An expert [Please read this]
 

Shatter says:
you there?
MSN Froze on ME says:
Yes.
Shatter says:
Ok...
Shatter says:
so listen
MSN Froze on ME says:
Are you using Internet Explorer?
Shatter says:
No.
Shatter says:
listen
MSN Froze on ME says:
Ok.
Shatter says:
Or i won't explain it
Shatter says:
I didn't have to touch your code, to change it.
Shatter says:
All I have to do, is change what my computers code is, for your site...everytime you connect to anywhere, your computer looks for the right code, and uses it
Shatter says:
I changed the way my code reacted to your board...when your board runs your code script, It won't find it on my computer, and will look for the next best thing
Shatter says:
which will be my rewritten code
Shatter says:
It's how people get around punkbuster
Shatter says:
and gameguard
MSN Froze on ME says:
ok
Shatter says:
Now, I'd never harm SFA
Shatter says:
but if someone else figured out how to do that.
Shatter says:
they could literally rewrite themselves as a mod
Shatter says:
or an admin
Shatter says:
or even a super admin
Shatter says:
but they would have to know what that code looked like first
Shatter says:
Which they don't
Shatter says:
But it is possible.
MSN Froze on ME says:
They can't overwrite them self as Admin/Moderator.
MSN Froze on ME says:
Since I have the page lock (aka deleted)
Shatter says:
you're not listening...when you log on, you have a specific code the board recognizes you as.
Shatter says:
If someone took that code, and coppied it, they could literally make the board think they were a super admin
Shatter says:
easy
Shatter says:
I doubt they'd ever get your code mind you
Shatter says:
but all they would have to do is see it
MSN Froze on ME says:
I'm listening. However, that now how a php works.
Shatter says:
PHP is easliy molded.
MSN Froze on ME says:
If it was HTML, yes it will.
Shatter says:
Ok...well you continue to think I don't know what I'm saying all you like, I'm not going to argue with you
Shatter says:
I just did it
Shatter says:
you can ask mike, he can confirm it, no tricks
MSN Froze on ME says:
U just hide your self
Shatter says:
I altered my own code, which changed your boards, someone else can do it too
Shatter says:
There were no trikcs
Shatter says:
tricks
MSN Froze on ME says:
I know what you're saying. But you make it seem like they can trick the page.
Shatter says:
they can
MSN Froze on ME says:
You can hide, but you can't trick it.
Shatter says:
that's exactly what I'm saying
MSN Froze on ME says:
as in become a super admin
MSN Froze on ME says:
I'll report this to vBulletin and see what they say. If this is a threat at all.
Shatter says:
They are going to tell you everything is fine,
Shatter says:
they want your money
Shatter says:
but I'm done arguing with you.
Shatter says:
I really dislike people who think they know more than they do
Shatter says:
And you are pushing it
MSN Froze on ME says:
I'm not.
Shatter says:
But I tell you now, when someone else figures out how to do what I just did, like Nferno, or another coder who doesn't like SFA, you will be sorry
Shatter says:
I showed mike because I figured you would see the bigger picture
Shatter says:
he does
Shatter says:
you clearly do not
MSN Froze on ME says:
Since you think you can bypass it. Than try to see if you can make ur self an admin.
Shatter says:
Do you listen to anything?
Shatter says:
I would need an admins code first
Shatter says:
Meaning i would need to hack either you, blaze, blade, or apathy
Shatter says:
Which can be done, but is not something I am going to do
MSN Froze on ME says:
I'll do a little research on this. From what I read and you editing your machine information. Won't harm us, just hide from us.
MSN Froze on ME says:
It'll harm us if we can't read IP
MSN Froze on ME says:
however, they won't be able to hack as in become an administrator, regardless what they write or if they find the "Code" that you speak off.
Shatter says:
Do you know anything about basic computer technology?
Shatter says:
Do you understand that every single detail to your computer, has a code.
Shatter says:
a code that controls everything?
MSN Froze on ME says:
I do.
Shatter says:
Then why do you not see, that if code is altered, it changes things.
Shatter says:
How do you think boards connect to your computer
Shatter says:
with a code
Shatter says:
They put a code, into your computer, read it, and connect
Shatter says:
Were you to change that code, the board changes how it sees you
Shatter says:
it
Shatter says:
s
Shatter says:
not a trick
Shatter says:
it's what happens
Shatter says:
Jesus
MSN Froze on ME says:
*sigh*
MSN Froze on ME says:
Nevermind. I'll just explain this to someone that knows more technology and see what he says about this.
Shatter says:
That would be a good idea

Shatter = someone that manage to hide himself from being detected in our forum. Allowing him to post without us seeing him. Administrator can view "invisible" users.

Sounds like he's talking about cross-site scripting. Keep your board up to date, don't install third-party mods and don't enable HTML, and you'll be fine :) Tbh it sounds like he's talking utter sh*t anyway :)

How about this??
(6:27:02 AM): Not quite.
(6:28:01 AM): He gets to his cookies.
(6:28:06 AM): And changes them to an rtf document.
(6:28:19 AM): Then he breaks them down into code.
(6:28:25 AM): And changes them as he sees fit.
(6:28:40 AM): And then puts it in his BIOS.
(6:28:49 AM): Which creates a permanent cookie.
(6:28:57 AM): So that when he goes back to the website, no cookie is made.
(6:29:11 AM): No trace he was there ever exists on his PC.
(6:29:16 AM): It's on his BIOS, so it exists already.

He's an administrator at my site and he told me a little more details from the other user.

Doubt that's true. However, you can edit cookies I think.

I don't agree on what this guy was telling me.

He was able to use the shoutbox, but we couldn't see him in the "What's Going On?" catagory.

Oh. I have a feeling he was talking about stealing/editing cookies in the first part. No expert, but I think this may help with what he was on about:

http://en.wikipedia.org/wiki/HTTP_cookie#Cookie_theft

Although my estimation is that he would somehow have to trick you to get your admin account thing. As for not showing up, I am clueless. Sorry.

Thanks, I'll be reading that.

Lmao cookies in his bios. I give up, he's talking utter crap!

I just wanted to post this here.

I'm not trying to make fun of this guy. Who knows, maybe he did or maybe he didn't.

However, the way he talk to me didn't sound like he really did it at all.

I must admit I started to smile when I read that .... :cool:

Clearly someone has been on the happy juice.