Why the site was down

Paranoia · Sep 10, 2011 1:21 AM

Dang, figures when I kind of come back, the site keeps going down. hmm

How long ago was the Razz thing?
I kinda remember a fight she had with Aicebo but nothing more..

The Razz incident happened sometime in 2008 I think. You can look in the Trash section for a preview. I'll admit I was a little immature, but then again, so was she. Plus I was only 15 and she was 26, so...

Cynder7 · Sep 10, 2011 1:29 AM

Paranoia wrote:

Dang, figures when I kind of come back, the site keeps going down.
How long ago was the Razz thing?
I kinda remember a fight she had with Aicebo but nothing more..
The Razz incident happened sometime in 2008 I think. You can look in the Trash section for a preview. I'll admit I was a little immature, but then again, so was she. Plus I was only 15 and she was 26, so...

Wow..that long ago..? yikes
It seems weird that this,the Ayumi thing and so many other stuff happened such a long time ago..

Neotyguy40 · Sep 10, 2011 3:19 AM

Only one I really remember clearly was the Ratchet one. Unfortunately the only memory I have of him was his constant bickering and flaming of "CLASSIC VS. LEGEND"! Sort of hard to miss him when I didn't know him beforehand.

Clock-la · Sep 10, 2011 10:31 AM

Latias fan wrote:

Clock-la wrote:
Its a miracle!!!!
And in the down side to this, we lost a comrade, dear furry fan has ((claimed)) to quit the site...
Nah. I'm back. I got better.

I rest my case dsrama queen.

what next MLP sesson 2 gives you herpys?

Stormy · Sep 12, 2011 7:09 AM

Clock-la wrote:

Oh man I wish I was here back then now!!! and well well well story, arn't you the little rebs any secret revolts still around thst im un awear of? XD

Nope, no reason to rebel when the "evil dictator" is absent. tongue

Cynder7 wrote:

Paranoia wrote:
Dang, figures when I kind of come back, the site keeps going down.
How long ago was the Razz thing?
I kinda remember a fight she had with Aicebo but nothing more..
The Razz incident happened sometime in 2008 I think. You can look in the Trash section for a preview. I'll admit I was a little immature, but then again, so was she. Plus I was only 15 and she was 26, so...
Wow..that long ago..?
It seems weird that this,the Ayumi thing and so many other stuff happened such a long time ago..

Heh, guess I'm not the only one who feels that way. To me 2008 seems like it was just last year when really it was three years ago. .___.

Neotyguy40 · Sep 12, 2011 8:30 PM

Stormy wrote:

Nope, no reason to rebel when the "evil dictator" is absent.

Where is SR? I haven't seen him for ages. Has he pretty much given up on the place? He hasn't updated since 2009 when he put in the Boxing Day image. (which, by the way, should be changed to normal).

Clock-la · Sep 12, 2011 8:49 PM

Neotyguy40 wrote:

Stormy wrote:
Nope, no reason to rebel when the "evil dictator" is absent.
Where is SR? I haven't seen him for ages. Has he pretty much given up on the place? He hasn't updated since 2009 when he put in the Boxing Day image. (which, by the way, should be changed to normal).

he's pratacly gone...

Stormy · Sep 12, 2011 8:51 PM

No idea, I don't really talk to him anymore. Probably just moved on to other things on the internet.

Latias fan · Sep 12, 2011 9:09 PM

I don't think I've ever met him.

Clock-la · Sep 12, 2011 9:10 PM

Stormy wrote:

No idea, I don't really talk to him anymore. Probably just moved on to other things on the internet.

Do you see him on at all?

Stormy · Sep 12, 2011 9:44 PM

I'll see his name in IRC channels I'm also in occasionally. On this site, though, barely ever.

36IStillLikeSpyro36 · Sep 12, 2011 10:03 PM

http://www.spyroforum.com/logos/regular.jpg

http://www.spyroforum.com/logos/boxingday.jpg

the only difference in the URLs for the two images is the names of the files themselves. would that really take so long to edit?

not trying to pick fun at anyone, but i'm just curious about why that's taken two years to do.

but on the other hand, you could also ask why it's so bothersome to me that the image has boxes on it, couldn't you?

prince-Dari · Sep 12, 2011 10:41 PM

Stormy wrote:

Heh, guess I'm not the only one who feels that way. To me 2008 seems like it was just last year when really it was three years ago. .___.

The older you get, the faster time seems to travel. tongue

Stormy · Sep 13, 2011 6:29 PM

36IStillLikeSpyro36 wrote:

the only difference in the URLs for the two images is the names of the files themselves. would that really take so long to edit?
not trying to pick fun at anyone, but i'm just curious about why that's taken two years to do.

