
 Age:35
 Gender:
  Joined: Jun 16 2003
 Posts: 1145
 Location: Alabama
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sat Nov 25, 2006 1:48 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| This dude is in love with javascripts.  Look at the page source. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Quan Chi2 Member of "Sexy Teenagers that Code" Group
 
  
 
 Age:35
 Gender:
  Joined: Mar 25 2005
 Posts: 860
 Location: NYC
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sat Nov 25, 2006 6:14 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| L O L 
 Sorry Assassin.  If you need help, then you know who to call.
 
 You got fucking owned though.  You're lucky it wasn't the g00ns.
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Purge Episode I > Eposide III
 Jar-Jar is kool
 
  
 Age:36
 Gender:
  Joined: Sep 08 2004
 Posts: 2019
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sat Nov 25, 2006 6:20 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Apparently this "hacker" uses FrontPage... |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Quan Chi2 Member of "Sexy Teenagers that Code" Group
 
  
 
 Age:35
 Gender:
  Joined: Mar 25 2005
 Posts: 860
 Location: NYC
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sat Nov 25, 2006 6:22 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| I bet the shell is still on the server unless the hacker is a newbie.  Assassin should find it.  And look for a telnet script. (usually a cgi) |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Cerium Server Help Squatter
 
  
 Age:43
 Gender:
  Joined: Mar 05 2005
 Posts: 807
 Location: I will stab you.
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 2:26 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| ...anyone else want this one? Far too easy for me. _________________
 There are 7 user(s) ignoring me right now.
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Smong Server Help Squatter
 
  
 Joined: 1043048991
 Posts: 0x91E
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 5:20 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Looks like someone might be using symantec software too. Infact it looks as if someone did file -> save as on another website, then uploaded that page as the index. _________________
 ss news
  |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Solo Ace Yeah, I'm in touch with reality...we correspond from time to time.
 
  
 Age:38
 Gender:
  Joined: Feb 06 2004
 Posts: 2583
 Location: The Netherlands
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 7:37 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| I still wonder how this guy hacked the box. Cerium, please explain? |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| The Apache BECAUSE I'M A STUPID IDIOT
 
  
 Age:34
 Gender:
  Joined: Jul 10 2006
 Posts: 294
 Location: High Wycombe
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 7:53 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| i feel kinda sorry for assassin.  |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| hellzlaker Registered Cap Buster
 Popping men in the ass since Oct 2005
 
 
 Gender: NEVER ENOUGH!
 Joined: Oct 27 2005
 Posts: 34
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 11:47 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| lol funny you should hack that guys email using som email spamers they send like 100 email a sec... |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Maverick 
 
  
 Age:41
 Gender:
  Joined: Feb 26 2005
 Posts: 1521
 Location: The Netherlands
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 12:20 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| If you want to be targeted I suppose you can do that. _________________
 
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 1:57 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Wow, very strange.. I never even noticed this! I was out of town for a bit. No matter, was working on a different site anyway and was keeping it up for the time being. I dont know how the person did it but whatever.. Ill have it fixed soon. 
 EDIT: Well, no damage done other then they took the site down.. I dont know who could have done it, its not like I advertised my site except for here and some of my friends. But oh well, pass changed.. Not going to do anything back, they did what they wanted and moved on.
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| The Apache BECAUSE I'M A STUPID IDIOT
 
  
 Age:34
 Gender:
  Joined: Jul 10 2006
 Posts: 294
 Location: High Wycombe
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 3:23 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| ah well, lame things like this happen i guess. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Maverick 
 
  
 Age:41
 Gender:
  Joined: Feb 26 2005
 Posts: 1521
 Location: The Netherlands
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 3:53 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Shit happens (too) |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 4:41 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Well my friend foung the problem. I was searching through my files and came up with a wierd named file that didn't look fimilar, "Backdoor.php". My friend went to my imageupload thing and went in and found what the bug was and uploaded a php file right in there. So I took out my upload script and I guess ill have to see how I can fix that.. The backdoor.php file was acctually pretty neat, gave the person access to all my files. But everything is back to normal now. Fixed the main site to. Thanks for letting me know about this, I probably wouldn't have noticed.. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Bak ?ls -s
 0 in
 
