It was a hacker

[eXhale]

I can now pretty much confirm it's a stupid german hacker who deleted the VJForums database because I just noticed that at the same date, he "hacked" the demo of one of the script I sell and replaced the demo text with some german h4X0r text. The other database he deleted was for the demo of another script of mine so I can see the link easily... He probably thought it was fun to also delete the 3000 messages of this message board. Stupid asshole I dedicate my time & money on a non-profit project and some retarded kid thinks he's superior because he manage to fuck up this project.

Anyway, I have no idea how he hacked into my server, but I'm now backing up the database on a daily basis so even if this asshole starts again, this forum will be back in no time.

[eXhale]

Oh well, just found how he fucked my server. The script I demoed is an upload script and I stupidely let visitors change the upload settings, so he just allowed PHP files (they are not allowed by default), uploaded a h4X0r PHP script, ran it and did whatever he wanted. Like I said, stupid asshole.

At least I'm glad to know how he did this.

[eXhale]

More specifically, he uploaded a PHP script designed for h4X0rz which lets you browse a server (and see the PHP source code). Because of the Apache settings, he could only navigate through the same site (ScriptsCenter) but this enabled him to view the MySQL server variables of that other script and he was able to delete all tables. Then, because I was using the same MySQL user/pass for both VJForums and ScriptsCenter (I changed this now), he was also able to delete VJForums data.

Nothing amazing really, I could have done it except I do have some ethics.

[LEVLHED]

remember when "hacking" meant you just when in, left a calling card to prove you'd done it, and left w/ out wrecking shit?
the good old days.

Ahh well, it is probably best you learned of that vulnerability now, instead of a year from now when Morph reaches his million-th post.

[MoRpH]

Hahaha... yeah well he would be dying for his crimes then. As it is, is there anyway to track down this lame german script kiddie, cause I'm sending around "the boys" fear not vjforums crew this guy will soon be minus his kneecaps

[Amukidi]

Pump 5 pounds of warm shit into his hog's eye - I believe it smarts a bit!

[MoRpH]

Now thats a good idea

[Amukidi]

LMAO literally!!

[MoRpH]

I have an arsenal of stupid pictures to go at a moments notice

[elbows]

lol nice piccy Show us another one

Did you get the hackers IP address? Was there any evidence that he had spoofed his IP address in some way if you do have it?

Ive been very lucky that my site was never hacked, probably becuase its mostly a closed community forum, but as I now host the visualJockey forums I do worry about security sometimes. Still its on a shared server so its really down to my hosts.

Ive just put a linux server in at work and reading the logs is scray how many lame hack attempts there are. I think most of them are caused by lame script kiddy programs that do a range of exploit-searches, I dont think Ive been deliberately attacked by a human hacker directly yet. In this crazy internet though it can only be a matter of time