|
 |
|
03-22-2004, 01:13 AM
|
#1
|
|
I'm sorry, and you are....?
Join Date: Jan 2003
Location: Ruston, LA
Posts: 8,846
|
*SIGH* Script Kiddies...
<RANT>
Well I don't guess they were technically "script kiddies" but it does
bring up the image that I'm thinking.
My boss had to have me open an FTP site the other day so someone
could upload a file. Well I made one, locked everything down above it
but took the easy way out and left it open for anonymous uploads..
Well, we forgot to close it for about a week. The other day I realized
it was still open, so I closed it.
Last night I was performing some maintenance on the server when I
noticed the defrag log had some funny characters under the FTP root
folder. So I opened it up and they had 3 folders, about 15 levels deep
in each, with special characters, profanity, tags for who uploaded, etc.
In the lowest level was about 1.82GB of pirated games !
Well, I had already closed the FTP site and port, so that was taken care
of. But the little bastards used special characters in all the folder names.
So no delete from in windows. They thought it would be difficult in the
command prompt as well (b/c I would need to know what control codes
to use) Well, about 5 seconds went by and I said to myself, "This ain't
my first rodeo", and I opened a command prompt. Then I typed:
"rm FTP /S /Q"
"Goodbye files, and **** you Script Kiddies !"
Anyway
</RANT>
__________________
[H]4 Life
My next generation Front End is right on schedule.
It will be done sometime in the next generation.
I'm a lesbian too.
I am for hire!
|
|
|
|
|
|
Advertisement
|
Sponsored links
|
|
03-22-2004, 05:25 AM
|
#2
|
|
Confusion Master
Join Date: Sep 2003
Location: If you go down to the woods today, You're sure of
Posts: 11,929
|
Hey!, those kids are the future man, leave them alone.  
|
|
|
|
|
03-22-2004, 11:08 AM
|
#3
|
|
Raw Wave
Join Date: Jun 2000
Location: Nashville
Posts: 2,635
|
those kids keep me in business!
__________________
Debt as of 1/1/05: $34,354.48
Debt as of July 4, 2007: $0.00 explanation
Total spent on wedding so far: $3885.79
Thanks to everyone for your support.
I'M DEBT FREE!!
|
|
|
|
|
03-22-2004, 03:49 PM
|
#4
|
|
Maximum Bitrate
Join Date: Jul 2003
Location: Fremont, CA
Posts: 594
|
What you should have done is left the account open and disabled downloading. I used to run an FTP server off my desktop and occationaly had people like this. I just disabled downloading from anon and let them waste their time. I also added a message to the MOTD telling them they had been pwnd. 
I bet they were ****ed when they realised their buddies couldnt get anything they uploaded.
|
|
|
|
|
03-22-2004, 03:59 PM
|
#5
|
|
I'm sorry, and you are....?
Join Date: Jan 2003
Location: Ruston, LA
Posts: 8,846
|
Quote: Originally Posted by fluffy2097
What you should have done is left the account open and disabled downloading. I used to run an FTP server off my desktop and occationaly had people like this. I just disabled downloading from anon and let them waste their time. I also added a message to the MOTD telling them they had been pwnd.
I bet they were ****ed when they realised their buddies couldnt get anything they uploaded.
I had already disabled it a week before I noticed, and I needed the space anyway.
__________________
[H]4 Life
My next generation Front End is right on schedule.
It will be done sometime in the next generation.
I'm a lesbian too.
I am for hire!
|
|
|
|
|
03-22-2004, 04:23 PM
|
#6
|
|
Raw Wave
Join Date: Jan 2004
Location: SilverSpring Maryland
Posts: 2,960
|
I feel your pain. I had the same thing happen to me! I ran an anonymous FTP basically to just get files to and from work, I had only a semi static IP that changed once in a while, so I didn't think it would be a problem, then one day after a couple months of having it up. I notice my connection is real slow so I check my ftp server and somebody started a warez site on my computer! I got like 30,000 hits over 2 days, I'm assuming mostly from hammering. It wouldn't be bad cept the only thing they uploaded was half finished anime crap. I did a little reseach, put my IP address in google and it comes up on a warez forum.
Damn Script Kiddies!
Quote: Originally Posted by frodobaggins
<RANT>
Well I don't guess they were technically "script kiddies" but it does
bring up the image that I'm thinking.
My boss had to have me open an FTP site the other day so someone
could upload a file. Well I made one, locked everything down above it
but took the easy way out and left it open for anonymous uploads..
Well, we forgot to close it for about a week. The other day I realized
it was still open, so I closed it.
Last night I was performing some maintenance on the server when I
noticed the defrag log had some funny characters under the FTP root
folder. So I opened it up and they had 3 folders, about 15 levels deep
in each, with special characters, profanity, tags for who uploaded, etc.
In the lowest level was about 1.82GB of pirated games !
Well, I had already closed the FTP site and port, so that was taken care
of. But the little bastards used special characters in all the folder names.
So no delete from in windows. They thought it would be difficult in the
command prompt as well (b/c I would need to know what control codes
to use) Well, about 5 seconds went by and I said to myself, "This ain't
my first rodeo", and I opened a command prompt. Then I typed:
"rm FTP /S /Q"
"Goodbye files, and **** you Script Kiddies !"
