MwanaHalisi hacked?
- Thread starter Mdau
- Start date
PgSoft2008
JF-Expert Member
- May 15, 2008
- 264
- 73
invisible that is too small for consultation....
let them struggle a little bit, I know changing the index page to that taken from backup will off course take out some of the last updated links which they have to work out. but still u can consult then in mechanisms i.e. how did that happen and associated vulnerabilities.
always opt for tough and challenging things to be recognized and appreciated
just a comment
Yona F. Maro
R I P
- Nov 2, 2006
- 4,202
- 218
Hao Wengi Wanaonekana Ni Wa Uturuki Kama Umeona Sahihi Zao
Yona F. Maro
R I P
- Nov 2, 2006
- 4,202
- 218
KUMBE UNAJUA CHEAP LABOR NI MBAYA SIVYO ?
Yona F. Maro
R I P
- Nov 2, 2006
- 4,202
- 218
KUMBE UNAJUA CHEAP LABOR NI MBAYA SIVYO ? INA BIDI NA WEWE UWE MFANO KWA HIYO WORKSHOP YAKO NA MIRADI YAKO MINGINE UNAYOIFANYA KUONYESHA MSISITIZO .
Pezzonovante
JF-Expert Member
- May 1, 2008
- 638
- 41
Big Up Sakauye Thanks Lord For You
Ndugu System Admin wa MwanaHalisi samahani kama nakuingilia kazi yako.
Lakini, kwa sasa ukiingia kwenye url ya mwanahalisi ninaliona folder lako unalotaka kuweka mafile ya website hiyo (file attached).
Hili ni kosa kubwa.
Yaani unaruhusu directory listing and browsing. hivyo mtu anauwezo at least wa kuona jina la folder lako, na ukiweka ile kitu 'config....' mtu anaweza kudownload password kiulaini. hacker ukimpa hints za jina tu unampunguzia iterations za kujaribu hivyo unaifanya kazi yake iwe rahisi.
Angalia hii video hapa jinsi ya ku-deface website ya mtu anaye-list directory zake: [media]http://www.youtube.com/watch?v=LkZ2SN-InAY[/media]
Yaani ondoa hiyo option mtu asiweze ku-list mafile yako hata kama hamna index file.
Lakini, kwa sasa ukiingia kwenye url ya mwanahalisi ninaliona folder lako unalotaka kuweka mafile ya website hiyo (file attached).
Hili ni kosa kubwa.
Yaani unaruhusu directory listing and browsing. hivyo mtu anauwezo at least wa kuona jina la folder lako, na ukiweka ile kitu 'config....' mtu anaweza kudownload password kiulaini. hacker ukimpa hints za jina tu unampunguzia iterations za kujaribu hivyo unaifanya kazi yake iwe rahisi.
Angalia hii video hapa jinsi ya ku-deface website ya mtu anaye-list directory zake: [media]http://www.youtube.com/watch?v=LkZ2SN-InAY[/media]
Yaani ondoa hiyo option mtu asiweze ku-list mafile yako hata kama hamna index file.
Kaa la Moto
JF-Expert Member
- Apr 24, 2008
- 7,903
- 1,053
naona tayari wamesharekebisha hali nzima na sasa kila kitu kiko bomba
Nemesis
JF-Expert Member
- Feb 13, 2008
- 5,462
- 4,364
Vipi kuhusu www.mwananchi.co.tz mimi bado sijawapa hawa, may be title ya thread iwe Mwananchi and Mwanahalisi hacked?
MwanaHaki
R I P
- Oct 17, 2006
- 2,401
- 705
Nadhani itabidi niwatafute ili niwahamishe kwenye servers zangu, ambazo zinatumia Apache 2 servers (Linux). Wameingiliwa kirahisi kwa kuwa wanatumia Microsoft Internet Information Server, ambayo ina multiple security holes.
We did a PEN TEST for the BOT Servers, you will be surprised to know that it has several weaknesses! Tatizo ni kwamba kuna ma-consultant uchwara, ambao wanapromote Microsoft products, ambazo bado ni beta-ware. Imagine website ya BOT kuwa hacked? Si tu kwamba inaweza kuwa hacked, hata firewall yao si secure. Mtu anaweza kuingia kule kirahisi, akafanya atakalo, aka shutdown entire systems. Waambieni wanitafute kwa PM nitawaelekeza waende wapi kupata ushauri mzuri sana!
./Mwana wa Haki
We did a PEN TEST for the BOT Servers, you will be surprised to know that it has several weaknesses! Tatizo ni kwamba kuna ma-consultant uchwara, ambao wanapromote Microsoft products, ambazo bado ni beta-ware. Imagine website ya BOT kuwa hacked? Si tu kwamba inaweza kuwa hacked, hata firewall yao si secure. Mtu anaweza kuingia kule kirahisi, akafanya atakalo, aka shutdown entire systems. Waambieni wanitafute kwa PM nitawaelekeza waende wapi kupata ushauri mzuri sana!
./Mwana wa Haki
MwanaHaki
R I P
- Oct 17, 2006
- 2,401
- 705
Nadhani itabidi niwatafute ili niwahamishe kwenye servers zangu, ambazo zinatumia Apache 2 servers (Linux). Wameingiliwa kirahisi kwa kuwa wanatumia Microsoft Internet Information Server, ambayo ina multiple security holes.
We did a PEN TEST for the BOT Servers, you will be surprised to know that it has several weaknesses! Tatizo ni kwamba kuna ma-consultant uchwara, ambao wanapromote Microsoft products, ambazo bado ni beta-ware. Imagine website ya BOT kuwa hacked? Si tu kwamba inaweza kuwa hacked, hata firewall yao si secure. Mtu anaweza kuingia kule kirahisi, akafanya atakalo, aka shutdown entire systems. Waambieni wanitafute kwa PM nitawaelekeza waende wapi kupata ushauri mzuri sana!
./Mwana wa Haki
We did a PEN TEST for the BOT Servers, you will be surprised to know that it has several weaknesses! Tatizo ni kwamba kuna ma-consultant uchwara, ambao wanapromote Microsoft products, ambazo bado ni beta-ware. Imagine website ya BOT kuwa hacked? Si tu kwamba inaweza kuwa hacked, hata firewall yao si secure. Mtu anaweza kuingia kule kirahisi, akafanya atakalo, aka shutdown entire systems. Waambieni wanitafute kwa PM nitawaelekeza waende wapi kupata ushauri mzuri sana!
./Mwana wa Haki
Pundit
JF-Expert Member
- Feb 4, 2007
- 3,733
- 123
MwanaHaki,
The information about BOT was an uncalled for expose and a serious breach of professional ethics.Now every script kiddie is gonna be on their case!
Similar Discussions
-
Paul Makonda aipasua CCM, kigogo ndani ya chama atishia kujiuzulu- Started by Erythrocyte
- Replies: 348
-
Hatimaye nimekata tamaa ya kujifunza Hacking nachokiexperience sio nilichokidhania- Started by hermanthegreat
- Replies: 197
-
Mifumo ya TEHAMA ya serikali mfano Tamisemi, inaundwa na kina nani? Ni AIBU tupu.- Started by Kuchwizzy
- Replies: 17
-
Nalipiaje Poweramp Player Wakuu...?- Started by Niache Nteseke
- Replies: 59
-
Je, una tatizo lolote kwenye Computer au Website yako? Niko hapa kwa ajili yako
- Started by bayankata
- Replies: 14