PDA

View Full Version : Racing Studebaker site hacked...



64V-K7
02-28-2010, 07:05 AM
I just went over to Racing Studes and clicked on the chat page. A banner page came up and said..." Hacked by some whacko Turkish idiot"

http://www.studebaker-info.org/images/racestus.jpg



If you use this link tho, I think it's ok inside..
http://racingstudebakers.com/stl-web/bulletin/bb/index.php

http://www.studebaker-info.org/7168422/sig2.jpghttp://www.studebaker-info.org/64v2488/sig3.jpghttp://www.studebaker-info.org/0381/sig4.jpg
Bob Johnstone
www.studebaker-info.org

64 GT Hawk
55 President State Sedan
70 Avanti (R3)

bams50
02-28-2010, 07:19 AM
Yep, I went there last night and got a bug that my a/v picked up. Sonny is aware and is on top of it.

Too bad women don't give love freely to complete loser-misfits. Then they wouldn't have frustrations to release through hacking and infecting the 'net- you know, use the trojan in the wallet instead of creating one for the www;)

Robert (Bob) Andrews- on the IoMT (Island of Misfit Toys)
Parish, central NY 13131
http://www.patrioticon.org/images/flag1-1.gif
GOD BLESS AMERICA

barnlark
02-28-2010, 07:34 AM
Why do you suppose they feel the need to do that? What a waste of time, even if they have a direct, self absorbed motive in their brain.

64V-K7
02-28-2010, 07:50 AM
Funny you said your A/V system caught a bug. I was suspicious and looked in the Temp DIR and sure enough there were 3 small executables and 2 PDF's, which I quarantined.
I have a couple tools, that might be used to reverse engineer this stuff. Maybe I can resend the idiot, his own torpedo...

http://www.studebaker-info.org/7168422/sig2.jpghttp://www.studebaker-info.org/64v2488/sig3.jpghttp://www.studebaker-info.org/0381/sig4.jpg
Bob Johnstone
www.studebaker-info.org

64 GT Hawk
55 President State Sedan
70 Avanti (R3)

Sonny
02-28-2010, 09:41 AM
Hey fellas...

Yep, some slimy little bas&%$d has attached code to the front page of the forums. We've been workin' on it and it's no Turk, traced it to a guy in FL. The forums needed upgraded/updated anyway and the "fix" I want is moving everything over to the new forums that I already have in place. The new forums have MUCH better security.

I have locked the current forums down & out, no other choice, until we get it fixed. Very sorry for the aggravation and inconvenience but if I don't get better security it's just gonna happen more often.

I sure hope that you can give this a**hole a taste of his own medicine Bob!

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

Karl
02-28-2010, 10:14 AM
Thank you Sonny.:):D;)

http://i117.photobucket.com/albums/o50/twnchgr/Picture2061-1.jpg

showbizkid
02-28-2010, 10:50 PM
Sorry to see this, Sonny. Hopefully your ISP can get the FBI involved and smack the dude.


[img=left]http://members.cox.net/clarknovak/lark.gif[/img=left]

Clark in San Diego
'63 F2/Lark Standard
http://studeblogger.blogspot.com
www.studebakersandiego.com

laughinlark
03-01-2010, 11:39 PM
Thanks for the update Sonny.


Gordon


http://i157.photobucket.com/albums/t60/laughinlark/gordsjsmk-1.jpghttp://i157.photobucket.com/albums/t60/laughinlark/11-28-07130-1.jpghttp://i157.photobucket.com/albums/t60/laughinlark/all283.jpg

Turbopackman
03-01-2010, 11:59 PM
I was wondering what the h' was going on. Glad I have a Mac since viruses were mentioned...

Eric Boyle
Packard Engineering, LTD.
Wichita, Ks.

<---Posts may contain anywhere from 30-100% sarcasm--->

PlainBrownR2
03-02-2010, 12:32 AM
I tried to access the site the past couple days, notwithstanding the chatter page too. My own security was freaking out, I thought it was just the security, lol. I will credit that it doesn't look like the average script kiddie, and that they did a thorough job of making a mess of things(which is what it's supposed to accomplish). There's no conspiracy here, this was an open webpage that someone decided to exploit for there own amusement, to the grief of everyone else. I would also advise not to take whatever his name as gospel as it's just a screen name. IE, they'll put whatever up there to make it look like they have a reputation. They have also managed to accomplish the other goal which was to draw attention to themselves, and the piece of Machiavellian art they left on the webpage.

Unfortunately, depending on how sophisticated the hacker and hackees are, they can be difficult to track by the average Joe. On the yahoo chatter pages, these guys will use a string of proxies, which for many of us can make finding the original IP a real pain in the rear. If you find them, do bring the authorities in, and try to resist the urge to turn around and do the same thing because then both of yall's can get into trouble, especially if they have something that can cripple a PC permanently, or be able to trace the user's PC, which those proggies do exist. IE, try to avoid hacking or sinking to their level, because the user themselves, if they don't know what they're doing, can get themselves into deeper trouble.

