RIP Amiga Demoscene Archive
category: general [glöplog]
"hate"...? sheesh.
I didn't use ADA much as I'm not so much into the amiga scene these days, but it was a really good site. If it was well supported, it should return for sure. If z5 is tired of dealing with it (understandable after 8 years :) there's probably some other suitable + skilled enough people prepared to take over out there.
psonice +1
i hope see u soon online again demos=amiga or amiga=demos ;)
Quote:
there's probably some other suitable + skilled enough people prepared to take over out there.
very good point.
z5: i really hope you haven't had it with ADA as it was largely your hard work that vitalized it. but hopefulyy you can find someone to pass it onto if you've really do not want to continue running it yourself.
OK, ENDOFTHREAD for me :)
ADA is one of my favorite scene sites -- I hope you'll reconsider, z5!
wow. those amiga admins are leet!
z5:
Since we have to deal with this in our job - meaning, well, various Accession members (ok me and DDT) have to clean our customers sites of this annoying hackage (which happens too often, which is why I'm implementing early-detection crap and other alertage) ...
and seeing as how we host...
well, if you lost no data, how about I put a machine up for you to use, and I keep watch for intrusions, and handle backups etc.
And you just run the site and do your thing.
I totally don't want to lose ADA. Period.
Since we have to deal with this in our job - meaning, well, various Accession members (ok me and DDT) have to clean our customers sites of this annoying hackage (which happens too often, which is why I'm implementing early-detection crap and other alertage) ...
and seeing as how we host...
well, if you lost no data, how about I put a machine up for you to use, and I keep watch for intrusions, and handle backups etc.
And you just run the site and do your thing.
I totally don't want to lose ADA. Period.
oh. i hope z5 takes you up on that offer.
I second Truck and Xeron..
z5 bring back the one and only ada !
z5 bring back the one and only ada !
First OJuice now ADA. Burn those hackers! Sue them! >:(
i have doubts about untergrund being hacked.
sql injection ftw! ;)
please bring back ADA - at least the coders corner.
It was by far the most complete collection of source-links, tutorials, hints and hardware discussions.
Would really be a loss.
It was by far the most complete collection of source-links, tutorials, hints and hardware discussions.
Would really be a loss.
Just want to mention that i handed over the code to people who actually know what they do.
So the site should return at some point.
So the site should return at some point.
That's good news!
z5: good move. can you say publically who you have passed it on to? just so we can bug/harrass them to ensure they bring it back at some point... ;)
*say
z5: Looks like I was wrong - you didn't get hacked through your forum, but your PC is trojan infected and your passwords got stolen.
Yesterday evening they logged in by ftp and infected various pages:
88.73.197.119 - z5 [16/Jul/2009:20:06:45 +0100] "GET /home/unet_homes/z5/pubhtml/index.htm" 200 148
77.28.71.139 - z5 [16/Jul/2009:20:06:53 +0100] "PUT /home/unet_homes/z5/pubhtml/index.htm" 200 237
cpe-98-14-232-56.nyc.res.rr.com - z5 [16/Jul/2009:20:07:00 +0100] "GET /home/unet_homes/z5/pubhtml/koko/index.php" 200 1684
cpe-66-69-124-74.satx.res.rr.com - z5 [16/Jul/2009:20:07:08 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/index.php" 200 1749
186.13.43.15 - z5 [16/Jul/2009:20:07:23 +0100] "GET /home/unet_homes/z5/pubhtml/koko/php/home.php" 200 8665
216-15-54-103.c3-0.grg-ubr3.lnh-grg.md.cable.rcn.com - z5 [16/Jul/2009:20:07:34 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/php/home.php" 200 8542
88.188.52.179 - z5 [16/Jul/2009:20:07:40 +0100] "GET /home/unet_homes/z5/pubhtml/koko/php/system/core/index.html" 200 135
190.1.14.140 - z5 [16/Jul/2009:20:07:55 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/php/system/core/index.html" 200 223
I've now deleted all infected pages and changed your password. Please clean up your PC and contact me for setting a new password afterwards.
I also recommend changing all other passwords you have (ebay, online banking, paypal etc).
