Pirates hacked

Author	Message
Wormholio Captain Send message Joined: 6 Jun 04 United States Away Credit: 4,009.8 RAC: 0.00 Joined: Jun 6, 2004 Verified: Mar 13, 2008 Dubloons: 3 Pieces of Eight: 10 Punishment: Aztec curse	Message 1928 - Posted: 14 Jun 2005 \| 15:48:05 UTC - in response to Message 1925.
> > Since the machine has been upgraded, various systems need to be tweaked and > prodded, Including the system clock, which has now been properly set. ____________ -- Eric Myers "Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats
ID: 1928 \| Rating: 0 \| rate: / Reply Quote

Ageless Chief Petty Officer Volunteer tester Send message Joined: 20 Jul 04 Netherlands Machinae Supremacy Credit: 1,295.9 RAC: 0.00 Joined: Jul 20, 2004 Verified: Jul 9, 2011 Dubloons: 3 Pieces of Eight: 7 Punishment: Cat o' Nine Tails	Message 1930 - Posted: 14 Jun 2005 \| 17:13:41 UTC
At least it's back. You had me worried there for a bit, since everything was gone. I hope you managed to get a track onto whoever did it and will tell him that Pirates@Home isn't what he thought it was? ;) ____________ Jord. The BOINC FAQ Service.
ID: 1930 \| Rating: 0 \| rate: / Reply Quote

Wormholio Captain Send message Joined: 6 Jun 04 United States Away Credit: 4,009.8 RAC: 0.00 Joined: Jun 6, 2004 Verified: Mar 13, 2008 Dubloons: 3 Pieces of Eight: 10 Punishment: Aztec curse	Message 1925 - Posted: 14 Jun 2005 \| 18:24:02 UTC Last modified: 14 Jun 2005 \| 15:40:00 UTC
The Pirates@Home server was hacked on Sunday morning, June 12th, at 9:41AM EDT. It appears that the initial intrusion was from an automated scan, followed up by someone getting into the system and installing something to scan other systems. This was noticed almost immediately by network security and the port was blocked. I spent yesterday morning going through the machine to verify that no user data files were affected (they were not) and finding all the root-kit and scanner software they installed. I now have quite an impressive collection of Linux exploits, if I ever decide to go over to the dark side. We had been wanting to upgrade the operating system anyway, and since you should always do a fresh install after an intrusion we took the opportunity to upgrade to Fedora Core 3. (I should mention that the initial intrusion was not due to any outdated software on the server, though we don't know how they got from a user account to root.) Since the machine has been upgraded, various systems need to be tweaked and prodded, but hopefully we will be back to trying out the new starboard app soon. ____________ -- Eric Myers "Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats
ID: 1925 \| Rating: 0 \| rate: / Reply Quote

NeoGen Send message Joined: 18 Oct 04 Portugal AMD Users Credit: 9,146.3 RAC: 0.00 Joined: Oct 18, 2004 Verified: Sep 26, 2009 Dubloons: 3 Pieces of Eight: 2 Punishment: Canon Fodder	Message 1932 - Posted: 14 Jun 2005 \| 21:11:55 UTC - in response to Message 1925.
> I now have quite an impressive collection > of Linux exploits, if I ever decide to go over to the dark side. Don't do it! We have to uphold the honor and good name of the Pirates, and not go down to the level of them pirate wannabe's that attack their foes from behind a computer... heck, I bet most of them haven't even been on board of a ship! Let alone sail to the seven seas in search for treasure and adventure like us! :P ____________ You can join our Team too! Click the image above and visit our website!
ID: 1932 \| Rating: 0 \| rate: / Reply Quote

one eye Send message Joined: 19 Sep 04 Switzerland Credit: 40,405.3 RAC: 0.00 Joined: Sep 19, 2004 Verified: NEVER Punishment: Walk Plank	Message 1937 - Posted: 15 Jun 2005 \| 0:13:38 UTC - in response to Message 1932.
It's a shame! thankyou Captn, to keep the wind in the projects sails +++ What could make sad, even with a protection behind the hosting (*nix-)server, the intrusion could happen. The only way to have security nearly 100% is to unplug the net access, but this would be bad for all users... It's a luck, no more disadvantages are been installed or "sensible" datas have been stolen All the best for further migration and hoping there will be no more unconfortable situations:(
ID: 1937 \| Rating: 0 \| rate: / Reply Quote

Ageless Chief Petty Officer Volunteer tester Send message Joined: 20 Jul 04 Netherlands Machinae Supremacy Credit: 1,295.9 RAC: 0.00 Joined: Jul 20, 2004 Verified: Jul 9, 2011 Dubloons: 3 Pieces of Eight: 7 Punishment: Cat o' Nine Tails	Message 1939 - Posted: 15 Jun 2005 \| 1:25:38 UTC
Seeing where my original post in this thread is, it almost looks like I did it. ;) I didn't. ____________ Jord. The BOINC FAQ Service.
ID: 1939 \| Rating: 0 \| rate: / Reply Quote

