Announcement

Collapse
No announcement yet.

*SIGH* Script Kiddies...

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • *SIGH* Script Kiddies...

    <RANT>
    Well I don't guess they were technically "script kiddies" but it does
    bring up the image that I'm thinking.


    My boss had to have me open an FTP site the other day so someone
    could upload a file. Well I made one, locked everything down above it
    but took the easy way out and left it open for anonymous uploads..

    Well, we forgot to close it for about a week. The other day I realized
    it was still open, so I closed it.

    Last night I was performing some maintenance on the server when I
    noticed the defrag log had some funny characters under the FTP root
    folder. So I opened it up and they had 3 folders, about 15 levels deep
    in each, with special characters, profanity, tags for who uploaded, etc.
    In the lowest level was about 1.82GB of pirated games !

    Well, I had already closed the FTP site and port, so that was taken care
    of. But the little bastards used special characters in all the folder names.
    So no delete from in windows. They thought it would be difficult in the
    command prompt as well (b/c I would need to know what control codes
    to use) Well, about 5 seconds went by and I said to myself, "This ain't
    my first rodeo", and I opened a command prompt. Then I typed:
    "rm FTP /S /Q"

    "Goodbye files, and **** you Script Kiddies !"


    Anyway
    </RANT>
    [H]4 Life
    My next generation Front End is right on schedule.
    It will be done sometime in the next generation.
    I'm a lesbian too.
    I am for hire!

  • #3
    those kids keep me in business!
    Debt as of 1/1/05: $34,354.48
    Debt as of July 4, 2007: $0.00 explanation
    I'M DEBT FREE!!
    I'm now a reasonably successful gunblogger.

    Comment


    • #4
      What you should have done is left the account open and disabled downloading. I used to run an FTP server off my desktop and occationaly had people like this. I just disabled downloading from anon and let them waste their time. I also added a message to the MOTD telling them they had been pwnd.

      I bet they were ****ed when they realised their buddies couldnt get anything they uploaded.
      A digital mind lost in an analog world.

      Learn to ask smart questions!
      http://www.catb.org/~esr/faqs/smart-questions.html

      My car PC: The Lost Cause!

      Comment


      • #5
        Originally posted by fluffy2097
        What you should have done is left the account open and disabled downloading. I used to run an FTP server off my desktop and occationaly had people like this. I just disabled downloading from anon and let them waste their time. I also added a message to the MOTD telling them they had been pwnd.

        I bet they were ****ed when they realised their buddies couldnt get anything they uploaded.

        I had already disabled it a week before I noticed, and I needed the space anyway.
        [H]4 Life
        My next generation Front End is right on schedule.
        It will be done sometime in the next generation.
        I'm a lesbian too.
        I am for hire!

        Comment


        • #6
          I feel your pain. I had the same thing happen to me! I ran an anonymous FTP basically to just get files to and from work, I had only a semi static IP that changed once in a while, so I didn't think it would be a problem, then one day after a couple months of having it up. I notice my connection is real slow so I check my ftp server and somebody started a warez site on my computer! I got like 30,000 hits over 2 days, I'm assuming mostly from hammering. It wouldn't be bad cept the only thing they uploaded was half finished anime crap. I did a little reseach, put my IP address in google and it comes up on a warez forum.

          Damn Script Kiddies!

          Originally posted by frodobaggins
          <RANT>
          Well I don't guess they were technically "script kiddies" but it does
          bring up the image that I'm thinking.


          My boss had to have me open an FTP site the other day so someone
          could upload a file. Well I made one, locked everything down above it
          but took the easy way out and left it open for anonymous uploads..

          Well, we forgot to close it for about a week. The other day I realized
          it was still open, so I closed it.

          Last night I was performing some maintenance on the server when I
          noticed the defrag log had some funny characters under the FTP root
          folder. So I opened it up and they had 3 folders, about 15 levels deep
          in each, with special characters, profanity, tags for who uploaded, etc.
          In the lowest level was about 1.82GB of pirated games !