Cheers,
scamp
Yesterday evening they logged in by ftp and infected various pages:
88.73.197.119 - z5 [16/Jul/2009:20:06:45 +0100] "GET /home/unet_homes/z5/pubhtml/index.htm" 200 148
77.28.71.139 - z5 [16/Jul/2009:20:06:53 +0100] "PUT /home/unet_homes/z5/pubhtml/index.htm" 200 237
cpe-98-14-232-56.nyc.res.rr.com - z5 [16/Jul/2009:20:07:00 +0100] "GET /home/unet_homes/z5/pubhtml/koko/index.php" 200 1684
cpe-66-69-124-74.satx.res.rr.com - z5 [16/Jul/2009:20:07:08 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/index.php" 200 1749
186.13.43.15 - z5 [16/Jul/2009:20:07:23 +0100] "GET /home/unet_homes/z5/pubhtml/koko/php/home.php" 200 8665
216-15-54-103.c3-0.grg-ubr3.lnh-grg.md.cable.rcn.com - z5 [16/Jul/2009:20:07:34 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/php/home.php" 200 8542
88.188.52.179 - z5 [16/Jul/2009:20:07:40 +0100] "GET /home/unet_homes/z5/pubhtml/koko/php/system/core/index.html" 200 135
190.1.14.140 - z5 [16/Jul/2009:20:07:55 +0100] "PUT /home/unet_homes/z5/pubhtml/koko/php/system/core/index.html" 200 223
I've now deleted all infected pages and changed your password. Please clean up your PC and contact me for setting a new password afterwards.
I also recommend changing all other passwords you have (ebay, online banking, paypal etc).
Cheers,
scamp
z5: ... and don't use TotalCommander for ftp connections (or install some new version like 7.50)
ubik: could you clarify your point about total commander, please? you seem to have the version number wrong, as total commander is only just at 7.04a. so if there is/was a known security problem with ftp in total commander, at which version did it get fixed, according to your information? thanks!
7.50 is currently in beta and now has a feature to encrypt your ftp connections with a master password. in old versions, you could get tools that could decrypt your ftp passwords from wcx_ftp.ini without big hassle.
Kaspersky (my virus killer) alerted me of a trojan at some point when the ada pages started fucking up but i didn't make the connection. I thought it was the other way around: that i got the virus while visiting the website. I then scanned my pc a couple of times and it seemed ok. Btw, i always use a virus killer on my pc.
What does this mean in reality? That my virus killer wasn't able to detect it soon enough and that the passwords from my ftp programs, browser,... got stolen in that period? If yes, then wtf is the point of having a virus killer in the first place.
What does this mean in reality? That my virus killer wasn't able to detect it soon enough and that the passwords from my ftp programs, browser,... got stolen in that period? If yes, then wtf is the point of having a virus killer in the first place.
That's the sad reality of viruses.. it takes some time before the virus checker is updated and can detect the latest threat, and if you get hit in that time, you're pretty much screwed. And it's possible your PC had some vulnerability that let the virus get in under the virus checker or disable it first too.
Only way really is to keep everything possible locked down behind a couple of firewalls, keep everything updated all the time, and run rootkit scanners etc. regularly. And don't download any warez, or anything at all from sites you don't fully trust. And run firefox with noscript too. It's a total paranoid ballache if you actually want to run a secure computer :)
Only way really is to keep everything possible locked down behind a couple of firewalls, keep everything updated all the time, and run rootkit scanners etc. regularly. And don't download any warez, or anything at all from sites you don't fully trust. And run firefox with noscript too. It's a total paranoid ballache if you actually want to run a secure computer :)
Or you can use an Amiga browser, it's safe really :)
To detect a windows trojan, I usually run a TCP sniffer right after a clean boot and look if there's suspicious connections (eg. to unknown smtp servers or whatever). If there's some (or, most likely when you're infected, a fucking lot) of them, then you're good for a few hours offline playing with the registry and hunting fake dlls...
Anyway, I want ADA back!
To detect a windows trojan, I usually run a TCP sniffer right after a clean boot and look if there's suspicious connections (eg. to unknown smtp servers or whatever). If there's some (or, most likely when you're infected, a fucking lot) of them, then you're good for a few hours offline playing with the registry and hunting fake dlls...
Anyway, I want ADA back!