  
 Age:26
 Gender:
  Joined: Jun 11 2004
 Posts: 1826
 Location: USA
 Offline
 
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 7:35 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Oh, mine was restricted but it had a bug. I made it so it ould only allow images, jpg, bmp, gif, ect.. Well the script would only look at the extension, so what the guy did was go: backdoor.php.jpg. And then he had his script right on there for use. So I eaither have to fix it to check the whole name or find a new imageupload script. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Cyan~Fire I'll count you!
 
  
 
 Age:37
 Gender:
  Joined: Jul 14 2003
 Posts: 4608
 Location: A Dream
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 9:18 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Uhh, backdoor.php.jpg wouldn't work, it would just be sent to the user as a JPEG file. _________________
 This help is informational only. No representation is made or warranty given as to its content. User assumes all risk of use. Cyan~Fire assumes no responsibility for any loss or delay resulting from such use.
 Wise men STILL seek Him.
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 | 
			
			  | 
				
					|  Posted: Sun Nov 26, 2006 9:32 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Well, my friend tried it and it worked when I went to the uploaded file.. So I dont know. Im pretty sure thats how he got in but its fixed now.. so im happy. Ill have to find a new code for it though. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Smong Server Help Squatter
 
  
 Joined: 1043048991
 Posts: 0x91E
 Offline
 
 | 
			
			  | 
				
					|  Posted: Mon Nov 27, 2006 4:19 am   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Wouldn't the file permissions have to be execute as well?  But I suppose if uploaded files are "php generated files" they might create with rwx (and with the ownership of the webserver). |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| The Apache BECAUSE I'M A STUPID IDIOT
 
  
 Age:34
 Gender:
  Joined: Jul 10 2006
 Posts: 294
 Location: High Wycombe
 Offline
 
 | 
			
			  | 
				
					|  Posted: Mon Nov 27, 2006 12:39 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				|  	  | Assassin2684 wrote: |  	  | But everything is back to normal now. Fixed the main site to. Thanks for letting me know about this, I probably wouldn't have noticed.. | 
 no problem.
  this is what boredom does i guess. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Bak ?ls -s
 0 in
 
  
 Age:26
 Gender:
  Joined: Jun 11 2004
 Posts: 1826
 Location: USA
 Offline
 
 | 
			
			  | 
				
					|  Posted: Mon Nov 27, 2006 1:52 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Php is interpreted so all you need is read permission which has to be there so others can get the file. 	  | Smong wrote: |  	  | Wouldn't the file permissions have to be execute as well? | 
 
 Although I agree that using .php.jpeg wouldn't work? Unless the webserver program only looks at the first extension, which I doubt.
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 | 
			
			  | 
				
					|  Posted: Mon Nov 27, 2006 3:44 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Haha, I think thats what it does, BaK.. Pretty stupid, my friend made it a while back and I never bothered to even look though the code. But I am pretty sure thats what it does. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Solo Ace Yeah, I'm in touch with reality...we correspond from time to time.
 
  
 Age:38
 Gender:
  Joined: Feb 06 2004
 Posts: 2583
 Location: The Netherlands
 Offline
 
 | 
			
			  | 
				
					|  Posted: Mon Nov 27, 2006 3:55 pm   Post maybe stupid    Post subject: |  |   |  |  
				| 
 |  
				| Post the backdoor file and the file upload handler, please. |  | 
	
		| Back to top |  | 
	
		|  | 
	
		| Assassin2684 Server Help Squatter
 
  
 Age:34
 Gender:
  Joined: Jul 27 2004
 Posts: 990
 Location: Florida
 Offline
 
 |  | 
	
		| Back to top |  | 
	
		|  | 
	
		|  |