We were hacked into and a c99 shell was uploaded but they spared us major grief in destroying databases and files.
They left a calling card with email.
Anyway, we are back up and running.
Registration is turned off
Newest VB installed
We were hacked into and a c99 shell was uploaded but they spared us major grief in destroying databases and files.
They left a calling card with email.
Anyway, we are back up and running.
Registration is turned off
Newest VB installed
Intel 9990XE @ 5.1Ghz
ASUS Rampage VI Extreme Omega
GTX 2080 ti Galax Hall of Fame
64GB Galax Hall of Fame
Intel Optane
Platimax 1245W
Intel 3175X
Asus Dominus Extreme
GRX 1080ti Galax Hall of Fame
96GB Patriot Steel
Intel Optane 900P RAID
Thank you for the update Charles.
Sorry to hear that
It was due to a Vbulletin exploit?
Good to see its back up again Charles. I know that was a ton of work on your part to get this cleaned up.
Thanks !!!
user info safe?
also "what's new" looks stupid atm
I like large posteriors and I cannot prevaricate
I"m happy XS is back up and running. However, it would be nice to be notified by e-mail if there is a major incident resulting in extended downtime.
Desktop rigs:
Oysterhead- Intel i5-2320 CPU@3.0Ghz, Zalman 9500AT2, 8Gb Patriot 1333Mhz DDR3 RAM, 120Gb Kingston V200+ SSD, 1Tb Seagate HD, Linux Mint 17 Cinnamon 64 bit, LG 330W PSU
Flying Frog Brigade-Intel Xeon W3520@2.66Ghz, 6Gb Hynix 1066Mhz DDR3 RAM, 640Gb Hitachi HD, 512Mb GDDR5 AMD HD4870, Mac OSX 10.6.8/Linux Mint 14 Cinnamon dual boot
Laptop:
Colonel Claypool-Intel T6600 Core 2 Duo, 4Gb 1066Mhz DDR3 RAM, 1Gb GDDR3 Nvidia 230M,240Gb Edge SATA6 SSD, Windows 7 Home 64 bit
At least we are back. That's the main thing. Good work to the admin team.
Originally Posted by MaddMuppet
Right, I"m grateful they were able to get the site back up and going. But for at least a day and a half I had no idea what was going on with the website. And this isn't the first time its been down for a while. I'm just saying that some sort of auto-email with "Hey guys, we are having problems and we are working as fast as we can to resolve them" or something of that sort would be nice to get instead of knowing nothing.
Desktop rigs:
Oysterhead- Intel i5-2320 CPU@3.0Ghz, Zalman 9500AT2, 8Gb Patriot 1333Mhz DDR3 RAM, 120Gb Kingston V200+ SSD, 1Tb Seagate HD, Linux Mint 17 Cinnamon 64 bit, LG 330W PSU
Flying Frog Brigade-Intel Xeon W3520@2.66Ghz, 6Gb Hynix 1066Mhz DDR3 RAM, 640Gb Hitachi HD, 512Mb GDDR5 AMD HD4870, Mac OSX 10.6.8/Linux Mint 14 Cinnamon dual boot
Laptop:
Colonel Claypool-Intel T6600 Core 2 Duo, 4Gb 1066Mhz DDR3 RAM, 1Gb GDDR3 Nvidia 230M,240Gb Edge SATA6 SSD, Windows 7 Home 64 bit
How could he do that if the site was hacked and taken down ?
A database of e-mail addresses cached somewhere else online and/or offline.
Or make a deal with another forum/website that allows for posting of a "Hey we got hacked or Hey we have mega server" problems" type message.
Desktop rigs:
Oysterhead- Intel i5-2320 CPU@3.0Ghz, Zalman 9500AT2, 8Gb Patriot 1333Mhz DDR3 RAM, 120Gb Kingston V200+ SSD, 1Tb Seagate HD, Linux Mint 17 Cinnamon 64 bit, LG 330W PSU
Flying Frog Brigade-Intel Xeon W3520@2.66Ghz, 6Gb Hynix 1066Mhz DDR3 RAM, 640Gb Hitachi HD, 512Mb GDDR5 AMD HD4870, Mac OSX 10.6.8/Linux Mint 14 Cinnamon dual boot
Laptop:
Colonel Claypool-Intel T6600 Core 2 Duo, 4Gb 1066Mhz DDR3 RAM, 1Gb GDDR3 Nvidia 230M,240Gb Edge SATA6 SSD, Windows 7 Home 64 bit
Thanks for the fast fix Fugger, I was starting to miss my XS fix
lots and lots of cores and lots and lots of tuners,HTPC's boards,cases,HDD's,vga's,DDR1&2&3 etc etc all powered by Corsair PSU's
I understand how you feel but there's over 135,000 members and emailing each is a headache like you wouldn't beleive..
