Hacking of web sites

[master rod]

Hi all just tried to go to high heel.co.uk forum its coming up Hacked by some idiot call NAONAK he thinks he's clever ! i think if he's caught his fingers should be removed, its clowns like this that ruins the whole web concept.

[Dawn HH]

Mastersunrod59:-) I quite agree with you on that point. A hacker sure caused us all a lot of grief when he hacked the HH Place Forum. We had no probem until we were hacked which caused us to have to change our provider and we are still occasionally having problems because of having to do that. Welcome to the HH Place Forum. Cheers--- Dawn HH

[sendra45]

Hi all just tried to go to high heel.co.uk forum its coming up Hacked by some idiot call NAONAK he thinks he's clever ! i think if he's caught his fingers should be removed, its clowns like this that ruins the whole web concept.

what is the correct URL for highheel.co.uk?

[Tom-NL]

Nigel,

It appears he is talking about

http://www.women-in-high-heels.co.uk/index.php

(which forum showed some signs of being hacked before, judging by the links inside the text description for the "Introductions" forum)(and still shows them at the moment I write this)

[Rockpup]

In the early 90's I did some bad things with computers.. although I did follow the stated hacker ethic of the time "look, but don't harm". Hacking used to be about learning about new computer systems, and keeping information channels open. The only calling card you might leave would be a low level system account with account ID zero (unix).. people would pride themselves with having more access to a system then the admins, but would not shut the system down. When people started doing bad things quite a few of the top level people started computer security companys that patched up the holes they had discovered. Although, with my experience I'd guess a few caused problems so they could charge to fix them.. not that I'd suspect an anti-virus/anti-spyware company would do that. Anyways, back to my point.. things have changed. Too many people have produced programs that take the work out of system access.. scanners that go through the net and find open ports for software and make it too easy for the wrong people to do bad things. Cut off their fingers? Chances are the perpetrators are under 16.. possibly under the age of 10. What if it was your child who shut down a message board for a couple days? Computers will never be fully secure as long as people are involved. Jim

[asdf174]

Well said Jim. I was kinda like that too, only I never did any hacking (I'm moe in the whole moding community) but I did support those who did and for the reasons that you stated. Keeping information channels open, learning about new systems even kinda saw it as a form of protest. And now adays its jsut something that people do to be really nothing more then pest, kids just trying to make someone upset. And like you said all the skill has been takeing out of it with the all of these programs that do the hacking for you. Kinda makes me wonder if any of them know any other OS outside of windows... oh well. What can you do? Just keep makeing those backups!!!

[Rockpup]

Hehehe.. yea, spending my time in "intro t computers" in college learning how to get through an IBM token ring network was fun.. I only got attention when people around me noticed I'd have a dos window open and alt-tab back to the B*llshit assignment we were supposed to be working on when the teacher walked near me. I'm sorry.. but even in 1996 learning about 8" floppy disks were a waste of time. I should have talked to that professor prior to starting that class and gotten permission to bypass it. "excuse me, sir? I think I can go past this class.. I have root on your unix box and control of your Rolm phone system" Not that I'd ever use a system as a hostage.. except maybe in highschool where I used my leverage as the only person who could keep the computer lab running smoothly to spend 3 periods a day doing no school work, except for digging up early fetish porn off of BBS's, using the principals fax line for long distance..and making sure anyone could play video games off the Novel server without logging in to it. Ahh... school.. what memories Jim

[BlondeBimbo]

Malicious hacking, or virus, or other on-line attack really annoys me, the damage can be huge and of course makes the whole idea of the web unacceptable. I think the courts take too small a view on this, anyone caught producing malicious viruses etc. is very unlikely to get caught and even then they are pretty much let-off. We all like challenging ourselves, but can choose a good challenge or a malicious one. I think anyone producing malicious viruses, spyware, hacking etc should feel the full weight of the law, long & severe prison sentences, no access at all to computer systems – say 10 years or more – so technology changes have eliminated their knowledge, so in the future they are no use to security companies – no chance of obtaining profit or jobs following getting caught. In saying that I think that ISP, and webhosting services have a lot to answer for – they are letting people install these programs, and not preventing the spread of viruses, spam and other stuff. Surely it is better to prevent a virus at source rather than hoping millions of end (home) user have installed and updated their virus protection. Obviously there will always be holes in security to exploit, but whilst the penalty is so low, the pleasure and gains so high – it will be here to stay. BB

[Rockpup]

I've delt with webhosts who had no idea what they were doing. My first ISP offered shell accounts on their unix server, which was good considering my 286-10 couldnt do PPP net access, I had to go through a DOS based SLIP program and telnet/ftp my way around in a text based web. While this was a nice service, they had no idea how to run security.. they would regularly mistakenly change over ownership priv's for certain directories.. such as /u (user accounts) to actual users.. they fucked that up when they gave it to the one guy who would weekly delete any file his account created that was not in his directory.. ooops.. suddenly everyone's directories are wiped out except his. Was it this guys fault? No. Unfortunatly it's difficult to say where the reasonable line is for how far the isp/sys admins should go to keep things running. They have to have a life outside of computers as well. I do commend the admins here for doing more then their fair share to keep this board up and running for everyone. Jim

[BlondeBimbo]

I am not having a go at the mods, or the admins - it's more the commercial hosting services etc. I did a web site for my SCUBA club, we paid a lot for a hosting service, yet it was as open as the barn-door! I am not a computer expert at all (OK I run a lot of IT projects - but I am surrounded by people who know what they are doing) - but I could go right through their "security" - once I got on the server I could jump and go anywhere - only talking rlogin or ftp here - nothing fancy. Nothing I as a user could do about it. It's that sort of thing I am refering to here. BB