          Well, I had already closed the FTP site and port, so that was taken care
          of. But the little bastards used special characters in all the folder names.
          So no delete from in windows. They thought it would be difficult in the
          command prompt as well (b/c I would need to know what control codes
          to use) Well, about 5 seconds went by and I said to myself, "This ain't
          my first rodeo", and I opened a command prompt. Then I typed:
          "rm FTP /S /Q"

          "Goodbye files, and **** you Script Kiddies !"


          Anyway
          </RANT>
          StreetDeck.com Developer (I am Chuck)
          Get StreetDeck at http://www.streetdeck.com
          The Official StreetDeck Forums have moved, please visit us at http://www.streetdeck.com/forum for official support for Streetdeck.

          Comment


          • #7
            what game(s) did they leave thats the big question
            '98 Explorer Sport
            http://mp3car.zcentric.com (down atm)
            AMD 800mhz 192megs RAM 60gig hard drive 9 inch widescreen VGA
            80% done

            Comment


            • #8
              HaHa, sounds funny.
              Lots of corporations have this done to them, lots of .EDU's too. In my opinion the people who set up the account should know that running any internet service with no password is dying for attention. Also with weak passwords such as 'password' You don't know how many "bots" or "Viri" are scanning for this type of thing, I had just reformatted my computer and set my Internet up. I forgot that I was DMZ on the router and 20 minutes later I had been "hacked" by the WINNT weak password / no password. Just so happens that some one was running a bot that scans a range of IP's and auto hacks / installs an IRC XDCC Server bot. They did it quite well because they managed to put the .exe's in my C:\WINNT\Fonts folder so I couldn't see them in explorer. But good ole dos got them out.
              Just next time you do something, take the initiative to atleast halfway secure it.
              CarComputer Status: New Car & Broken (Motherboard Fried)
              Owen JH | My Linux Blog | The Tech Fellows

              Comment


              • #9
                Originally posted by hijinks21
                what game(s) did they leave thats the big question
                I can't remember, but there was a leaked copy of doom3.

                I deleted it all though.
                [H]4 Life
                My next generation Front End is right on schedule.
                It will be done sometime in the next generation.
                I'm a lesbian too.
                I am for hire!

                Comment


                • #10
                  Originally posted by frodobaggins
                  I can't remember, but there was a leaked copy of doom3.

                  I deleted it all though.
                  I know you didn't delete a leaked copy of Doom 3. Give it up.

                  Fabricator

                  Comment


                  • #11
                    I have an ftp at work and the people that run it always point it at the wrong directory and **** (all the time......) and today i loged on and it had half of ms windows longhorn beta (2nd have of dvd)
                    My Mazda 3s

                    My Mazda 3s on Car Domain

                    [||||||||||||||||||--] (90%)

                    Comment


                    • #12
                      as a security professional, I say it wasn't the kiddies at fault, it was you.
                      www.i-hacked.com Hardware hacking articles

                      Comment


                      • #13
                        just leave it open and see what you get
                        -- WireSix, Inc. --
                        MP3Car Lives Here!

                        Comment


                        • #14
                          Originally posted by Altimat
                          I know you didn't delete a leaked copy of Doom 3. Give it up.


                          I honestly did, I'll wait for release.
                          [H]4 Life
                          My next generation Front End is right on schedule.
                          It will be done sometime in the next generation.
                          I'm a lesbian too.
                          I am for hire!

                          Comment


                          • #15
                            Originally posted by hevnsnt
                            as a security professional, I say it wasn't the kiddies at fault, it was you.

                            Oh I know it was my fault. I just found it amusing and aggravating.
                            I had planned on closing it after an hour or so, I was just naive
                            enough to think that I would remember. Next time I'll completely
                            secure it to make sure.

                            It's kind of funny that they went through all the work of "Tagging" it.
                            I could understand if they truly hacked it, but I basically let them
                            upload
                            [H]4 Life
                            My next generation Front End is right on schedule.
                            It will be done sometime in the next generation.
                            I'm a lesbian too.
                            I am for hire!

                            Comment

                            Working...
                            X