I know I've done it in years past using the option in the software and it takes like 6 solid hours to accomplish plus having a database off site isn't viable as the member list is constantly changing..
Crunch with us, the XS WCG team
The XS WCG team needs your support.
A good project with good goals.
Come join us,get that warm fuzzy feeling that you've done something good for mankind.
Good that we're back boss!
Much needed for Buckies health, he'll get time off from me!
Competition ranking;
2005; Netbyte, Karise/Denmark #1 @ PiFast
2008; AOCM II, Minfeld/Germany #2 @ 01SE/AM3/8M (w. Oliver)
2009; AMD-OC, Viborg/Denmark #2 @ max freq Gigabyte TweaKING, Paris/France #4 @ 32M/01SE (w. Vanovich)
2010: Gigabyte P55, Hamburg/Germany #6 @ wprime 1024/SPI 1M (w. THC) AOCM III, Minfeld/Germany #6 @ 01SE/AM3/1M/8M (w. NeoForce)
Spectating;
2010; GOOC 2010 Many thanks to Gigabyte!
Right I get that. However, I don't see why the second suggestion, finding a website hosted by someone or some group friendly to XS that would carve out a little "XS members notifications in case of emergency/downtime" section in return for reciprocating the same sort of thing on XS couldn't be done.
Just got an e-mail from one of the WCG guys. I guess there is something like what I was talking about here:
http://forums.pureoverclock.com/worl...-campsite.html
Desktop rigs:
Oysterhead- Intel i5-2320 CPU@3.0Ghz, Zalman 9500AT2, 8Gb Patriot 1333Mhz DDR3 RAM, 120Gb Kingston V200+ SSD, 1Tb Seagate HD, Linux Mint 17 Cinnamon 64 bit, LG 330W PSU
Flying Frog Brigade-Intel Xeon W3520@2.66Ghz, 6Gb Hynix 1066Mhz DDR3 RAM, 640Gb Hitachi HD, 512Mb GDDR5 AMD HD4870, Mac OSX 10.6.8/Linux Mint 14 Cinnamon dual boot
Laptop:
Colonel Claypool-Intel T6600 Core 2 Duo, 4Gb 1066Mhz DDR3 RAM, 1Gb GDDR3 Nvidia 230M,240Gb Edge SATA6 SSD, Windows 7 Home 64 bit
Appreciate the hard work you put into fixing this.
We need our XS fix
EDIT: I'm not seeing any smilies just now while using Opera, reports of same using FF. Anyone got a trick to fix this?
Last edited by OldChap; 11-24-2013 at 05:42 AM.
My Biggest Fear Is When I die, My Wife Sells All My Stuff For What I Told Her I Paid For It.79 SB threads and 32 IB Threads across 4 rigs 111 threads Crunching!!
They're working for me. Must be you
The Cardboard Master Crunch with us, the XS WCG team
Intel Core i7 2600k @ 4.5GHz, 16GB DDR3-1600, Radeon 7950 @ 1000/1250, Win 10 Pro x64
Nope I'm not seeing the smilies in firefox either.
v23.01, I refuse to upgrade it right now... (builtin on demand flash went to complete shiz in newer vers)
I can't see the smilies but I still try to use them lol...
I wouldn't bother with trying to waste your time with emails.
I thought maybe you guys lost your server over rent or something.
But I'm glad to see it back, 45mins sure is a long time though eh ?.
I see some glitchies with some of the borders around the top menu.
For example where it says what's new, forum, superi pi mod 1.5, and search.
That area looks it has some borders and stuff to fix up.
The login and pass boxes, before you login, look like that have a pink color border thing instead of the blue it used to have.
The thanks under our profile info on the left of each post is missing (if it's gone for good then so beit, but it's kind of a bummer too).
Oh the the link:
http://www.xtremesystems.org/forums/
It's bring me to some page I think it was called what's new?, it's called activity stream.
http://www.xtremesystems.org/forums/activity.php
Before the upgrade it would bring to the forums and not that activity thingy.
That's what my bookmark is set to lol.
So who hacked the freaking server?
What was this so called email about?
Edit:
On the edit post page, the smilies don't work either, they are showing up as there vb code.
This is the advanced edit page I'm talking about.
The post icons below are working though.
So perhaps if I use a post icon, that might show up above my actual post (yep that works).
Last edited by NEOAethyr; 11-24-2013 at 01:05 PM.
Fugger, I presume the hackers gained access to the database.
If so, are email addresses stored un-encrypted? VB does not do this by default only the password is encrypted and salted.
