[Very Important] The site was hacked
Discuss anything concerning this site and its contents
Moderator: CCGHQ Admins
[Very Important] The site was hacked
by Goblin Hero » 25 Jan 2013, 09:45
Unfortunately the site was hacked. Some visitors were redirected to the fishing sites instead.
The vulnerability is now closed. But the intruder has had the ability to access/modify all files and databases.
So I'm highly recommend you to change your passwords.
I'm restoring the site from scratch to be sure all files are intact. For a little while only basic forum features will be available. Please, report any problems here or via PM.
The vulnerability is now closed. But the intruder has had the ability to access/modify all files and databases.
So I'm highly recommend you to change your passwords.
I'm restoring the site from scratch to be sure all files are intact. For a little while only basic forum features will be available. Please, report any problems here or via PM.
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by Huggybaby » 25 Jan 2013, 17:32
Thanks GH, changing password now. Pls consider sending a mass email notification.
-
Huggybaby - Administrator
- Posts: 3207
- Joined: 15 Jan 2006, 19:44
- Location: Finally out of Atlanta
- Has thanked: 701 times
- Been thanked: 594 times
Re: [Very Important] The site was hacked
by Goblin Hero » 25 Jan 2013, 17:41
Forum, bug tracker and wiki functionality is completely restored (I hope). Time to rest. Bugs are possible so do not forget to report it to me.
Main site page is redirecting to the forum now. I'm not sure what to do with the old vulnerable joomla CMS. Upgrading to the latest version will be very difficult and I'm not sure we need a big complex CMS on the site.
My current idea is to recreate old pages (about MA, MWS and other stuff) on wiki. Any suggestions?
Main site page is redirecting to the forum now. I'm not sure what to do with the old vulnerable joomla CMS. Upgrading to the latest version will be very difficult and I'm not sure we need a big complex CMS on the site.
My current idea is to recreate old pages (about MA, MWS and other stuff) on wiki. Any suggestions?
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by Huggybaby » 25 Jan 2013, 17:57
Hmmm...I'm not sure how that would work, the wiki already has tumbleweeds blowing through it.
-
Huggybaby - Administrator
- Posts: 3207
- Joined: 15 Jan 2006, 19:44
- Location: Finally out of Atlanta
- Has thanked: 701 times
- Been thanked: 594 times
Re: [Very Important] The site was hacked
by MaraxusOfFishes » 25 Jan 2013, 18:42
i can't find where to change the password. pls tell me.
- MaraxusOfFishes
- Posts: 15
- Joined: 12 Jul 2012, 17:27
- Has thanked: 9 times
- Been thanked: 1 time
Re: [Very Important] The site was hacked
by Goblin Hero » 25 Jan 2013, 18:53
User Control Panel->Profile->Edit account SettingsMaraxusOfFishes wrote:i can't find where to change the password. pls tell me.
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by Hellfish » 25 Jan 2013, 19:14
That was quick work, I barely noticed the outage. oO
Thank you, Goblin Hero!
Thank you, Goblin Hero!
So now you're
Screaming for the blood of the cookie monster
Evil puppet demon of obesity
Time to change the tune of his fearful ballad
C is for "Lettuce," that's good enough for me
Screaming for the blood of the cookie monster
Evil puppet demon of obesity
Time to change the tune of his fearful ballad
C is for "Lettuce," that's good enough for me
-
Hellfish - Programmer
- Posts: 1297
- Joined: 07 Jun 2009, 10:41
- Location: South of the Pumphouse
- Has thanked: 110 times
- Been thanked: 169 times
Re: [Very Important] The site was hacked
by Max mtg » 25 Jan 2013, 20:51
Looking much better now with svn up again.
Please restore favicon for the site. It helps a lot to distinguish tabs in browser.
Does the forum have any kind of its own portal? Might come handy to replace the broken frontpage.
Please restore favicon for the site. It helps a lot to distinguish tabs in browser.
Does the forum have any kind of its own portal? Might come handy to replace the broken frontpage.
Single class for single responsibility.
