26 Reply by Lanta

  • Lanta
  • Lanta
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

1) your server are not so secure... like I've demonstrated you, I can access and edit all databases of other site in the domain, if I want, without any problems...
2) Our CMS is a free CMS, maybe this hacker found and exploit because he can get sources. But we have the last version of the cms... so i think we couldn't do anything for pèrevent this attack.
3) Like torch said,
Since almost anyone could get a domain, i can easily imagine the so called 'hacker' requested and received one, then uploaded a php-shell or other malicious code.

So, that's all I have to say... I imagine that you have to remove our CMS from your subdomain... do you know other similar cms that do the same thing? XD (maybe free, tnx)
I know one, but i must test it.
But, I'll tell you... the hacker can hack in every moment all the domains because there is no security and databases are shared... and this time we've been luck he didn't touch databases...

Support Staff - ESL.eu Teeworlds Admin

27 Reply by Whitefire

  • Whitefire
  • Whitefire
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Maybe "disallow" php. If someone really needs the use of the php parser than he could do a request to you with a good reason. But actually I don't know how hard it would be to  block "php" to subdomains... never tried that^^

Anyway, I would like to get my subdomain alive, will continue work on it soon smile Would be really great!

Hope things are getting better for you wink

Avatar by Crises
Tee-Project - Website coming soon... [http://project.tee-city.net]

28 Reply by Lanta

  • Lanta
  • Lanta
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

You can't block php, is the more stupid think ever heard for a site hosting service... no php cms... no forums... nothing...
and maybe we'll use asp XD

Support Staff - ESL.eu Teeworlds Admin

29 Reply by Whitefire

  • Whitefire
  • Whitefire
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

mrlantastic wrote:

You can't block php, is the more stupid think ever heard for a site hosting service... no php cms... no forums... nothing...
and maybe we'll use asp XD

Well yes, no forum, no cms, but "nothing" would be wrong, normal html sites would still work. I said that he would control then who gets access to the php parser for his use with a good reason. But at the end then this person could hack again... ;X Anyway I don't think that it is possible to say which subdomain gets access to the parser... so forgot about that^^

why you think on asp? xD

Avatar by Crises
Tee-Project - Website coming soon... [http://project.tee-city.net]

30 Reply by Magix

  • Magix
  • Magix
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

You misunderstand me. The hacker doesn't need to actually "hack" into the subdomain. Do you store the passwords to your FTP in the program, and do you store admin passwords in the cache. A silent virus could glean this information. Also, don't set file permissions above 664 unless necessary. If you have a single file that is 777, the hacker could find out and edit it and take down the website. Really there are no security holes on the main domain, but the subdomains need to be more secure.

<? php echo "Magix"; ?>
------------------------------------------------
Tee-City <--------- The one Teeworlds site to rule them all!

31 Reply by Kottizen

  • Kottizen
  • Kottizen
  • Administrator
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Magix wrote:

You misunderstand me. The hacker doesn't need to actually "hack" into the subdomain. Do you store the passwords to your FTP in the program, and do you store admin passwords in the cache. A silent virus could glean this information. Also, don't set file permissions above 664 unless necessary. If you have a single file that is 777, the hacker could find out and edit it and take down the website. Really there are no security holes on the main domain, but the subdomains need to be more secure.

So it's not your fault, it's everyone else's fault. Sure.

32 Reply by Lanta (edited by Lanta 2009-08-30 17:35:22)

  • Lanta
  • Lanta
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Magix wrote:

The hacker doesn't need to actually "hack" into the subdomain. Do you store the passwords to your FTP in the program, and do you store admin passwords in the cache. A silent virus could glean this information.

My FTP access password is not stored... XD and my opensuse pc is clean smile
Funwar password are stored only in a post-it on my monitor XD And only I have the password.
So i need he founded an exploit in the cms... is the only 1 possibility. Like he've done for the tee-db

Magix wrote:

Also, don't set file permissions above 664 unless necessary. If you have a single file that is 777, the hacker could find out and edit it and take down the website.

done.

Magix wrote:

Really there are no security holes on the main domain, but the subdomains need to be more secure.

hmm

Support Staff - ESL.eu Teeworlds Admin

33 Reply by Magix

  • Magix
  • Magix
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Kottizen wrote:

So it's not your fault, it's  everyone else's fault, sure.

