Wow
-
THE_GUY_THAT_HACKED wrote:
no that dosent make me a script kiddie
Yeah true, your a moron
Tarakeshwar Reddy MCP, CCIE Q(R&S)
Thats best u can say .. sounds like a noob
-
I will tell you how i Exploited this forums! First of all its full of XSS holes, one can deface it with many script ... no that dosent make me a script kiddie .... Your regitration form is vul and so is everything else, and no its not fixed yet. Pic: http://img123.imageshack.us/img123/8677/pic1lj1.png :rose:
THE_GUY_THAT_HACKED wrote:
no that dosent make me a script kiddie
Yeah true, your a moron
Tarakeshwar Reddy MCP, CCIE Q(R&S)
-
Thats best u can say .. sounds like a noob
Thats because I have better things in life to do than sitting and thinking about an idiot who lost his brain and thinks he is a super hero trying to exploit sites rather than inform the webmaster who is doing a great job in having this community running
Tarakeshwar Reddy MCP, CCIE Q(R&S)
-
The CodeProject forums were just hacked! :omg: I've never seen that happen before.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
I will tell you how i Exploited this forums! First of all its full of XSS holes, one can deface it with many script ... no that dosent make me a script kiddie .... Your regitration form is vul and so is everything else, and no its not fixed yet. Pic: http://img123.imageshack.us/img123/8677/pic1lj1.png :rose:
Well thanks for the info on how to fix the forums. Now just give us your i.p. address for we can block you permanently.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
What happened? What did it look like?
█▒▒▒▒▒██▒█▒██ █▒█████▒▒▒▒▒█ █▒██████▒█▒██ █▒█████▒▒▒▒▒█ █▒▒▒▒▒██▒█▒██
Some guy named
fbi123hacked the Vista, Lounge, Poll, and Suggestions forum and posted the CP source code. Then he deleted everything below the message (rating, other posts and footer of the page). That's just what I saw, I'm sure he probably did more. It was mess.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
It's not a hack - it's an exploit of the fact that we don't fully tidy the HTML we allow you guys to post. We do still work on a trust basis here. Happens again and I just turn off HTML tags in the forums until I can get around to adding int HtmlTidy or something. But since it's the holidays that ain't going to happen till next week.
cheers, Chris Maunder
CodeProject.com : C++ MVP
I kind of think that it may have accidentally been me that inspired that ***hol* to hack the site. I'm sorry. Yesterday I noticed a whole lot of vulnerabilities and was going to email you about them as soon as a got a chance. I think he may have seen me testing one of the vulnerabilities in the design/architecture. I'm really sorry, I didn't realize anyone would see that. I'll send you an email this week with an idea on how to stop all the XSS etc. (PS. I have cleaned everything I did up and I realized I could use the "preview" option to test the problems after a while so I don't think he knows about some of the major vulnerabilities) Chris... Why do you have a knife in your hand??? AAAARRRGHHHHH!!!!
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
-
Well thanks for the info on how to fix the forums. Now just give us your i.p. address for we can block you permanently.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
Chris has his IP, maybe we could give the kid a little visit?
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
Why would you want to visit this kid? grab a friend, have a beer He doesn't need to learn that there's always someone better than him, he needs to learn that his definition of 'better' is skewed
Developers, Developers, Developers, Developers, Developers, Developers, Velopers, Develprs, Developers!
We are a big screwed up dysfunctional psychotic happy family - some more screwed up, others more happy, but everybody's psychotic joint venture definition of CP
Linkify!|Fold With Us! -
The CodeProject forums were just hacked! :omg: I've never seen that happen before.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
-
Why would you want to visit this kid? grab a friend, have a beer He doesn't need to learn that there's always someone better than him, he needs to learn that his definition of 'better' is skewed
Developers, Developers, Developers, Developers, Developers, Developers, Velopers, Develprs, Developers!
We are a big screwed up dysfunctional psychotic happy family - some more screwed up, others more happy, but everybody's psychotic joint venture definition of CP
Linkify!|Fold With Us! -
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
I agreed with some of what you said, but I don't think this will be the last of it. One the little prat tells his "friends" how he hacked CP then they will be all over us. Not to mention (until yesterday) I never even bothered trying to find holes in CP because I believed that a site this size would have covered them a long time ago. I think this is going to be nothing more then an incentive for others to try and find holes.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
-
Some guy named
fbi123hacked the Vista, Lounge, Poll, and Suggestions forum and posted the CP source code. Then he deleted everything below the message (rating, other posts and footer of the page). That's just what I saw, I'm sure he probably did more. It was mess.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
MatrixCoder wrote:
posted the CP source code
He posted HTML, not the source code. Do a "View Source" and you'll see a resemblence.
cheers, Chris Maunder
CodeProject.com : C++ MVP
-
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
I disagree with you. It is not particularly hard to find holes in many big web sites, especially those that can be exploited remotely by script. If every little dick who found one started to exploit it rather than have the good sense and manners to report it then the world wide web would be one big locked down uninteresting place. To me an idiot is someone who demonstrates a lack of good intelligence, and the trouble maker in this case fits that definition perfectly. That fact that it is illegal, and he has just broken a law which carries a prison term, only makes him more of an idiot.
