jeffnotloggedin said at 10:31 AM 10-28-2003: I'm unimpressed. Pretty lame and they'd have had no chance had Josh not used RedHat & MySQL. Script Kiddie work.
brandon [email] said at 11:03 AM 10-28-2003: What constitutes a good hacking? Seriously, when geeks evaluate or comment on a hack, what impresses and what doesn't?
jeffnotloggedin said at 11:58 PM 10-28-2003: This looks like lame work using a script meant to exploit a specific, known, security hole. Chances are the person didn't even really know how what they were doing worked, only that they then had access to make changes. Some of that may have even been automated (image switches, for instance).
It's easy to find out what OS, web server, and (sometimes) database backend a site has as well as versions in most cases. Then you go searching for a script written by others to break in.
In this case, there was the potential for some really wild stuff to happen, but I wouldn't be surprised if their access was fairly limited.
What would have been cool is if Killoggs was hacked by someone that really played around enough with it to find its weaknesses and workaround and go from there. Such as if you had secretly learned what you could and couldn't do to break it, then came back later when everyone forgot about your past attempts and Billy Idoled it all in one 3am swoop. In other words, learn how the machine works and make it your own.
jeffnotloggedin said at 12:23 AM 10-29-2003: Security, security, security. RedHat lost its vision long ago when the money started rolling in.
In truth though, I suspect you keep things well oiled under RedHat and for that I can't complain. But RedHat releases tend to be ISOed with holes, aren't locked down well at all, and naturally use RPM package management that doesn't reliably handle dependencies (and its own updates) safely.
Set up a Debian box at home and have some patience getting used to apt-get & dpkg. I was a hardcore RH user until I got a good demo of Debian's package management. This may seem inconsequential, but it's a big deal when dealing with version mismatches, bugs, and exploits.
jeffnotloggedin said at 1:29 AM 10-29-2003: I just ran nmap on Killoggs to see what was running and his upstream provider locked out my MAC. Good thing I have a several proxies available.
jeffnotloggedin said at 12:27 AM 10-29-2003: I'm willing to bet it was some fat-ass junior high kid in B.F.E. The "hacked by russians" nonsense is more of an inside joke.
Randy [ url ] said at 10:13 AM 10-28-2003: This is so surreal.
I agree it's pretty rad, actually, save for the embedded MIDI.
Oh yeah, and the obscene pictures make it kinda risky to view at work.
brandon [email] said at 10:23 AM 10-28-2003: Don't forget to scroll all the way to the bottom (in the source or on the page) for an extra send-up to josh clayson and ben s1sk.
I can't believe this guy did all this and didn't even send out props, outline his agenda, or leave a calling card in the code.
Seems sort of suspicious... Like it might be an inside job... Plus, Mary told me after my outburst on Sunday that this week would be DaDa on Killoggs? Coincidence or a sly reference? Was their collusion at the highest levels? Why weren't the other less well-protected sites hacked? I mean, shit, all you have to do is GRIP my password and you're in.
brandon [email] said at 12:46 PM 10-28-2003: Mary, stop lying, you said Dada. But, I think that you were referring to the squid post and not this mess.
