Rackshack Forums have been hacked!!!
 

<a href="http://forum.rackshack.net" target="_blank">http://forum.rackshack.net</a>

They were running vB 2.2.9 or 2.3.0 when I last checked...

Tragic...

A copy of the page that comes up in case they fix it soon...

Yikes!

yeah i saw that ... was wondering why a load of posts had dissapeared..

tho they did manage ti get the forum back up n a matter of hours :D

Holy cow!

I just ordered my server yesterday! DAMNIT!

dont panic- you are responsible for keeping your box secure, not them. I have been around the world of hosting, and found that rackshack is the best priced, and I get ten times better support with my "unsupported" box than I ever did supported.

Fixed now, but ouch.

Omg i know the guy who did this. He's an ass. He hacked a friend of mine's board a while ago. Was bigger than RackShack too... I got hold of his AIM and tried to get him to confess "how" he did it so i could report the bug at .com but he didn't elaborate... Geez if the owner reads this i'll give them this guys aim name?

- miSt

Ouch...

I hope they had a somewhat recent backup. The RS Forums were an excellent reference source.

*DIES*......DAAAAAAAAAAAAAAAAAANNNNNGGG!!!!!!!.... ..

whoa.....that seriously blows....dang.....*is in awe*....never had any forums i go to be hacked...O_O!!!

The cause of this wasn't a bug in vBulletin. The so-called 'hacker' found out one of the administrator's passwords and got it through the front door...

That's scary..

He probably went FTP. I was hacked via FTP a while back by the past owner of the server I am on. He had a riff with the new owners and nailed a bunch of his old accounts on the server.

LOL, and he calls himself a hacker? :)
I'm sorry to hear about the Rackshack forums, but relieved that vBulletin wasn't the cause, and that the forums are restored. :)

Cary on the previous site he hacked as far as i'm aware he made a script to "steal" the passwords....

The site I *used* to review for was hosted by Rackshack and got nuked off the planet a few weeks ago.

The only admin with root access didn't patch, check for errata or backup the site & db. Bye bye 3 years :(

If Rackshack can get hacked, so can anyone. OpenBSD with SSH all the way for us on our new site and really security paranoid new owners (a trio of us took the leap into ownership and created a new site with forums).

I've ran the same forum almost 14 times over, each time it was hacked by the Owner's (not me:p) enemies...

IMO, if they want in, they get in - Just try and do your best to make sure whatever they do it's hard for them to do it, you have recent backups, and that they don't damage too much:)

Satan

That sucks ... and the term is "cracker" guys :)

Mist, you may want to inform Robert, the HeadSurfer at RS, about the person who did this, as I'm sure they would love to get their hands on this character.

I don't have his contact details :( ^^ If you know him personally then get him to contact me...

There seems to be a general confusion about the two terms. Bluntly, hackers hack sites, and crackers crack software. ;)

Rack Shack ROCKS for us.

I'm simply not interested in any one else. I have two racks with them for over a year now. My problem is they don't always make the best buildsm but then, I'm durned particular :)

Backups, backups, backups. And use a multi level password schema, that's completely DIFFERENT in type and structure than any forum password you use anywhere else. Nice this about RS's setups is you can have three seperate levels of userid's and passwords 9Rack admin id, mysql Id, and webiste Id on a dedicated rack) , and that still isnt the password you would use as your board Id. I don't even use similar password structures that I use on my IRL job, so different I want them to be.

There are some good threads here that talk about securing your setup. I got "most' of what I use for defence at rackshack's forum. Like I said, they are solid folks, and I like em. Now, if I could ONLY afford one of those dualie Xenon's :)

Well the thing is, the ensim servers are unsafe, I believe the current build has a bug which allows a hacker to gain access to its ftp. These hackers install ensim onto linux boxes and explore the insides and outs. Its very true, as I got ahold of the hackers that hacked my friend, and tricked them into telling me all their secrets :p, and even did it, and it works like a charm. Have not done it since, but just a warning, keep your ensim on patched, and stay on the good side of people :)

I run Plesk, should be as worried as well?

probably used "god" as a password or something silly :D

Not many people use words from the dictionary these days :p

Not as of yet, all servers that have been accessed have been runing Ensim (not sure of the exact version) I will get you the version number. But i think its one of the current one offered with RS Servers.

I doubt anyone would be that stupid... three letters no numbers :confused:

Whoops! Wrong thread!

Let me make it more sense:

Hackers basically hack and observe, and such...basically...spy.

Crackers cause damage and spread terror online. Basically..cyber terrorist.

LOL Why has this thread been brought back up, it's over 6 months old!!