Ðavid Wulff What kind of music should programmers listen to?
Join the Code Project Last.fm group | dwulff
I'm so gangsta I eat cereal without the milk -
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
I can't modify my original post, but wanted to add that my vote just pulled your message out of the red and into the grey. I guess your fives must have been from bronze members - I'm sorry I only meant to take you to a 3.5 to 4ish. :doh:
Ðavid Wulff What kind of music should programmers listen to?
Join the Code Project Last.fm group | dwulff
I'm so gangsta I eat cereal without the milk -
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
Finding another tag that does the same thing as PRE? Yeah real clever! At least that's what he's doing with the new exploits. This whining baby has less intelligence than a fly who's landed on a horse's arse and got squashed between it's butt cheeks. ;P
"For fifty bucks I'd put my face in their soup and blow." - George Costanza
CP article: SmartPager - a Flickr-style pager control with go-to-page popup layer.
-
I'll probably get voted down for this, but... The guy isn't exactly an idiot as he did successfully carry out a attack...immature...yes...inappropriate...absolutely (would have been nice of you to just inform Chris or someone - maybe ask for a free t-shirt or custom CP security guru status. Much better on a resume than village idiot) To call him an idiot, is just not fair or accurate I should say... In a way...it's nice to know it's over and done with and shouldn't happen again...kinda like getting the measels or chicken pocks...or ripping a bandaid off quickly as opposed to slowly... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
Hockey wrote:
To call him an idiot, is just not fair or accurate I should say...
He's an idiot, or something worse, for his actions, blatant racism, lack of ethics and forethought, not his skill in posting something that screwed up the generated page HTML.
Hockey wrote:
In a way...it's nice to know it's over and done with and shouldn't happen again...
But it did happen again. After he created another account and decided that his ego wasn't properly represented on CP. It's just more fuel for the argument that he is, indeed, an idiot.
Dave Kreskowiak Microsoft MVP - Visual Basic
-
Finding another tag that does the same thing as PRE? Yeah real clever! At least that's what he's doing with the new exploits. This whining baby has less intelligence than a fly who's landed on a horse's arse and got squashed between it's butt cheeks. ;P
"For fifty bucks I'd put my face in their soup and blow." - George Costanza
CP article: SmartPager - a Flickr-style pager control with go-to-page popup layer.
Ashley van Gerven wrote:
This whining baby has less intelligence than a fly who's landed on a horse's arse and got squashed between it's butt cheeks.
:laugh::laugh: But in defense and from the point of view of the fly, it's hard to get out of the way of what appears to be a PLANET hurtling towards you!
Dave Kreskowiak Microsoft MVP - Visual Basic
-
I agreed with some of what you said, but I don't think this will be the last of it. One the little prat tells his "friends" how he hacked CP then they will be all over us. Not to mention (until yesterday) I never even bothered trying to find holes in CP because I believed that a site this size would have covered them a long time ago. I think this is going to be nothing more then an incentive for others to try and find holes.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
A site this size has a harder time plugging all the holes IMHO :P
It's frustrating being a genius and living the life of a moron!!!
-
Hockey wrote:
To call him an idiot, is just not fair or accurate I should say...
He's an idiot, or something worse, for his actions, blatant racism, lack of ethics and forethought, not his skill in posting something that screwed up the generated page HTML.
Hockey wrote:
In a way...it's nice to know it's over and done with and shouldn't happen again...
But it did happen again. After he created another account and decided that his ego wasn't properly represented on CP. It's just more fuel for the argument that he is, indeed, an idiot.
Dave Kreskowiak Microsoft MVP - Visual Basic
hehe...seems ya'll need a lesson in reverse physchology :P Look, yea he's a moron...ya happy? Let's piss him off some more so he and his buddies can execute DDoS attacks on CP and bring it down completely for a few hours??? Maybe he'll obtain our user/pass and pose as one of us... :) Dude doesn't need attention, especially negative attention (calling him an idiot???) that's just gonna get him fueled up for more silly-ness... Cheers :)
It's frustrating being a genius and living the life of a moron!!!