Neil Woodvine Send message Joined: 14 Mar 05 United Kingdom BOINC Synergy Credit: 2,185.6 RAC: 0.00 Joined: Mar 14, 2005 Verified: NEVER Dubloons: 1 Punishment: Keel Haul	Message 1952 - Posted: 16 Jun 2005 \| 7:58:39 UTC - in response to Message 1939.
Just incase you didn't know , the xml stats haven't been updated since you were hacked on the 12th =/ ____________
ID: 1952 \| Rating: 0 \| rate: / Reply Quote

Rusty Chief Petty Officer Boatswain Send message Joined: 29 Jun 04 United States Away Credit: 1,911.4 RAC: 0.00 Joined: Jun 29, 2004 Verified: NEVER Dubloons: 1 Pieces of Eight: 3 Punishment: Mess Duty	Message 1954 - Posted: 16 Jun 2005 \| 11:31:22 UTC - in response to Message 1952.
> Just incase you didn't know , the xml stats haven't been updated since you > were hacked on the 12th =/ > Yup, and the Phantom has been User of the Day for much too long. :-) We lost the crontab that triggered all periodic tasks. It'll be back today. ____________ -- Rusty McGee Johnson
ID: 1954 \| Rating: 0 \| rate: / Reply Quote

Neil Woodvine Send message Joined: 14 Mar 05 United Kingdom BOINC Synergy Credit: 2,185.6 RAC: 0.00 Joined: Mar 14, 2005 Verified: NEVER Dubloons: 1 Punishment: Keel Haul	Message 1957 - Posted: 16 Jun 2005 \| 13:08:34 UTC - in response to Message 1954. Last modified: 16 Jun 2005 \| 13:08:48 UTC
Aye , all's ship shape now. Thanks ! =) ____________
ID: 1957 \| Rating: 0 \| rate: / Reply Quote

Neil Woodvine Send message Joined: 14 Mar 05 United Kingdom BOINC Synergy Credit: 2,185.6 RAC: 0.00 Joined: Mar 14, 2005 Verified: NEVER Dubloons: 1 Punishment: Keel Haul	Message 2081 - Posted: 21 Jun 2005 \| 14:05:10 UTC - in response to Message 1957.
Not wanting to look like one of those ahem credit orientated crunchers =) just an FYI that the stats haven't updated since the 16th ____________
ID: 2081 \| Rating: 0 \| rate: / Reply Quote

Wormholio Captain Send message Joined: 6 Jun 04 United States Away Credit: 4,009.8 RAC: 0.00 Joined: Jun 6, 2004 Verified: Mar 13, 2008 Dubloons: 3 Pieces of Eight: 10 Punishment: Aztec curse	Message 2135 - Posted: 23 Jun 2005 \| 12:47:40 UTC - in response to Message 2081.
> Not wanting to look like one of those ahem credit orientated crunchers =) > just an FYI that the stats haven't updated since the 16th It seems the automated task for doing this is failing, due to library problems. I'm able to run the task by hand and will do so when I can. ____________ -- Eric Myers "Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats
ID: 2135 \| Rating: 0 \| rate: / Reply Quote

Author

Message

Wormholio
Captain
Avatar

Send message
Joined: 6 Jun 04

United States
Away
Credit: 4,009.8
RAC: 0.00

Joined: Jun 6, 2004
Verified: Mar 13, 2008
Dubloons: 3
Pieces of Eight: 10
Punishment: Aztec curse

>
> Since the machine has been upgraded, various systems need to be tweaked and
> prodded,

Including the system clock, which has now been properly set.

____________
-- Eric Myers

"Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats

ID: 1928 | Rating: 0 | rate:

Reply Quote

Ageless
Chief Petty Officer
Volunteer tester
Avatar

Send message
Joined: 20 Jul 04

Netherlands
Machinae Supremacy
Credit: 1,295.9
RAC: 0.00

Joined: Jul 20, 2004
Verified: Jul 9, 2011
Dubloons: 3
Pieces of Eight: 7
Punishment: Cat o' Nine Tails

At least it's back. You had me worried there for a bit, since everything was gone.
I hope you managed to get a track onto whoever did it and will tell him that Pirates@Home isn't what he thought it was? ;)

____________
Jord.

The BOINC FAQ Service.

ID: 1930 | Rating: 0 | rate:

Reply Quote

Wormholio
Captain
Avatar

Send message
Joined: 6 Jun 04

United States
Away
Credit: 4,009.8
RAC: 0.00

Joined: Jun 6, 2004
Verified: Mar 13, 2008
Dubloons: 3
Pieces of Eight: 10
Punishment: Aztec curse

The Pirates@Home server was hacked on Sunday morning, June 12th, at 9:41AM EDT.

It appears that the initial intrusion was from an automated scan, followed up by someone getting into the system and installing something to scan other systems. This was noticed almost immediately by network security and the port was blocked.

I spent yesterday morning going through the machine to verify that no user data files were affected (they were not) and finding all the root-kit and scanner software they installed. I now have quite an impressive collection of Linux exploits, if I ever decide to go over to the dark side.

