?
Please Watch this, How is this possible?
02/15/2009 15:37
sherwin9#46
02/15/2009 17:54
µ~Xero~µ#47
he wanted to say u got owned by lolmaster1^23
02/15/2009 18:11
yuko#48
This only shows how smart everyone here is
If you make a server take caution by making passwords.
If you have appserver se sure there is no way anyone can have access to the phpmyadmin files
You only need the phpmyadmin files into the same folder as your website to input sql in the registration text box. If you’re smart enough you would change the registration box and allow only 10 characters or whatever.
Like pete getting said that he got OWNED but himself is so dam smart that he left the phpmyadmin folder the place it was. He only renamed the first index
So if you do http:// 5.166.20.240/phpmyadmin
And it happens you to know how to bypass root system or if you even know how to get trough well then pete GOT OWNED himself
But nvm pete said he wasn’t dumb
Suggestions:
Work with a clean www folder
Use special passwords not like most ppl uses the name of their server
This is a safe pass (chudhEISJE384775HHEUShsuueb3884920274) you could add symbols in it if you want to, be sure to write your passwords down ON A PAPER not your pc.
Never use root to make a server but use special users that only have access on their database
Exp: coproj user for the coproj database.
------- sry bad English -----------
If you make a server take caution by making passwords.
If you have appserver se sure there is no way anyone can have access to the phpmyadmin files
You only need the phpmyadmin files into the same folder as your website to input sql in the registration text box. If you’re smart enough you would change the registration box and allow only 10 characters or whatever.
Like pete getting said that he got OWNED but himself is so dam smart that he left the phpmyadmin folder the place it was. He only renamed the first index
So if you do http:// 5.166.20.240/phpmyadmin
And it happens you to know how to bypass root system or if you even know how to get trough well then pete GOT OWNED himself
But nvm pete said he wasn’t dumb
Suggestions:
Work with a clean www folder
Use special passwords not like most ppl uses the name of their server
This is a safe pass (chudhEISJE384775HHEUShsuueb3884920274) you could add symbols in it if you want to, be sure to write your passwords down ON A PAPER not your pc.
Never use root to make a server but use special users that only have access on their database
Exp: coproj user for the coproj database.
------- sry bad English -----------
02/15/2009 19:26
PeTe Ninja#49
xD thx yuko ... well im unistalling appserv and deleting everything that deals with COpservers except C sharp and dreamweaver and a few other things... but now ill know to rename my files and super long pass
02/15/2009 19:47
hio77#50
the webserver .... and most probably his mysqlQuote:
xD thx yuko ... well im unistalling appserv and deleting everything that deals with COpservers except C sharp and dreamweaver and a few other things... but now ill know to rename my files and super long pass
02/15/2009 21:26
yuko#51
i never said you had to uninstall all of thatQuote:
let say it like this, it isn't the best way but it is my way
- install appserver use a root password that you write down on a paper "C273hdybbe3DHEY88S" <- quick maded
- make the needed configurations while being logged as root, be sure not to safe the password into the browsr.
--- in phpmyadmin make new user for the database the program get access on like coproj for the coproj database. give the coproj user the needed access "allow make update delete ... tables" don't allow to make users or anything else.
- go to the www folder. basic there has to be about 4 or more files
move those to a safe place. be sure not to delete them.
- insert in the www folder your stuff to make the registrations and so on.
for the registration page use the coproj user you created instad of root.
the same for the config folder for the server.
take a backup from the appserver folder
if you can add a script in the server that would copy all the files from appserver and make a backup each restart or each time that pleases you. that way you'll have a backup and even if someone got trough your system and made a big mess of it you can replace it all by one of your backups.
this way you are safe for a pritty long time.
little suggestion if you make a backup don't make it on the c:\ drive
have fun and good luck
07/19/2009 02:04
vietxhawty#52
Your website has an exploit for a mysql injection, you need to secure it. theres nothing wrong with ur mysql database, you just have an exploit from the website and since the website is connected to database the person was able to hack it. just change ur website and u should be good
Quote:
I was actually doing nothing. I went to sleep, I let my server online as usual, and somehow someone managed to acces my computer and change my whole database OMG and also my [Only registered and activated users can see links. Click Here To Register...] register pag.. I'll upload some screenies just wait. Ehm... all this while I was sleeping. My internet is protected... and as far is I know, my neighbours don't play conquer and can't code so... This is just sooo fucked up if I my say it. I'm sooo pissed of. Here are some screenies. Could someone please explain what happened or something? the guy calls himself ~Binary~,
It must be someone who knows something about php and about msql for sure.
.................................................. ....................
*edit - I just found out that he made loads of guards in the server, so that if you login, they all walk towards you and kill you ... :S This is really crazy, it must be a good coder, and someone that definately knows something about php...
*edit- Lol there are invisible NPC's that kill you everytime you pass them, There are blue phantoms waiting outside, they cannot be killed, they just kill you when you come outside Twin City. This is (...) up
07/19/2009 06:32
Arcotemple:)#53
lmao old thread i know
but you got f***ing pwnd!
-EDIT-
DOUBLE PWNED!
but you got f***ing pwnd!
-EDIT-
DOUBLE PWNED!
07/19/2009 14:53
~Yuki~#54
By me.
07/19/2009 15:01
tanelipe#55
#Closed