It wouldn't take any time at all. It probably wouldn't even be that hard to write a script that changes it automatically. But like I said before, SR doesn't care. And he's the only one who can touch the forum source code.

I remember ratchet getting really upset about the logo and saying we clearly need more moderators since SR doesn't have the time to change the logo. SR suggested changing the logo to say "International Care What Ratchet Says Day."

Latias fan · Sep 13, 2011 6:55 PM

Stormy wrote:

36IStillLikeSpyro36 wrote:
the only difference in the URLs for the two images is the names of the files themselves. would that really take so long to edit?
not trying to pick fun at anyone, but i'm just curious about why that's taken two years to do.
It wouldn't take any time at all. It probably wouldn't even be that hard to write a script that changes it automatically. But like I said before, SR doesn't care. And he's the only one who can touch the forum source code.
I remember ratchet getting really upset about the logo and saying we clearly need more moderators since SR doesn't have the time to change the logo. SR suggested changing the logo to say "International Care What Ratchet Says Day."

Think we can hack in the server and change what we want?

Stormy · Sep 13, 2011 7:00 PM

[youtube]http://www.youtube.com/v/q3gqG_aGECw&NR=1[/youtube]

Latias fan · Sep 13, 2011 7:05 PM

Stormy wrote:

[youtube]http://www.youtube.com/v/q3gqG_aGECw&NR=1[/youtube]

I think i found my new meme to abuse.

Clock-la · Sep 13, 2011 9:15 PM

Neotyguy40 · Sep 13, 2011 10:53 PM

Stormy wrote:

36IStillLikeSpyro36 wrote:
the only difference in the URLs for the two images is the names of the files themselves. would that really take so long to edit?
not trying to pick fun at anyone, but i'm just curious about why that's taken two years to do.
It wouldn't take any time at all. It probably wouldn't even be that hard to write a script that changes it automatically. But like I said before, SR doesn't care. And he's the only one who can touch the forum source code.
I remember ratchet getting really upset about the logo and saying we clearly need more moderators since SR doesn't have the time to change the logo. SR suggested changing the logo to say "International Care What Ratchet Says Day."

Yea... SR was kind of a jerk to others.

Latias fan wrote:

Think we can hack in the server and change what we want?

Doubt it. It's probably possible, I mean, this server is probably old enough to be susceptible to some of the hacks only fixed in newer websites, but this isn't a template site like most. Spyrorocks may not be active right now, but at one point he REALLY took care of the site to the point where it'll be stable for another couple of years. I tried creating an api for the iPhone to be able to create a spyroforum app, but it didn't work out too well. Try it if you want, but I don't think you'll go very far:

66.197.220.230

Stormy · Sep 15, 2011 2:34 AM

Seems like you know something about it. I've always been kind of curious: how does one go about "hacking" a website anyway?

Neotyguy40 · Sep 15, 2011 3:29 AM

Stormy wrote:

Seems like you know something about it. I've always been kind of curious: how does one go about "hacking" a website anyway?

Depends on what you want to accomplish by "Hacking". But I like to avoid this term when it comes to unauthorized entry. I prefer to call it "Cracking" since most of the time it doesn't involve much true hacking anyways.

DDoS attacks are used if you just want to attack a website and temporarily shut it down. It involves gaining control of multiple computers (whether it be cracking to control them or multiple people using their computer), and using those computers to send billions of packets at once to attack the server. Computers and servers can only handle one request at a time in the form of packets. Generally, these packets can be handled by a server at millions of times per second, but a normal computer can still send many requests anyways. If you ever used a "ping" command line, just imagine a couple million of those being sent at once by about 50 different computers. Server is unable to handle all the requests, so the requests build up in the memory and get overloaded. This is generally what Anonymous does as their "hacking". Nothing is gained though, and it is very easy to track the attackers, especially if it doesn't work. Dozens of tools are made for this exact purpose. No experience is needed either though, so it becomes pretty popular in these terms.

One true way of cracking is to scan the ports of a server. Generally, port scanning is a pretty quick and easy process. However, the difficulty is finding out the vulnerabilities in the ports and exploiting them. Depending on the port, it will allow you to access different parts of the server. For example, a quick scan of the site shows these ports open:

Port 21
Port 22
Port 25
Port 53
Port 80
Port 8080

These are pretty common ports for websites actually. Port 21 is an FTP port, so now I know there is an FTP system on the server. Port 22 is an ssh port, which is a protocol for logging into and completely controlling the system. 25 is smtp, which is a simple email system. I am not sure what port 53 is though. Port 80 is what we connect to when we access the site (the http port). And lastly, 8080 is a very commonly open port on websites for caches. Note that while these MAY be the only ports open on the server, it is very possible there are more. I didn't bother scanning all of them (only 1-1000 and a few popular ports). Generally, other ports are only used for 3rd party applications such as online games.