Anyway
</RANT>
|
|
|
|
|
03-22-2004, 04:29 PM
|
#7
|
|
Super Moderator
Join Date: May 2002
Location: Albany, NY
Posts: 1,802
|
what game(s) did they leave thats the big question 
__________________
'98 Explorer Sport
http://mp3car.zcentric.com (down atm)
AMD 800mhz 192megs RAM 60gig hard drive 9 inch widescreen VGA
80% done
|
|
|
|
|
03-22-2004, 04:46 PM
|
#8
|
|
Maximum Bitrate
Join Date: Nov 2003
Location: NC
Posts: 604
|
HaHa, sounds funny.
Lots of corporations have this done to them, lots of .EDU's too. In my opinion the people who set up the account should know that running any internet service with no password is dying for attention. Also with weak passwords such as 'password' You don't know how many "bots" or "Viri" are scanning for this type of thing, I had just reformatted my computer and set my Internet up. I forgot that I was DMZ on the router and 20 minutes later I had been "hacked" by the WINNT weak password / no password. Just so happens that some one was running a bot that scans a range of IP's and auto hacks / installs an IRC XDCC Server bot. They did it quite well because they managed to put the .exe's in my C:\WINNT\Fonts folder so I couldn't see them in explorer. But good ole dos got them out.
Just next time you do something, take the initiative to atleast halfway secure it.
|
|
|
|
|
Sponsored links
|
|
Advertisement
|
|
|
03-22-2004, 08:40 PM
|
#9
|
|
I'm sorry, and you are....?
Join Date: Jan 2003
Location: Ruston, LA
Posts: 8,846
|
Quote: Originally Posted by hijinks21
what game(s) did they leave thats the big question
I can't remember, but there was a leaked copy of doom3.
I deleted it all though.
__________________
[H]4 Life
My next generation Front End is right on schedule.
It will be done sometime in the next generation.
I'm a lesbian too.
I am for hire!
|
|
|
|
|
03-22-2004, 09:10 PM
|
#10
|
|
Maximum Bitrate
Join Date: Oct 2003
Location: WI
Posts: 763
|
Quote: Originally Posted by frodobaggins
I can't remember, but there was a leaked copy of doom3.
I deleted it all though.
I know you didn't delete a leaked copy of Doom 3. Give it up.
__________________
2002 Nissan Altima 3.5 5 Speed Bose FM/6CD ED E12A P4 2.26 512 Ram Ti4600 CDRW DVD Lilliput 200mW 802.11b Trackman AutoTap GPS Opus 150 Carnetix 1260
2005 Nissan Titan SE Dell GX-150 P3 1.0 512 Ram 20G GF4 MX4000 USB 2.0 DVD/RW Xenarc GPS Trackman
|
|
|
|
|
03-22-2004, 09:44 PM
|
#11
|
|
Variable Bitrate
Join Date: Aug 2002
Location: Kansas
Posts: 400
|
I have an ftp at work and the people that run it always point it at the wrong directory and **** (all the time......) and today i loged on and it had half of ms windows longhorn beta (2nd have of dvd)
|
|
|
|
|
03-22-2004, 11:11 PM
|
#12
|
|
Variable Bitrate
Join Date: Mar 2004
Posts: 300
|
as a security professional, I say it wasn't the kiddies at fault, it was you.
|
|
|
|
|
03-22-2004, 11:25 PM
|
#13
|
|
Hosting Guru
Join Date: Oct 2001
Location: Atlanta, GA
Posts: 558
|
just leave it open and see what you get
__________________
-- WireSix, Inc. --
MP3Car Lives Here!
|
|
|
|
|
03-23-2004, 12:35 AM
|
#14
|
|
I'm sorry, and you are....?
Join Date: Jan 2003
Location: Ruston, LA
Posts: 8,846
|
Quote: Originally Posted by Altimat
I know you didn't delete a leaked copy of Doom 3. Give it up.
I honestly did, I'll wait for release.
__________________
[H]4 Life
My next generation Front End is right on schedule.
It will be done sometime in the next generation.
I'm a lesbian too.
I am for hire!
|
|
|
|
|
03-23-2004, 12:42 AM
|
#15
|
|
I'm sorry, and you are....?
Join Date: Jan 2003
Location: Ruston, LA
Posts: 8,846
|
Quote: Originally Posted by hevnsnt
as a security professional, I say it wasn't the kiddies at fault, it was you.
Oh I know it was my fault. I just found it amusing and aggravating.
I had planned on closing it after an hour or so, I was just naive
enough to think that I would remember. Next time I'll completely
secure it to make sure.
It's kind of funny that they went through all the work of "Tagging" it.
I could understand if they truly hacked it, but I basically let them
upload 
__________________
[H]4 Life
My next generation Front End is right on schedule.
It will be done sometime in the next generation.
I'm a lesbian too.
I am for hire!
|
|
|
|
|
Sponsored links
|
|
Advertisement
|
|
| Thread Tools |
|
|
| Display Modes |
 Linear Mode
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -5. The time now is 12:50 PM.
| |