- Max mtg
- Programmer
- Posts: 1997
- Joined: 02 Jul 2011, 14:26
- Has thanked: 173 times
- Been thanked: 334 times
Re: [Very Important] The site was hacked
by pcastellazzi » 25 Jan 2013, 21:29
Thank you very much for your time and effort.
The lights then came up and the crowd erupted in applause, because that's what the crowd does after it watches destruction on a large screen.
— Ben Kuchera, Mordern Warfare 3 review.
— Ben Kuchera, Mordern Warfare 3 review.
-
pcastellazzi - Posts: 184
- Joined: 25 Apr 2012, 00:40
- Location: Montevideo, Uruguay
- Has thanked: 11 times
- Been thanked: 30 times
Re: [Very Important] The site was hacked
by Goblin Hero » 26 Jan 2013, 13:49
Restored.Max mtg wrote:Please restore favicon for the site.
I'll check it.Max mtg wrote:Does the forum have any kind of its own portal? Might come handy to replace the broken frontpage.
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by Max mtg » 27 Jan 2013, 17:23
Может такое подойдёт?* - https://www.phpbb.com/customise/db/mod/board3_portal/
* Please consider this link as an option to set up a portal on frontpage.
* Please consider this link as an option to set up a portal on frontpage.
Single class for single responsibility.
- Max mtg
- Programmer
- Posts: 1997
- Joined: 02 Jul 2011, 14:26
- Has thanked: 173 times
- Been thanked: 334 times
Re: [Very Important] The site was hacked
by Goblin Hero » 28 Jan 2013, 12:18
I've made my mind. There will be no CMS on my site. It's overkill. I'll recreate old pages in the wiki.
Pros:
1. Less software to update.
2. Less chances to be hacked again.
3. Everyone can contribute and edit the wiki (important pages will be locked).
Cons: can't find.
P.S. Here's a first example: http://www.slightlymagic.net/wiki/Magic_Album
Pros:
1. Less software to update.
2. Less chances to be hacked again.
3. Everyone can contribute and edit the wiki (important pages will be locked).
Cons: can't find.
P.S. Here's a first example: http://www.slightlymagic.net/wiki/Magic_Album
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by Max mtg » 29 Jan 2013, 15:14
I wish there were some kind of a portal to announce new software releases, new scans avaliable for download and very important messages like this thread.
Single class for single responsibility.
- Max mtg
- Programmer
- Posts: 1997
- Joined: 02 Jul 2011, 14:26
- Has thanked: 173 times
- Been thanked: 334 times
Re: [Very Important] The site was hacked
by Goblin Hero » 29 Jan 2013, 17:04
Special forum thread?Max mtg wrote:I wish there were some kind of a portal to announce new software releases, new scans avaliable for download and very important messages like this thread.
When you´re a goblin, you don´t have to step forward to be a hero -- everyone else just has to step back.
-
Goblin Hero - Site Admin
- Posts: 1992
- Joined: 23 Oct 2005, 09:37
- Location: Russia
- Has thanked: 218 times
- Been thanked: 351 times
Re: [Very Important] The site was hacked
by silly freak » 31 Jan 2013, 08:02
Good! Will probably somewhat revive the Wiki from its minority status.Goblin Hero wrote:I've made my mind. There will be no CMS on my site. It's overkill. I'll recreate old pages in the wiki.
Pros:
1. Less software to update.
2. Less chances to be hacked again.
3. Everyone can contribute and edit the wiki (important pages will be locked).
Cons: can't find.
P.S. Here's a first example: http://www.slightlymagic.net/wiki/Magic_Album
I usually stay logged in. You say it was a phishing attack. Does that mean that if I didn't provide my password during the last few weeks, it's not too probably that my password was affected?
___
where's the "trust me, that will work!" switch for the compiler?
Laterna Magica - blog, forum, project, 2010/09/06 release!
where's the "trust me, that will work!" switch for the compiler?
Laterna Magica - blog, forum, project, 2010/09/06 release!
- silly freak
- DEVELOPER
- Posts: 598
- Joined: 26 Mar 2009, 07:18
- Location: Vienna, Austria
- Has thanked: 93 times
- Been thanked: 25 times
22 posts
• Page 1 of 2 • 1, 2
Who is online
Users browsing this forum: No registered users and 22 guests