Page 25 of 38
Re: geekhack hacked again!?
Posted: 28 Jun 2012, 18:05
by longweight
Well I have all clean reports so I guess it's all good! What happened to your machine ripster?
I've been selling caps in the UK from GBs to generate some money for a donation, hopefully we will hear what the future of the site is where the money will go.
Posted: 28 Jun 2012, 18:11
by ripster
It was just some malware. See the previous posts.
Hey, Irony of Ironies! MY Wiki Photos are SAFE!
mkawa
mkawa is online now
MODERATOR TEAM punch me if you need to
Join Date
Oct 2010
Location
SoCal
Posts
2,340
we lost every attachment in the initial attack (for an appropriate reference, think of the battlestar galactica reboot mini-series). we have backups of the wiki attachments, and imav found a very dated backup to recover some few attachments from, but other than that, all bets are off.
imav discovered something interesting a few moments ago, and so the site should hopefully be safer through the rest of the day until we can gear down and make larger changes (unless of course they step up the arms race again). thanks for your patience.
oh, and YES back up everything you can that's of importance to you. we will eventually be forced to lose data (or be forced to reconstruct things from backups) before too long. we'll do our best to preserve data, but any help you guys can give would be golden.
Damn, stole my Wikis AND my pics all in an effort to drive site traffic to a malware infested site!
It was because I was so good about backing up everything...
http://geekhack.org/forumdisplay.php?85-ripster
Don't click that.
Posted: 28 Jun 2012, 18:16
by rknize
iMav was able to clobber the redirect from the DB, so the site is back up again.
For the record, GH is running all the latest patches. We believe it's a 0-day against vB4. We are evaluating where to go from here.
Posted: 28 Jun 2012, 18:16
by ripster
I trust rknize.
Sort of
He sure trolls me here a lot.
Posted: 28 Jun 2012, 18:17
by Ekaros
7bit wrote:off wrote:Quite plausible; but that would indicate iMav and his hosting service really lack common sense, after all this time even.
...
Even if GeekHack is hacked because of the name and even if iMav is incapable to switch over to something more modern, there still is the question why there are no proper backups, so the loss after a rollback would be minimal.
Also: I'm so lucky I never found out how GeekHack wikis worked.
I think most admins would learn after first time? Atleast I think I would try to setup something...
Posted: 28 Jun 2012, 18:18
by ripster
You guys first.
Doubledogdareya.
Hit
http://www.geekhack.org
Posted: 28 Jun 2012, 18:19
by rknize
ripster wrote:I trust rknize.
Sort of
He sure trolls me here a lot.
It's all in good fun.
Posted: 28 Jun 2012, 18:24
by 7bit
ripster wrote:You guys first.
Doubledogdareya.
Hit
http://www.geekhack.org
[BLACK SQUARE BECAUSE I DON"T EVER INSTALL FLASH!]
I already did this and nothing happens. Better install Linux, don't install flash and install no script and don't turm JavaScript for Geekhack on!
And stop posting black squares (youtube links in fact)!
Posted: 28 Jun 2012, 18:34
by TexasFlood
This may be the first doubledogdare of yours I've accepted.
The one thing I didn't expect was for it to work properly, yet it did, at least for now.
Posted: 28 Jun 2012, 18:38
by ripster
Let me know in a week after a few dozen virus scans!
Did you know sheep don't complain when they are innoculated for viruses with lots of shots?
Posted: 28 Jun 2012, 18:40
by TexasFlood
O ye of little faith (wonder if I'll have to eat that?)
Posted: 28 Jun 2012, 18:42
by ripster
Happy Geekhack Member.
Anyhoo, you get back to answering the noob questions for the 100th time...
Cheticus
Cheticus is online now
Junior Member
Join Date
Aug 2011
Posts
1
Monoprice Keyboard? Does anyone know what manufacturer?
My friend is getting into keyboards, and found a mechanical keyboard on monoprice. It appears to have monoprice labels, and black switches. I don't think he'd like black switches, but I'm going to have him try some keyboards that I have later in the week. Regardless; he found this.
http://www.monoprice.com/products/pr...=2#description
I have no idea what manufacturer it is. Anyone know? I'm recommending he snags a cm quickfire rapid with the switch of his choice, but I'm still curious what this is.