We had been wanting to upgrade the operating system anyway, and since you should always do a fresh install after an intrusion we took the opportunity to upgrade to Fedora Core 3. (I should mention that the initial intrusion was not due to any outdated software on the server, though we don't know how they got from a user account to root.)

Since the machine has been upgraded, various systems need to be tweaked and prodded, but hopefully we will be back to trying out the new starboard app soon.

____________
-- Eric Myers

"Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats

ID: 1925 | Rating: 0 | rate:

Reply Quote

NeoGen
Send message
Joined: 18 Oct 04

Portugal
AMD Users
Credit: 9,146.3
RAC: 0.00

Joined: Oct 18, 2004
Verified: Sep 26, 2009
Dubloons: 3
Pieces of Eight: 2
Punishment: Canon Fodder

> I now have quite an impressive collection
> of Linux exploits, if I ever decide to go over to the dark side.

Don't do it!
We have to uphold the honor and good name of the Pirates, and not go down to the level of them pirate wannabe's that attack their foes from behind a computer... heck, I bet most of them haven't even been on board of a ship! Let alone sail to the seven seas in search for treasure and adventure like us! :P
____________

You can join our Team too!
Click the image above and visit our website!

ID: 1932 | Rating: 0 | rate:

Reply Quote

one eye
Send message
Joined: 19 Sep 04

Switzerland
Credit: 40,405.3
RAC: 0.00

Joined: Sep 19, 2004
Verified: NEVER
Punishment: Walk Plank

It's a shame!

thankyou Captn,

to keep the wind in the projects sails +++

What could make sad, even with a protection behind the hosting (*nix-)server,

the intrusion could happen.

The only way to have security nearly 100% is to unplug the net access, but
this would be bad for all users...

It's a luck, no more disadvantages are been installed or "sensible" datas have been stolen

All the best for further migration and hoping there will be no more unconfortable situations:(

ID: 1937 | Rating: 0 | rate:

Reply Quote

Ageless
Chief Petty Officer
Volunteer tester
Avatar

Send message
Joined: 20 Jul 04

Netherlands
Machinae Supremacy
Credit: 1,295.9
RAC: 0.00

Joined: Jul 20, 2004
Verified: Jul 9, 2011
Dubloons: 3
Pieces of Eight: 7
Punishment: Cat o' Nine Tails

Seeing where my original post in this thread is, it almost looks like I did it. ;)

I didn't.
____________
Jord.

The BOINC FAQ Service.

ID: 1939 | Rating: 0 | rate:

Reply Quote

Neil Woodvine
Avatar

Send message
Joined: 14 Mar 05

United Kingdom
BOINC Synergy
Credit: 2,185.6
RAC: 0.00

Joined: Mar 14, 2005
Verified: NEVER
Dubloons: 1
Punishment: Keel Haul

Just incase you didn't know , the xml stats haven't been updated since you were hacked on the 12th =/
____________

ID: 1952 | Rating: 0 | rate:

Reply Quote

Rusty
Chief Petty Officer
Boatswain
Avatar

Send message
Joined: 29 Jun 04

United States
Away
Credit: 1,911.4
RAC: 0.00

Joined: Jun 29, 2004
Verified: NEVER
Dubloons: 1
Pieces of Eight: 3
Punishment: Mess Duty

> Just incase you didn't know , the xml stats haven't been updated since you
> were hacked on the 12th =/
>

Yup, and the Phantom has been User of the Day for much too long. :-)

We lost the crontab that triggered all periodic tasks. It'll be back today.

____________
-- Rusty McGee Johnson

ID: 1954 | Rating: 0 | rate:

Reply Quote

Neil Woodvine
Avatar

Send message
Joined: 14 Mar 05

United Kingdom
BOINC Synergy
Credit: 2,185.6
RAC: 0.00

Joined: Mar 14, 2005
Verified: NEVER
Dubloons: 1
Punishment: Keel Haul

Aye , all's ship shape now. Thanks ! =)

____________

ID: 1957 | Rating: 0 | rate:

Reply Quote

Neil Woodvine
Avatar

Send message
Joined: 14 Mar 05

United Kingdom
BOINC Synergy
Credit: 2,185.6
RAC: 0.00

Joined: Mar 14, 2005
Verified: NEVER
Dubloons: 1
Punishment: Keel Haul

Not wanting to look like one of those *ahem* credit orientated crunchers =) just an FYI that the stats haven't updated since the 16th
____________

ID: 2081 | Rating: 0 | rate:

Reply Quote

Wormholio
Captain
Avatar

Send message
Joined: 6 Jun 04

United States
Away
Credit: 4,009.8
RAC: 0.00

Joined: Jun 6, 2004
Verified: Mar 13, 2008
Dubloons: 3
Pieces of Eight: 10
Punishment: Aztec curse

> Not wanting to look like one of those *ahem* credit orientated crunchers =)
> just an FYI that the stats haven't updated since the 16th

It seems the automated task for doing this is failing, due to library problems. I'm able to run the task by hand and will do so when I can.

____________
-- Eric Myers

"Education is not the filling of a pail, but the lighting of a fire." -- William Butler Yeats

ID: 2135 | Rating: 0 | rate:

Reply Quote

Post to thread