BetaArchive Logo
Navigation Home Screenshots Image Uploader Server Info FTP Servers Wiki Forum RSS Feed Rules Please Donate
UP: 25d, 14h, 19m | CPU: 29% | MEM: 5879MB of 11086MB used
{The community for beta collectors}

Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 29 posts ]  Go to page 1, 2  Next
Author Message
 PostPost subject: Bender banned, VIP posts gone        Posted: Fri Sep 12, 2008 9:59 pm 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
Hello all,

You may have noticed the forum go offline for 15 minutes just now. This was because Bender, one of the mods, had his account presumably hacked and used to mess the forum up. All of the VIP posts are gone, he posted the FTP usernames in his signature and moved all of the staff posts into a public forum.

This has all been fixed, except the VIP posts which were deleted.

I would have restored a backup however upon looking for one, the backups were not there. The last backup was 2 weeks ago and my stupid server never reported a thing to me saying they were failing. I'm now putting in measures to make sure this doesn't happen again.

<s>Unfortunately all of the posts in the VIP forum have been lost, since there is no backup. Thankfully there weren't that many. I'm sure you will all be annoyed by this, as I am. Unfortunately it can't be helped. My status as a good admin has gone!!!</s>

If anybody knows who hacked Benders account, or knows if it was Bender himself, please tell me in whichever way you can.

EDIT: The VIP posts have been MOVED into news. Any VIP topics you find please report the topic to me and I'll move it back to the VIP section. Thanks.

Andy (Admin)

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Last edited by Andy on Fri Sep 12, 2008 11:00 pm, edited 1 time in total.

Top  Profile  WWW
 PostPost subject:        Posted: Fri Sep 12, 2008 10:15 pm 
Donator
User avatar
Offline

Joined
Thu Nov 29, 2007 11:33 pm

Posts
3899

Location
Where do you want to go today?

Favourite OS
All Microsoft operating systems!
That sounds bad. Now I know why BetaArchive was displayed a second time in the place on the first page where the names of the new topics are usually displayed.

What I don't understand is why people hack other people's accounts. 8-) What's the point of hacking someone else's account? I don't understand why people think it's fun to do that kind of thing. There's nothing you gain in return, at least nothing good, so why would anyone do it? You almost always get caught anyway.

Anyway, I hope that at least someone can find out who did it. And I'm sorry about what happened, including the VIP section.

There's a moral to this story. You can NEVER get ANYTHING good in return by doing bad things! By doing bad things, chances are that you'll get something bad in return. This is one of those cases. I hope whoever it was has read my post, since he might learn his lesson.


Top  Profile  WWW
 PostPost subject:        Posted: Fri Sep 12, 2008 11:48 pm 
FTP Access
User avatar
Offline

Joined
Mon Aug 20, 2007 4:58 pm

Posts
274

Location
The Bermuda Triangle

Favourite OS
WFW 3.11/Win 98SE
what were the majority of the posts about? were they just the usual "i haxx0r the system!!!111!!1!!11ELEVIN" or something more sinister (for lack of a better word)?

_________________
Image


Top  Profile  YIM
 PostPost subject:        Posted: Fri Sep 12, 2008 11:51 pm 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
teriaki 511 wrote:
what were the majority of the posts about? were they just the usual "i haxx0r the system!!!111!!1!!11ELEVIN" or something more sinister (for lack of a better word)?


There were no posts. He simply moved everything from one forum into another, private to public, like VIP into news and staff forums into Forum Rules. He also added an image of the ftp passwords page to his signature which is publicly viewable.

As far as I can tell nothing was deleted and nothing was posted. I'm still in the progress of moving VIP posts back into its proper section, as and when they are found by me or other members.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Fri Sep 12, 2008 11:58 pm 
FTP Access
User avatar
Offline

Joined
Mon Aug 20, 2007 4:58 pm

Posts
274

Location
The Bermuda Triangle

Favourite OS
WFW 3.11/Win 98SE
dang, all the more reason to have restricted areas like thus, think of the riffraff you're keeping out (excluding anti-Bender). i'd say it was "do not banned" or that other guy, but those are just biased guesses, and i don't think they have the skill to pull it off :^)

_________________
Image


Top  Profile  YIM
 PostPost subject:        Posted: Sat Sep 13, 2008 12:16 am 
Donator
Offline

Joined
Fri Oct 26, 2007 5:12 pm

Posts
2461
Do not banned guy = sc4reactor = 12 year old.


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 12:17 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
happy dude wrote:
Do not banned guy = sc4reactor = 12 year old.


= IP banned from BA and he doesn't know what proxies are.

He simply gets an error 403 from the forum and the FTP server doesn't even respond.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 12:26 am 
Donator
Offline

Joined
Tue Jan 30, 2007 5:45 am

Posts
936

Location
New Zealand
IP ban the IP that hacked Benders account if you haven't already.