[IMG=left]http://i158.photobucket.com/albums/t102/PlainBrownR2/55%20Studebaker%20Commander%20Streetrod%20Project/P1010531-1.jpg[/IMG=left]
[IMG=left]http://i158.photobucket.com/albums/t102/PlainBrownR2/55%20Studebaker%20Commander%20Streetrod%20Project/P1010550-1.jpg[/IMG=left]
[IMG=right]http://i158.photobucket.com/albums/t102/PlainBrownR2/Ex%20Studebaker%20Plant%20Locomotive/P1000578-1.jpg[/IMG=right]
[IMG=right]http://i158.photobucket.com/albums/t102/PlainBrownR2/My%201964%20Studebaker%20Commander%20R2/P1010168.jpg[/IMG=right]

JRoberts
03-02-2010, 05:28 AM
Thanks Sonny for the hard work. I know this is a real pain in the butt and we do appreciate it.

Joe Roberts
'61 R1 Champ
'65 Cruiser
Editor of "The Down Easterner"
Eastern North Carolina Chapter

Sonny
03-02-2010, 03:03 PM
Thanks for all the thanks, guys! [:I] I really appreciate it. [^] Will work for thanks! ;)[^]

An update... As I said, the new "Cool Beans", super secure forums are up and operating. The BIG hold up is converting ALL the old files and moving ALL of the old data, (posts, people, etc.) from the old forums to the new forums, without screwing it up. Worked on it 'til 2AM again last night with my ISP guru, trying to get it done.

It should have been a straight forward procedure EXCEPT, (there's ALways that "except" :(), that my ISP has industrial strength security in place and when we were converting we discovered that the server only allows you so much time, (a fairly short amount), to do anything on the server when you're in "root directory territory". It's a security feature BUT it has to be "fixed" or changed by an "engineer". Hmmmm.... After ALL that chit last night, it's still is not accomplished....:(:(

The thing of it is, we're working in the Racing Studebakers actual root directory, all the actual files that make up, or that IS Racing Studebakers on the internet. The forums are just one "little" place on the RS website. We are also working with three very distinct, very different software protocols, including server language, (Apachie for the server, PHP and HTML).

All this has to work together AND we have to tip-toe lightly as we work so as not to interrupt Racing Studebakers working on the internet, piss off the ISP, or screw something up. Lots of frustration, as everything, (all files) have their own "permissions" and have to be changed as we go along, then tested to see if the server will allow something we do, then proceed. I certainly have learned MUCH about how a server works as well as how to work within the limits. The problem is, first converting the huge number of files from the old forums, then upload them to the new software exceeds the limits. We're now in the hold mode, waiting for some engineer to make what is considered a fairly major change to his server. In fact, the ISP can elect not to allow this help/change, we'll see. It never ends...

Anyways, just wanted to give a good update as I know how frustrating this is for all. Just wanted you guys to know more about why it's takin' so long, what's involved.

You can actually see the index, or "front page" of the new forums here, but not too much to see yet as we got just a very little bit of the files converted and uploaded before the server automatically brought us to a screeching halt. THEN we had to figure out what the hell happened because everything was goin' along fine, it stopped, NO error messages, nothing, just locked us out of the file system... :( http://racingstudebakers.com/foo/

More later, hope this helps, thanks for your support and patience...

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

Andy R.
03-02-2010, 04:26 PM
quote:Originally posted by bams50

Too bad women don't give love freely to complete loser-misfits. Then they wouldn't have frustrations to release through hacking and infecting the 'net- you know, use the trojan in the wallet instead of creating one for the www;)

Robert (Bob) Andrews- on the IoMT (Island of Misfit Toys)
Parish, central NY 13131
http://www.patrioticon.org/images/flag1-1.gif
GOD BLESS AMERICA



:D Bams, you are killing me...this time in a good way.;)

Andy
62 GT

http://farm4.static.flickr.com/3160/3069855932_de3d120955_t.jpg

Mike Van Veghten
03-02-2010, 07:54 PM
Hey Sonny -

Just checken to say hi...hope your haven funnnnnnnnnn..
Kidding..!!


Yea..they got to my hard drive about a year ago, had to spend a fortune to reformat my harddrive AND save my "word" stuff and fotos.
Computers...fun on one hand...a pain in the butt on the other hand.

Mike

Sonny
03-02-2010, 11:29 PM
TANKS MIKE! :D

'Nuther Update... It's a little after midnight and while we were waiting for an engineer/guru to grace us with his magic, (which never happened tonite), we finished cleaning out the website, did a thorough "bad bug" check and FIXED THE CHAT! Oh yeah, it's up, running, nice as hell and solid as a rock. We even went into the files and added more anti-butthole medicine, (anti-hacker upgrade). Give 'er a try![^]:D

At least THAT is all done! I'm one tired & happy fella. Goin' to bed early tonite. More on the forums later!