I doubt the passwords could be cracked in a reasonable time frame even with a rack of GPU. However, it would be good policy to inform users of the breach, that their email addresses HAVE been compromised and that the password they use for this site could be compromised too. And that they really should change their credentials on any other site that they use the same email address/password combination.
I don't know what your LAMP skills are Fugger... Though I am sure you are aware that
The user list could be dumped daily as an sql file via a cron job to another machine
A PHP/perl/bash script could parse that sql file and send email to every address in it, speed of execution would depend on hardware and network bandwidth.
There are a lot of smart people using these forums, many much smarter than I.
Still if you need any help.
Fun Box: Asus P8Z68-V GEN3++Corsair AX850++i5 2500k@4.5Ghz-1.272v++Corsair A50++2x8Gb Corsair Vengeance++MSI R7970 Lightning++Audigy2 Plat-EX++TBS 6280 DVB-T2 tuner++256Gb OCZ Vertex 4.500Gb Caviar Black.500Gb Seagate Barracuda++Sony AD7240s++Lian-Li PC-60++Linux Mint/Win 7++Asus P238Q
Work Box: Gigabyte H61MA-DV3++Corsair HX620++i5 3450@stock++2x8Gb Corsair Vengeance++120Gb OCZ Agility 3++Linux Mint
Quantum theory in a nutshell: It's so small we don't know where it is, it could be here, it could be there.
Just 'cos it's legal don't make it right.
I'm glad that you get over hackers attack. XS very interesting and helpful site for me so it's good to see it online.
P.S. There're some bugs here: no smiles, no reputation etc
Forgive for my English because I only learn it
Please, please, please we ALL need an answer for this !
This ^^^^^^^^
Should be in place ...
Nice of you to offer, hope they take this up !
Grrrrr, cant leave thanks for this post
Seasonic Prime TX-850 Platinum | MSI X570 MEG Unify | Ryzen 5 5800X 2048SUS, TechN AM4 1/2" ID
32GB Viper Steel 4400, EK Monarch @3733/1866, 1.64v - 13-14-14-14-28-42-224-16-1T-56-0-0
WD SN850 1TB | Zotac Twin Edge 3070 @2055/1905, Alphacool Eisblock
2 x Aquacomputer D5 | Eisbecher Helix 250
EK-CoolStream XE 360 | Thermochill PA120.3 | 6 x Arctic P12
Smilies not working for me on Opera 11.64, Chrome 31 or Firefox 23.
Xtreme SUPERCOMPUTER
Nov 1 - Nov 8 Join Now!
Athlon64 3700+ KACAE 0605APAW @ 3455MHz 314x11 1.92v/Vapochill || Core 2 Duo E8500 Q807 @ 6060MHz 638x9.5 1.95v LN2 @ -120'c || Athlon64 FX-55 CABCE 0516WPMW @ 3916MHz 261x15 1.802v/LN2 @ -40c || DFI LP UT CFX3200-DR || DFI LP UT NF4 SLI-DR || DFI LP UT NF4 Ultra D || Sapphire X1950XT || 2x256MB Kingston HyperX BH-5 @ 290MHz 2-2-2-5 3.94v || 2x256MB G.Skill TCCD @ 350MHz 3-4-4-8 3.1v || 2x256MB Kingston HyperX BH-5 @ 294MHz 2-2-2-5 3.94v
They're working for me. Must be youAs I said in another thread, I can see all smilies. I guess my brain cached them due to the excessive usage of XS...
![](http://www.hwbot.org/signature/u15466.png height="110" )
do we need to reset our passwords?
am happy XS is back online
MAIN RIG--:
ASUS ROG Strix XG32VQ---:AMD Ryzen 7 5800X--Aquacomputer Cuplex Kryos NEXT--:ASUS Crosshair VIII HERO---
32GB G-Skill AEGIS F4-3000C16S-8GISB --:MSI RADEON RX 6900 XT---:X-Fi Titanium HD modded
Inter-Tech Coba Nitrox Nobility CN-800 NS 800W 80+ Silver--:Cyborg RAT 8--:Creative Sound BlasterX Vanguard K08
Yes, they had access to the database
Change your passwords
Passwords were salted on XS
Emails addresses were clear text
Intel 9990XE @ 5.1Ghz
ASUS Rampage VI Extreme Omega
GTX 2080 ti Galax Hall of Fame
64GB Galax Hall of Fame
Intel Optane
Platimax 1245W
Intel 3175X
Asus Dominus Extreme
GRX 1080ti Galax Hall of Fame
96GB Patriot Steel
Intel Optane 900P RAID
FUGGER, Is the Activity Stream staying? Even though my bookmark is set to Forum it always shows that instead since the downtime, which is mildly annoying.
Posting Permissions
Reply With Quote
Bookmarks