DreamcastHistory.com

Any know what's going with the site?

i currently get:

This site is defaced!!!
--------------------------------------------------------------------------------
NeverEverNoSanity WebWorm generation 19

Looks like some worm got them...

 

It's a PHP exploit, a rather fresh one apparently. I've seen this has happened to quite a few sites.

I shut NFG down for half an hour while I backed up and updated PHP. The latest PHP (4.3.10 or 5.0.3) is the only way to be safe, tho apparently this uses database access and is possibly limited to phpBB...

More info:
http://www.theinquirer.net/?article=20329

This was also covered here:
http://www.assemblergames.com/phpbb2/viewtopic.php?p=40844#40844

 

bring it back :smt022

 

I posted about this in O/T too, it seems everyone is finding this out. =(

Damn.

BTW, I tried logging into the FTP, but I couldn't get in. I know the password and user name, but something must've been changed. I really hope it's not all...gone. :smt022

On another note, if it gets sorted out and I get the guy's IP address, he's fucked. :smt067

 

Yeah, I just updated my server a few hrs back to the new php 4.3.1 from 4.3.9 (if that makes any sense )

Hopefully everything will be nice and safe..but with all these LAME ASS HACKERS out there .. who knows

 

why would anyone hack DCH though?

 

So, how exactly does one do this? What I mean is how do they use the errors to gain privlages? I don't use PHP on my site, but it would be good info to know nonetheless.

 

I dount they targeted the site specifically and I seriously doubt it was a hacker. Sounds more like a cracker/script kiddie fired up a program scanning the internet for different domain names using php then applying the exploit or some kind of e-mail style wormtargeting php has been unleashed. Not many people know the difference between a hacker and a cracker which is a shame. A true hacker is the hardcore bastard who does all his own shit, a cracker is more of a mong ass n00b wannabe h4x0r using someone else's programs/scripts to get the job done.

 

Well, in my dictionary a cracker is somebody who defeats copy protections in programs and the like... a practice referred to as "cracking". It's quite a fun sport at that, but I'm not very good at it (only did two programs).

 

Haha, I wouldn't admit to that, anti!! hehe.

Yeah, someone who exploits a vulnerability by a known method, or runs a tool someone else made thinking they're a haxx0r is a script kiddie

 

I was able to log in to the fpt...what can I do, if anything? TK said he wouldn't be around until later, so I was poking around searching for what files the guy screwed with.

He overwrote all the files in the tmp folder to what his crappy program says about the worm etc. I think the only way to fix this is to upload everything again...I hope he has back-ups of everything somewhere. :smt022

 

sorry for the site :smt009 Hope they have a back up and all, would be sad, if it would be gone or lost...

 

Well, the pics directory is still there, but not the dreamcasting (phpbb) directory, and the root stuff seems to have gone.

Best thing for now would be to put up a temp page, I guess.

Hope they have a backup (their host may well have, actually), and access to the site logs to see who did this!

That I recall, the main site wasn't PHP, I guess either they had an auto tool that ate the root dir too, or they purposefully did it :smt009

You could link to This picture or this one, and put up a small notice explaining things.

 

Yup, they killed the whole fucking forums. =( I got a message back from TK, said he emailed the host to see when they last backed up the forums--otherwise he might have to start it over from scratch.
=( Which totally sucks. Hard.

If I find out the little shit who did this, rest assured the bastard will die. :smt067

Little 13 year old "h0xrs" running around with google and a worm program--what lamers.

 

It looks bad as it is, so put up a temp site! :smt023

Just a notice will do.

 

He put part of it back; the forums are screwed though. =(

He said that I could try to get them up again (the forums), so I guess that's what I'll try to do. Wish me luck on that venture.

 

Damn idiots the people that has made that. :smt071 Hope Dreamcast History can return back as complete as it is possible.

 

Yup, good luck, as the db is likely trashed :smt009

Is the dreamcasting directory still there? What is in it? Have *all* the files in there been replaced? If not, I guess you could copy them, reinstall phpBB, then reimport the db... you'd have to know how, though, and I'm afraid I'm not sure!!

 

I know how to make the site come back...just upload the back-ups of all the webpages 'n stuff. But it's not my site, so I don't have those back-ups--hopefully the host made some recently.

The forums--the dreamcasting directory is still there, which is good news. I tried to upload new forums, but my internet kept stopping. =( I'll have a look at what the dreamcasting folder contains.

Edit: all the index files in the dreamcasting folder have been overwritten to that crap. =( Which means that they need to be replaced with the correct files.

 

The hack of dreamcasthistory is the work of an automated worm rather than lame hackers apparently....

http://www.theregister.co.uk/2004/12/21/santy_worm/