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

Chris_Dresbach
03-02-2010, 11:37 PM
quote:Originally posted by Sonny

TANKS MIKE! :D

'Nuther Update... It's a little after midnight and while we were waiting for an engineer/guru to grace us with his magic, (which never happened tonite), we finished cleaning out the website, did a thorough "bad bug" check and FIXED THE CHAT! Oh yeah, it's up, running, nice as hell and solid as a rock. We even went into the files and added more anti-butthole medicine, (anti-hacker upgrade). Give 'er a try![^]:D

At least THAT is all done! I'm one tired & happy fella. Goin' to bed early tonite. More on the forums later!

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

That's great to hear! Thanks Sonny![^]:D

Chris Dresbach
http://i768.photobucket.com/albums/xx323/chris_dresbach/Studebaker%201/ModelN-1-1.jpghttp://i768.photobucket.com/albums/xx323/chris_dresbach/40champion-1-1.jpghttp://i768.photobucket.com/albums/xx323/chris_dresbach/Studebaker%201/N10-1-1.jpg
1940 Champion two door.
Parts of the 1952 Model N

silverhawk
03-02-2010, 11:56 PM
Awesome! Congrats!

Dylan Wills
http://i483.photobucket.com/albums/rr200/1961lark/My%201961%20studebaker%20lark/Tobeputindylansfile003.jpg
'61 lark deluxe 4 door wagon

Studebaker Jake
03-03-2010, 12:28 AM
Ah, I was wondering what happened...
Good to know, and thanks for all your hard work getting it back up!

Sonny
03-05-2010, 08:59 PM
UPDATE! We're Baaaaaccccck! Yepper! The Racing Studebakers forums are up and running again! The grueling work of getting them going is down to just fine tuning now, The forums seem to be doing pretty good. One glitch I did notice was that the search function is very lame. However, my ISP guru says that I'll have to "rebuild" the data to allow for searching the old topics. The search didn't actually survive the transition very well. Also, the guru says that if you are a current member of the forums, your password may not work. So, just use the "send password" function and the system will automatically send you a new password, that you can change once you log in.

Anyway, PLEASE drop in at the racing forums and see how it looks & works. Please advise me of any "abnormalities" if you find them and we'll get 'em fixed.

I'm lovin' it. [^][^][^]

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

avantilover
03-05-2010, 11:42 PM
I just tried the link and got a "403" error. Hopefully the site will be totally back soon.

John Clements
Avantilover, your South Australian Studebaker lover!!!
Lockleys South Australia

Sonny
03-06-2010, 09:14 AM
quote:Originally posted by avantilover

I just tried the link and got a "403" error. Hopefully the site will be totally back soon.



John Clements
Avantilover, your South Australian Studebaker lover!!!
Lockleys South Australia



I'm sorry, I should have mentioned that you have to change your "bookmarked" or "favorites" link/setting, or they are easily reached from the main website. The new forums are on a new server too. They are here... http://www.racingstudebakers.com/foo/index.php

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com

sweetolbob
03-06-2010, 09:15 AM
Logged on last night and it took my password with no problems. I just logged on again with no issues.

What you will want to do is delete all the bookmarks and log in from scratch. My old bookmarks did not work.

Bob

http://i258.photobucket.com/albums/hh263/sweetolbob/P1000416.jpg?t=1227109182, http://i258.photobucket.com/albums/hh263/sweetolbob/031-1.jpg?t=1254424814

Jessie J.
03-08-2010, 10:02 PM
I get this message;
"You have been permanently banned from this board.

Please contact the Board Administrator for more information.

A ban has been issued on your IP address."
A recurring problem that I experienced with the old Forum, access one day, 'banned' the next, access again the next, on and on.
Now I am "permanently banned"?

Chris_Dresbach
03-08-2010, 10:11 PM
Trying to get on the monday chat RIGHT NOW and it keep making me put in my password, email, user name, etc. When I do, it says it needs some email varifacation. What the heck?![}:)]

Chris Dresbach
http://i768.photobucket.com/albums/xx323/chris_dresbach/Studebaker%201/ModelN-1-1.jpghttp://i768.photobucket.com/albums/xx323/chris_dresbach/40champion-1-1.jpghttp://i768.photobucket.com/albums/xx323/chris_dresbach/Studebaker%201/N10-1-1.jpg
1940 Champion two door.
Parts of the 1952 Model N

Sonny
03-09-2010, 10:40 AM
quote:Originally posted by Chris_Dresbach

Trying to get on the monday chat RIGHT NOW and it keep making me put in my password, email, user name, etc. When I do, it says it needs some email varifacation. What the heck?![}:)]

Chris Dresbach

It's a good security feature, Chris. Spammers and hackers don't have a real email address. It's a actually pretty common way for most websites to verify that you are a real person. The software sends an email link to the email address that you put in and all you have to do is click on the link in the email that was sent to you. Glad you got it fixed.

Sonny
http://racingstudebakers.com/avatar_01.jpghttp://RacingStudebakers.com