Dieses Thema ist geschlossen
Emergency-planet.com is currently under attack
As some of you might have noticed, the site was down for some hours some hours earlier today. Die is due tot he fact that some people or a group is/are currently trying to get brute-force access to our server, I was able to restore all of the crashed databases and was able to reset the server successfully after 3 retries.
I currently know that damage to our OS has been done since we are not able to successfully perform any updates to our system at current time.
The bad thing is, I have no fix for this yet. The good thing is, I know who is behind it and was able to contact his/her provider. Ia m currently awaiting feedback from that provider.
Kind regards,
Stan
Under attack
Started by
Stan
, Okt 23 2010 11:58
29 replies to this topic
#1
Stan
-
- Webmaster
-
- 6.911 Beiträge:
Webmaster
- Gender:Male
- Location:Vaals - Nederland
Geschrieben 23 Oktober 2010 - 11:58
Webmaster & Technical Support
#2
rafnancy
-
- Members
-
- 39 Beiträge:
Lieutenant
Geschrieben 24 Oktober 2010 - 01:35
Can You tell us who did it and why ?
#3
SleepyLizard
-
- Members
-
- 205 Beiträge:
Captain
- Gender:Male
- Location:The eye of the storm
Geschrieben 24 Oktober 2010 - 01:36
Are our accounts and information safe?
"The internet makes it possible to obtain any information known to man within seconds but we'd rather just update our facebooks."
#4
Guest_Francis_*
Guest_Francis_*
-
- Guests
-
Geschrieben 24 Oktober 2010 - 02:42
Can You tell us who did it and why ?
No. That's a private information.
Are our accounts and information safe?
Everything is safe, except email addresses and usernames, if they wanted to check them. But I doubt they downloaded a copy of the database only to see the email addresses. Don't worry.
#5
Grim_Wizard
-
- Members
-
- 636 Beiträge:
Battalion Chief
- Gender:Male
- Location:Tidewater Virginia
- Interests:The one and only spooky firefighter
Geschrieben 24 Oktober 2010 - 05:04
Stan I may have had something to do with this (Not in a bad way of course) but... I'll check but a long time ago like a year ago, I got a PM by a deleted user, at first they were "Help me help me" and then it turned to flame. Appearently someone used my username (GerardTIII) and went into a hack group and pissed them off really bad, gimmie a sec I'll check my disposable email and the forums where they used to be.
But a brute force attack vs. a server was their calling card or some crap.
EDIT: I can see no clear evidence but it's higly likely. Or just someone else.
But a brute force attack vs. a server was their calling card or some crap.
EDIT: I can see no clear evidence but it's higly likely. Or just someone else.
I thought what I'd do was pretend I was one of those deaf-mutes.
#6
FDNY Squad 55
-
- Members
-
- 460 Beiträge:
Senior Captain
- Gender:Male
Geschrieben 24 Oktober 2010 - 07:42
Sorry to hear it... for several hours when trying to log had a bad feeling 
Signature removed by staff for not complying with the signature rules.
More on signature rules can be found here.
Feel free to remove this message once your signature is compliant!
More on signature rules can be found here.
Feel free to remove this message once your signature is compliant!
#7
Stan
-
- Webmaster
-
- 6.911 Beiträge:
Webmaster
- Gender:Male
- Location:Vaals - Nederland
Geschrieben 24 Oktober 2010 - 08:08
Since they don't have and will not be able to get access to the server they do not get anything that's on the server. Simple as that 
Passwords are not weak at all here Beside that the only thing they try to brute force at this time is my SSH account but well I rised security and disabled all SSH accounts now
This means all information is safe. All they can do is overload the server.
Passwords are not weak at all here Beside that the only thing they try to brute force at this time is my SSH account but well I rised security and disabled all SSH accounts now This means all information is safe. All they can do is overload the server.
Webmaster & Technical Support
#8
SleepyLizard
-
- Members
-
- 205 Beiträge:
Captain
- Gender:Male
- Location:The eye of the storm
Geschrieben 24 Oktober 2010 - 02:38
Good to hear! Thanks for the update!
"The internet makes it possible to obtain any information known to man within seconds but we'd rather just update our facebooks."
#9
Grim_Wizard
-
- Members
-
- 636 Beiträge:
Battalion Chief
- Gender:Male
- Location:Tidewater Virginia
- Interests:The one and only spooky firefighter
Geschrieben 24 Oktober 2010 - 02:50
Our password hashes are salted right?
I thought what I'd do was pretend I was one of those deaf-mutes.
#10
Guest_Francis_*
Guest_Francis_*
-
- Guests
-
Geschrieben 24 Oktober 2010 - 03:05
Our password hashes are salted right?
IPB's password hash:
$salt = md5("some string here" . strtolower($username . $password) . md5(rand(1000000, 9999999));
$passwordHash = md5(strtolower($username . $password) . "(some string here, depends)" . $salt));
I may have missed something though. I haven't checked in years.
