Tuner's Pit Non sequitur thread

**Gar529** · 07-06-2012, 01:04 PM

Originally Posted by Maineiac Moose

Well it seems NuTTTz has done a wonderful job removing the hacker from the website now Ill just have to get him to help me get them out of my PC's so I can get back in the rig.

Thanks NuTTTz you are the Man.

Hacker? Is our info safe?

**nuTTTz** · 07-06-2012, 01:58 PM

Originally Posted by Gar529

Hacker? Is our info safe?

Short answer, yes absolutly. Ill explain.

Someone had cracked the password of an admin account, and placed redirect code in our forums.
The initial effect was a missing footer and odd gltches, such as, no pop up on pm, and reply worked like reply with quote. The redirect code was not immediatly active.

The initial fix attempt was to restore all files that the intruder touched to a date prior to thier log in. While that fix on the surface seemded to work initially, it also resulted in scrambling the post identifier in the DB, posts were not going where they were supposed to, so we had to revert back.

The plan from there was to attempt an overall fix by upgrading the forum software, but our hacker gave me another option.

Our hacker came back again and accessed the same account they had previously, even though the password had been changed, and activated the redirect.
In doing so I was able to track through the logs (it records EVERYTHING) and find the malicious code, and remove it.
Resulting in a forum that now works again like it should.

Additional steps were also taken, the password for that particular admin account was changed to a 150 character random jumble, the permissons for everything were removed, then I deleted the account.
Hopefully effectively locking our nuisance out permanantly.

While I invested a fair amount of time in dealing with this, I in all fairness must aknowledge the tremendous level of support recieved form our host NETFRONTS.
They continually go above and beyond what you might expext from a provider and thier tech support team.
It is with thier help on the back end that we are able to keep this place going, there are not enough thanks to truly reflect thier contribution.

**nuTTTz** · 07-06-2012, 02:07 PM

Oh, also.

As well, so you all can have some peace of mind.

When we get intruded like we did there is only limited things that can be accessed.
Passwords for example do NOT show up for admins or anyone else, they are scrambled in the DB and the only thing we have the ability to do is change it for you, but we cannot see current passwords.

Because we do not do any financial transactions there is no payoff in CC numbers for serious organized hacker groups, so we are left with amatuers trying to learn thier dark arts.

There are redunadant protections in place we can fall back on, and do.
The worst that can happen to us is a denial of service attack, which we have already had and succesfully dealt with in recent months.

The more recent intrusion is really no more than a nuisance, and was never any kind of serious threat.

**SSRacing69** · 07-06-2012, 05:01 PM

Thanks for all of your work nuTTTz! It's certainly appreciated. Wish I had the skills to be able to help out.

**nuTTTz** · 07-06-2012, 05:11 PM

Originally Posted by SSRacing69

Thanks for all of your work nuTTTz! It's certainly appreciated. Wish I had the skills to be able to help out.

You do, and you just did! YW:-)

**DUNTOV3030** · 07-06-2012, 06:48 PM

nuTTTz...I want to echo SS's words of thanks for your efforts here. It's nice...that you give NETFRONTS so much credit for their work in helping resolve this particular issue...but we all know that your efforts here are key in keeping this league operating...and they are much appreciated. Thank you man

**THE_KART96** · 07-06-2012, 08:24 PM

Originally Posted by Peyepete

If you want to drive 8 miles up Yonge St, I have a spare rig you can drive in.

I would love to take you up on this, but the wife has me doing the tourist thing. See you tomorrow.

**Peyepete** · 07-06-2012, 08:36 PM

Originally Posted by THE_KART96

I would love to take you up on this, but the wife has me doing the tourist thing. See you tomorrow.

No problem KART, stop in for a cold one if you get the chance, before you head out west.

**Oldtimer01** · 07-07-2012, 12:37 PM

Is this really necessary

http://autos.yahoo.com/news/porsche-...oud-punch.html

http://www.porsche.com/usa/models/91...y/?gtabindex=3

**Maineiac Moose** · 07-10-2012, 05:19 PM

Folks,
I know some of you are wondering what has happened to me that would keep me away for so long...
Candace and I have been burning the candles at both ends getting some of lifes requirements taken care of, Candace has passed the exam she spent three months studying for and I couldn't be prouder of her. I am now allowed back in the house and able to make noise once again so I would be back in the rig racing with you however we lost one of Candaces aunts last night and we have a dog battling cancer so I am not really free to join you yet. Rest assured I have not forgotten you or grown tired of the good times we share in the TPRA. To quote a famous american general " I will return" as soon as I can.

Thread: Tuner's Pit Non sequitur thread

Thread Tools

Search Thread

Display

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Re: Tuner's Pit Non sequitur thread

Posting Permissions