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 12:28 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
win98 wrote:
IP ban the IP that hacked Benders account if you haven't already.


Can't be done since the person never posted, thus phpBB didn't get the IP. phpBB doesn't have the logging necessary to catch people. phpBB3 does, which when we move will prove most useful.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 1:15 am 
Staff
Offline

Joined
Sat Oct 14, 2006 12:05 am

Posts
786
Quote:
lewis says:
so you've been hacked then?
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
aparently
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
I would never vandalize BA


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 1:21 am 
Donator
Offline

Joined
Fri Oct 26, 2007 5:12 pm

Posts
2461
Quote:
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
I was hacked?
happy dude - says:
idk o_o
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
I aparently was
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
lol
Bender - I wanna be buried next to my wife; under that bridge in Jersey says:
my password isnt that hard to guess either


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 1:35 am 
FTP Access
User avatar
Offline

Joined
Thu Jan 03, 2008 4:06 am

Posts
25
I know I don't post here very often, but I dug up my password for this board so I could make a few notes. I run a forum myself, so I have some thoughts on this...

1) If you don't have phpBB3 running, no, you won't have that kind of stuff logged. Try checking your Apache's access.log and find the PHP files associated with the moderator CP and moving posts. Then find IPs based on those logs.

2) If you had been running phpBB3, that kind of information would have been logged. phpBB3 has a "moderator log" that records all edit\delete\move by any user, including moderators.

-Kirk


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 2:18 am 
Donator
Offline

Joined
Fri Oct 26, 2007 5:12 pm

Posts
2461
1) BA runs on Abyss Web Server on Windows 2003, not Apache...

2) http://betaarchive.co.uk/forum/viewtopic.php?t=5552

8-)


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 3:04 am 
Bender didn't do these things, I don't talk to him on MSN, or anyone from here or
any other forum, so I'm not sticking up for him because I'm a good mate,
But because he's been here, & on other forums long enough to know what he's like...
& quite frankly, I'm a little baffled why anyone would think he's done this...
Andy wrote:
If anybody knows who hacked Benders account, or knows if it was Bender himself, please tell me in whichever way you can.
Andy (Admin)


I think anyone here with any level of reasoning would know the party responsible for this,
however to avoid this thread being trashed, I'll tell you in a PM...
I will say this though, whilst the person responsible for this, remains a member
here & any other forum, you won't get the attendance from me, or any other
member worth hanging onto...

Also, the level of friendship between the majority is less
than expected, a good mate wouldn't automatically assume guilty until
proven innocent, usually the other way around...
:?


Last edited by KenOath on Sat Sep 13, 2008 7:21 am, edited 2 times in total.

Top
 PostPost subject:        Posted: Sat Sep 13, 2008 4:51 am 
FTP Access
User avatar
Offline

Joined
Mon Aug 20, 2007 4:58 pm

Posts
274

Location
The Bermuda Triangle

Favourite OS
WFW 3.11/Win 98SE
Curious, i wonder if this is related to the wiki spamming incident.

90% its not, but it never hurts to rule out all options...

and i agree, what would probe Bender into doing something odd like that, wasn't he a supporter of the restictions, and even if he wasn't, why do something petty like that? there's something we're not seeing here

_________________
Image


Top  Profile  YIM
 PostPost subject:        Posted: Sat Sep 13, 2008 6:27 am 
Donator
User avatar
Offline

Joined
Fri Aug 18, 2006 12:10 pm

Posts
570

Location
New Zealand
teryaki: Stop spreading speculation. Andy can do his own brainstorming. I agree with KenOath, Bender's possibly the most level-headed moderator I have observed for such an extended time.

_________________
Image


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 9:07 am 
FTP Access
User avatar
Offline

Joined
Wed Dec 27, 2006 5:44 pm

Posts
394

Location
Canada

Favourite OS
Windows
ummm :o

Andy i think that you need to increase the password strength requirement for everyone but specially Mods/Staff/Admin, to prevent (or atleast make it harder) this type of things..

as for logs, i think you can track it if the board logs the IP it self for admins while doing Admin related things.

like in yaf (the one i use).
if not Webserver logs or even SQL logs.

if theres anything i can do to help just let me know :)

\\ Me hates Evil Haters //



:evil:

*hint* Sticky: Laugh of the week award on Download Req *hint*

_________________
Image


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 10:13 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
ChasingVertigo wrote:
teryaki: Stop spreading speculation. Andy can do his own brainstorming. I agree with KenOath, Bender's possibly the most level-headed moderator I have observed for such an extended time.


I never thought for one second it could have been Bender himself, but my point about security when I was speaking to people on msn was proven. Passwords for moderators MUST be secure and not easy to guess! This is why these things happen. I will be instructing all moderators to change to a stronger password today, and that includes myself as well, because mine <s>isn't</s> wasn't the strongest of passwords.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 11:43 am 
FTP Access
User avatar
Offline

Joined
Wed Dec 27, 2006 5:44 pm

Posts
394

Location
Canada

Favourite OS
Windows
co0l
can me b mod now??