#11
Stan
-
- Webmaster
-
- 6.911 Beiträge:
Webmaster
- Gender:Male
- Location:Vaals - Nederland
Geschrieben 24 Oktober 2010 - 10:41
Our password hashes are salted right?
I remember having answered you that question already some time ago but anyways: Their goal is absolutely not to get your account information, which is of zero interest for anyone.
Webmaster & Technical Support
#12
Multibullets
-
- Members
-
- 206 Beiträge:
Captain
- Gender:Male
- Location:Nijmegen
Geschrieben 25 Oktober 2010 - 11:38
Why would they want to do that anyways? Do you have any idea what their goal is?
Maybe it's 4Chan demanding Hoppah to make a new LA mod
Maybe it's 4Chan demanding Hoppah to make a new LA mod
#13
Voodoo_Operator
-
- Pastamaniac
-
- 617 Beiträge:
Chief Insanity Officer
- Gender:Male
- Location:That place where they invented poutine
-
Interests:Bacon
Raw Meat
Gold paint
Geschrieben 25 Oktober 2010 - 03:19
Maybe it's 4Chan demanding Hoppah to make a new LA mod
Unless the LA mod was made of underage porn, it's unlikely.
"I like to picture Jesus in a tuxedo T-Shirt because it says I want to be formal, but I'm here to party."
-Cal Naughton Jr.
-Cal Naughton Jr.
#14
Guest_Francis_*
Guest_Francis_*
-
- Guests
-
Geschrieben 25 Oktober 2010 - 03:44
Congratz, you made me lol in my classroom.Unless the LA mod was made of underage porn, it's unlikely.
#15
Grim_Wizard
-
- Members
-
- 636 Beiträge:
Battalion Chief
- Gender:Male
- Location:Tidewater Virginia
- Interests:The one and only spooky firefighter
Geschrieben 25 Oktober 2010 - 07:47
Congratz, you made me lol in my classroom.
And myself just now, BTW Voodoo, you owe me a new computer monitor, mine is now covered in chocolate milk.
Also @stan, yeah I remember asking, I just didn't feel like looking back or doing a wire shark to find out.
I thought what I'd do was pretend I was one of those deaf-mutes.
#16
USAFFireFighter
-
- Members
-
- 22 Beiträge:
Firefighter
- Gender:Male
- Location:Fort Collins, Colorado
Geschrieben 26 Oktober 2010 - 06:59
I have also received a few emails saying help me and so on..... by deleted members and or guests
SrA EMMONS 153 MSF/CES-CEF UNITED STATES AIR FORCE
Fire Fighter 2, HazMat Tech, ARFF, D/O Structural Pumper, D/O Mobile Water Supply, D/O ARFF, EMT-B,
Fire Fighter 2, HazMat Tech, ARFF, D/O Structural Pumper, D/O Mobile Water Supply, D/O ARFF, EMT-B,
#17
pyrofreak
-
- Members
-
- 348 Beiträge:
Senior Captain
- Gender:Male
Geschrieben 27 Oktober 2010 - 02:42
It seems more and more common anymore. Just last week Sony said they were delaying games so they could patch the game and prevent piracy. In the same week I noticed two or three sites I visit normally were attacked directly, or had their databases attacked. Ah ... the world we live in.
#18
Newfoundking
-
- Moderator
-
- 7.253 Beiträge:
The Real Slim Shady
- Gender:Male
- Location:Newfoundland
Geschrieben 27 Oktober 2010 - 03:25
some people think by attacking websites, they will get back at publishers for delaying games, or they'll reach the system and get to the game to play it for free and before hand just like in the movies...
They're stupid. Anyone that tries to hack a site for a reason like that is plain out stupid.
They're stupid. Anyone that tries to hack a site for a reason like that is plain out stupid.
Wanna play multiplayer without any of the commitment? Emergency Planet hosts casual multiplayer to all its members! Contact me for more information
Executive Director: EMP Gulag
Do you have a warning that you want to go away, or are you facing another punishment you don't want? Contact me for the NEW alternative!
#19
Xplorer4x4
-
- Members
-
- 4.972 Beiträge:
Assistant Chief
- Gender:Male
- Location:Evansville,IN
Geschrieben 02 November 2010 - 02:08
They might. They can sell that list to companies to harvest for spam bots. Seen it done before.But I doubt they downloaded a copy of the database only to see the email addresses. Don't worry.
Please DO NOT PM ME for help. Ask your questions on the forum to help others with the same issue.
Enhance your LA Mod Freeplay Experience with LA Mod 2.0 4x4 Submod.
Los Angeles Mod v2.0 4x4 W00ds Map v1 - BETA RELEASE
If you appreciate my work, then please donate. Every little bit helps!
#20
matte31
-
- Members
-
- 714 Beiträge:
Battalion Chief
- Location:Sweden
Geschrieben 03 November 2010 - 02:18
So you mean that "the hacker" got everyones email? They can be used for spam mail etc.Everything is safe, except email addresses and usernames, if they wanted to check them. But I doubt they downloaded a copy of the database only to see the email addresses. Don't worry.
Member since 12 Sep 2009.
