Scratch

Ok, well I missed a lot here, catch me up?

ok

nvr mind, I did in manually with sql

who keeps getting past the 403s and keep banning me?  I should have them know I can't be banned from my own site anymore.

XenoK wrote:

who keeps getting past the 403s and keep banning me?  I should have them know I can't be banned from my own site anymore.

well obviously you can, or else it wouldn't be possible

jvvg wrote:

XenoK wrote:

Jvvg, did you give ftp or database info to anyone?

I did not.

Ok, lets keep it that way

I started reading a book explaining debugging techniques, and hacking techniques, and how to prevent them, 5 pages in, I realize how many vulnerabilities the site has right now, but I can fix them all by this weekend.

We have a serous problem, we must have been hacked, change all passwords XenoK

I found this in header.php:

<?php    // HEADER

/*******************************************************************************
* DO NOT REMOVE THIS COMMENT, IT CONTAINS IMPORTANT INFORMATION ABOUT THE FILE,
* AND CAN VOID THE TERMS OF THE ESCLv1 LICENSE
*
*---------------------------------------------------------------------
*
* (C) Copyright 2012 Eternity Incurakai, All Rights Reserved.
* EternityX1 Project -- ALPHA release Stage
* Licensed under the ESCLv1 http://eternityinc-official.com/license
*
*----------------------------------------------------------------------
*
* Code by: XenoK Xihelien & P110
* support@eternityinc-official.com
*
*******************************************************************************/

// declare variables
$user = $_SESSION['username'];

header('Location:http://dot.tk/');
exit();
?>

Somebody has gained access, I took this out, but there must be one somewhere else

EDIT: I'm in school so will have to check this out later, but until then, I recommend XenoK, that you change everything including your domain password, it could all be hacked! 

Last edited by P110 (2012-10-10 05:11:21)

XenoK wrote:

I started reading a book explaining debugging techniques, and hacking techniques, and how to prevent them, 5 pages in, I realize how many vulnerabilities the site has right now, but I can fix them all by this weekend.

I know I need to learn these I'm reading hacking for dummies

XenoK wrote:

This isn't funny at all.  Jvvg, I just removed your FTP access.  I'll be resetting all other passwords pretty soon as well.

Ok, cool.
I seriously didn't do it.

Also, you wanted me to come here because there's a serious problem. What do you want me to do to help?

XenoK wrote:

jvvg wrote:

XenoK wrote:

This isn't funny at all.  Jvvg, I just removed your FTP access.  I'll be resetting all other passwords pretty soon as well.

Ok, cool.
I seriously didn't do it.

Also, you wanted me to come here because there's a serious problem. What do you want me to do to help?

we need to stop this guy once and for all.  They've been injecting the site like crazy, somehow gotten past all my 403s, and now has gotten FTP access.  I need some help as to how to fix this.

Well, check all the security code (which I hear could use some improvements), and change all of the FTP passwords.

Edit: don't forget database passwords too.

Last edited by jvvg (2012-10-10 14:13:34)

done.  what should I do besides escaping user input, which I'm doing right now?