:P

_________________
Image


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 11:50 am 
Donator
Offline

Joined
Fri Oct 26, 2007 5:12 pm

Posts
2461
SaT wrote:
co0l
can me b mod now??


:P


h0w th3 [censored] c4n u b33 a m0d wheen u typ333 lik3 dis l0000lzz

8-)


Top  Profile
 PostPost subject:        Posted: Sat Sep 13, 2008 11:56 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
happy dude wrote:
SaT wrote:
co0l
can me b mod now??


:P


h0w th3 [censored] c4n u b33 a m0d wheen u typ333 lik3 dis l0000lzz

8-)


Agreed.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 12:31 pm 
FTP Access
User avatar
Offline

Joined
Wed Dec 27, 2006 5:44 pm

Posts
394

Location
Canada

Favourite OS
Windows
well just because i type like that doesn’t mean that i cant do the job right.
;)

also....
i dont type like

Quote:
h0w th3 [censored] c4n u b33 a m0d wheen u typ333 lik3 dis l0000lzz

that

i just remove some words and replace double o's for one o and one 0

_________________
Image


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 1:59 pm 
Staff
User avatar
Offline

Joined
Sat Aug 19, 2006 8:13 am

Posts
1905

Location
Slovenia, Central Europe.

Favourite OS
Windows 98 SE 4.10.2222B
OK, let me just say, that I know, who the hacker is, and it's the same [censored] moron, who already hacked the MSN accounts of marktuson, and Chicago, AND another friend of mine from another forum, AND impersonated KenOath TWICE on this forum, once, as KenOath_the_real, and once, as Ken0. He also hacked the e-mail address of a Japanese contact (Nakamura Hiroshi) of mine, TWICE, and all this, just because he believes, that I'm Nakamura's fake account.

Now, Nakamura already talked personally to this guy, TWICE, since they live relatively near each other, but it didn't help, so I contacted his ISP, but he just changed ISP, so it didn't help, either. So yeah, now, Nakamura decided to turn that moron to the police, since this seems to be the only way, that we can get rid of him.

I have also proposed to Andy to give a nation-wide Ban to Japan from BETAArchive, and I even gave him an exhaustive list of all the Japanese IP ranges, which he can use, in case he decides to give out this Ban. ;)

_________________
Join #softhistory @ RoL IRC, a nice community for true enthusiasts!
Anime channel: #doki-doki @ RoL IRC, Mibbit, KiwiIRC.
The 86Box help channel is #softhistory now!

Check out our SoftHistory Forum for quality discussion about older software.


Top  Profile  WWW  ICQ  YIM
 PostPost subject:        Posted: Sat Sep 13, 2008 2:04 pm 
FTP Access
User avatar
Offline

Joined
Wed Dec 27, 2006 5:44 pm

Posts
394

Location
Canada

Favourite OS
Windows
OBrasilo wrote:
OK, let me just say, that I know, who the hacker is, and it's the same [censored] moron, who already hacked the MSN accounts of marktuson, and Chicago, AND another friend of mine from another forum, AND impersonated KenOath TWICE on this forum, once, as KenOath_the_real, and once, as Ken0. He also hacked the e-mail address of a Japanese contact (Nakamura Hiroshi) of mine, TWICE, and all this, just because he believes, that I'm Nakamura's fake account.

Now, Nakamura already talked personally to this guy, TWICE, since they live relatively near each other, but it didn't help, so I contacted his ISP, but he just changed ISP, so it didn't help, either. So yeah, now, Nakamura decided to turn that moron to the police, since this seems to be the only way, that we can get rid of him.

I have also proposed to Andy to give a nation-wide Ban to Japan from BETAArchive, and I even gave him an exhaustive list of all the Japanese IP ranges, which he can use, in case he decides to give out this Ban. ;)


well i have to say banning a whole country is a little to much (i think) but on the other hand i dont think we have many Japs on board do we?

could be a good idea, but at the same time guys that have nothing to do with it may pay the price too...

at the end is up to you Andy

_________________
Image


Top  Profile  WWW
 PostPost subject:        Posted: Sat Sep 13, 2008 3:42 pm 
User avatar
Offline

Joined
Thu Jan 18, 2007 11:07 pm

Posts
422
I type in password sign like %^&#$%

_________________
I don`t know what i am looking :P
Image


Top  Profile
Display posts from previous:  Sort by  
Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 29 posts ]  Go to page 1, 2  Next




Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  

All views expressed in these forums are those of the author and do not necessarily represent the views of the BetaArchive site owner.

Powered by phpBB® Forum Software © phpBB Group

Copyright © 2006-2018

 

Sitemap | XML | RSS