Lolwut? I never said that. It is entirely my fault for not putting more security on the subdomains.

Lanta: It is too late to change the script that you use for it. Also, please send me a copy of the template you used. I am restoring Funwar right now.

<? php echo "Magix"; ?>
------------------------------------------------
Tee-City <--------- The one Teeworlds site to rule them all!

34 Reply by Kottizen

  • Kottizen
  • Kottizen
  • Administrator
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Magix wrote:
Kottizen wrote:

So it's not your fault, it's everyone else's fault, sure.

Lolwut? I never said that. It is entirely my fault for not putting more security on the subdomains.

Lanta: It is too late to change the script that you use for it. Also, please send me a copy of the template you used. I am restoring Funwar right now.

Regardless of what one does on his subdomain it should not affect other subdomains.

35 Reply by Magix

  • Magix
  • Magix
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Exactly. However, Tee-city.net was not originally bought with the intention of "re-selling", meaning that my host provided no such security measures. I am working on that right now.

<? php echo "Magix"; ?>
------------------------------------------------
Tee-City <--------- The one Teeworlds site to rule them all!

36 Reply by GSGDani

  • GSGDani
  • GSGDani
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

mrlantastic wrote:

Funwar password are stored only in a post-it on my monitor XD And only I have the password.
So i need he founded an exploit in the cms... is the only 1 possibility. Like he've done for the tee-db

the whole teedb was down atm of the hack attack... because i reinstalled the whole server system around 10 hours before the attack .. and after that .. i dindt get time to reupload the backups... so it wasnt an exploit ....

Remember me? Questions? Just leave a message, I will respond within 72 hrs!

37 Reply by Captain AMN

  • Captain AMN
  • Captain AMN
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Dani wrote:

the whole teedb was down atm of the hack attack... because i reinstalled the whole server system around 10 hours before the attack .. and after that .. i dindt get time to reupload the backups... so it wasnt an exploit ....

I'm sorry TeeDB got hacked too sad

*** JUSTICE ALWAYS WINS ***

38 Reply by Lanta

  • Lanta
  • Lanta
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Captain AMN wrote:
Dani wrote:

the whole teedb was down atm of the hack attack... because i reinstalled the whole server system around 10 hours before the attack .. and after that .. i dindt get time to reupload the backups... so it wasnt an exploit ....

I'm sorry TeeDB got hacked too sad

mee too... and if it wasn't an exploit... this is not a nice news...
the nice news is that FunWar is again up and now it's protected more. We can continue ^^
We need only to clean the forum froms some spam XD

Support Staff - ESL.eu Teeworlds Admin

39 Reply by GSGDani

  • GSGDani
  • GSGDani
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Captain AMN wrote:
Dani wrote:

the whole teedb was down atm of the hack attack... because i reinstalled the whole server system around 10 hours before the attack .. and after that .. i dindt get time to reupload the backups... so it wasnt an exploit ....

I'm sorry TeeDB got hacked too sad

hmm .. how?
pls explain me ...

Remember me? Questions? Just leave a message, I will respond within 72 hrs!

40 Reply by Lanta

  • Lanta
  • Lanta
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

Dani wrote:
Captain AMN wrote:
Dani wrote:

the whole teedb was down atm of the hack attack... because i reinstalled the whole server system around 10 hours before the attack .. and after that .. i dindt get time to reupload the backups... so it wasnt an exploit ....

I'm sorry TeeDB got hacked too sad

hmm .. how?
pls explain me ...

so... your site was empty during the attack? O_O
he only upload a file to your blank ftp space?

Support Staff - ESL.eu Teeworlds Admin

41 Reply by GSGDani

  • GSGDani
  • GSGDani
  • Member
  • Offline

Re: [WEBSITE] tee-city.net = NOT dead [Subdomain Cleanup!!]

there was no ftp for teedb.info .. just the roots ftp account... -> but this was protected by a new given password (8 - 10 hrs old) ... hmm however... our server will be back soon .. but: if this happes again... our root will be off forever and all data(atm on teedb .. and later on the new db..)will be lost

Remember me? Questions? Just leave a message, I will respond within 72 hrs!