Meanwhile in the Pics threads......
10 Jun 2012, 19:23 #1
microsoft windows
microsoft windows is offline
Senior Member microsoft windows's Avatar
Join Date
Jun 2009
Posts
5,378
Porta Potties
Post your photos of porta potties here!
I'll start off with a photo I took of one last year in upstate New York:
What porta potty?
Posted: 28 Jun 2012, 19:47
by thegunner100
Meanwhile I'm still waiting for Kisa to show up =/
Posted: 28 Jun 2012, 19:52
by ripster
Probably a sympathetic selfban. FOR THE CAUSE!
I mean, he never struck me as a sheep.
He sent me my dog key.
Probably taking a PAWS.
Posted: 28 Jun 2012, 20:01
by thegunner100
xD...
Posted: 28 Jun 2012, 20:03
by Quarzac
thegunner100 wrote:Meanwhile I'm still waiting for Kisa to show up =/
I wrote him a note with a package I sent him. Hopefully he gets it.
Posted: 28 Jun 2012, 20:07
by webwit
While gh keeps getting fortified, If I'd run vbb, the first thing I'd do is the 5 minute security-by-obscurity patch which actually prevents 9 out of 10 vbb hacks. Change the urls of register and login. Because 9 out of 10 script kiddies just scan for register.php etc. The second thing I'd do is dump vbb, because for commercial web forum software, I expect security to be better, instead of worse than some open source solutions.
Posted: 28 Jun 2012, 20:08
by ripster
Whenever I see his name I say to myself, KisaEkuku in a Jar Jar Binks voice.
Posted: 28 Jun 2012, 20:09
by ripster
webwit wrote:While gh keeps getting fortified, If I'd run vbb, the first thing I'd do is the 5 minute security-by-obscurity patch which actually prevents 9 out of 10 vbb hacks. Change the urls of register and login. Because 9 out of 10 script kiddies just scan for register.php etc. The second thing I'd do is dump vbb, because for commercial web forum software, I expect security to be better, instead of worse than some open source solutions.
You know what I would do if I were iMav?
I would get my 23 moderators doing something instead of being a control freak and doing it all myself.
In other words, put RKnize in charge of fixing everything and putting up a new Forum. Then I would ban the guy that created all the site content and take credit for everything. I think that is the way Facebook got started.
Posted: 28 Jun 2012, 20:19
by kint
TIL:
DT is using Javascript for image resizing in threads. Note to myself: return to oldschool downsizing Images pre upload to 800x600 for all the folks running no script /java off.
aaand: just flashed my system with a previous image....
Posted: 28 Jun 2012, 20:23
by off
Sadly DT also uses JS for the post edit screen, the bar with stuff like [quote ] etc.
and to redirect after posting.
and quite probably (haven't bothered to check) also for the Spy.
Posted: 28 Jun 2012, 20:36
by webwit
Please do keep javascript enabled. Otherwise I can't track your mouse pointer and scan your keystrokes while peering through your webcam.
Posted: 28 Jun 2012, 20:38
by ripster
You can STILL do posting in Simple mode.
Whoops...shouldn't have said that.
Posted: 28 Jun 2012, 20:46
by net2522
Now it's really gone again.
Posted: 28 Jun 2012, 20:53
by TexasFlood
net2522 wrote:Now it's really gone again.
Naw, just renamed it to "403 Forbidden". Wait...
Posted: 28 Jun 2012, 20:57
by TexasFlood
Now it's back to "R00TW0RM", man it never gives up, like rust, termites and tooth decay.
Posted: 28 Jun 2012, 21:02
by ripster
Posted: 28 Jun 2012, 21:06
by rknize
Yup, they whacked it good that time.
Posted: 28 Jun 2012, 21:06
by ripster
Moderator Cheerleading again eh?
Posted: 28 Jun 2012, 21:08
by rknize
It's the best I can do.