Through these ports, you can exploit different vulnerabilities to access different parts of the computer. For example, accessing port 25 will allow you to recover all the emails sent to the server (if there are any). Accessing port 21 would allow you to upload and download files onto the server, and accessing port 22 will give you complete admin privileges to the system. However, all 3 of these are most likely password protected. You would need to find an exploit to put yourself into it. However, if you know the username/password, this would be as easy as simple using one of these URLs:

ftp://66.197.220.230:21/
ssh://66.197.220.230:22/
smtp://66.197.220.230:25/

Most computers and browsers nowadays will prompt you for a username and password for these, and if you know them: Bam, connected.

If you don't know the username/password, and don't know many exploits for the available ports (buffer overflows, bounce attacks, etc.), then you can find out the password by using the brute force method. What this does is basically sends a string as a password millions of times a second in hopes of guessing the correct one. For example, first it will send the string "a" as the password. Then "b", and when it gets all the way down, it will start again at "aa", "ab", etc. The problem with this is that it is very easy to prevent. Simply set up your computer to only respond to one ftp/ssh request every 1/1000 of a second and you already cut down the amount of passwords able to be guessed from millions of times per second to just a thousand. Technically, you could even make it respond only 1/10 of a second or even once every 10 seconds. This drastically makes it more difficult. Longer and more complex passwords also generally make it harder for computers to guess, since they must go further to get it done.

Now, I never tried doing this to any website before, but if I was to attack a website, these would be the kind of methods I would employ.

Latias fan · Sep 16, 2011 9:27 PM

Was it just me? Or did the site went down yesterday

Clock-la · Sep 16, 2011 9:50 PM

Latias fan wrote:

Was it just me? Or did the site went down yesterday

nope it was.

seems to be happaning alot hmm

Stormy · Sep 16, 2011 11:28 PM

@Neotyguy40 Wow, thanks for taking the time to write all that to answer my question. (No, this is not sarcasm; I really do appreciate it.) I guess I must not be as dumb as I thought, because I actually knew most of that already. tongue

And yeah, the site was down for me too. Wonder if SR even knows it's happening.

Neotyguy40 · Sep 17, 2011 1:26 AM

Stormy wrote:

@Neotyguy40 Wow, thanks for taking the time to write all that to answer my question. (No, this is not sarcasm; I really do appreciate it.) I guess I must not be as dumb as I thought, because I actually knew most of that already.
And yeah, the site was down for me too. Wonder if SR even knows it's happening.

No problem. It's important to also know the difference between "Cracking" and "Hacking". Cracking is when you try to break into a computer, and hacking is when you use or change something for a purpose not originally intended (not just limited to computers). It's also important to know that people like Anonymous are not hackers, or even crackers. They are generally called "Script Kiddies". A very condescending term for people who download and run scripts made by others. Anonymous only has a small handful of true crackers, and they make tools for the script kiddies to use. Generally these aren't even true cracks either. It's just denial of service attacks (usually Smurf Attacks in this case).

For all intents and purposes, brute force methods should be the LAST thing you should try to do in any case. In fact, I wouldn't even try them at all unless you have reason to believe the system has a short easy password. Exploiting a port is the quickest and cleanest way of gaining access to it. In cases of changing a website, you only really need to gain access to the FTP port. I've never actually hacked a website before (and I don't plan to XD), but from what I can tell the best way of finding an exploit for a protocol like this would simply be to just study it. It's old enough where there must be a lot of free info on it, and it's so widespread and open that there are probably many exploits that aren't fixed. Of course, the ssh would give you more control, but there is a reason it is used on practically every computer and server you will find: it's pretty *bleep*ing secure.

#26 Sep 10, 2011 1:21 AM

Re: Why the site was down

#27 Sep 10, 2011 1:29 AM

Re: Why the site was down

#28 Sep 10, 2011 3:19 AM

Re: Why the site was down

#29 Sep 10, 2011 10:31 AM

Re: Why the site was down

#30 Sep 12, 2011 7:09 AM

Re: Why the site was down

#31 Sep 12, 2011 8:30 PM

Re: Why the site was down

#32 Sep 12, 2011 8:49 PM

Re: Why the site was down

#33 Sep 12, 2011 8:51 PM

Re: Why the site was down

#34 Sep 12, 2011 9:09 PM

Re: Why the site was down

#35 Sep 12, 2011 9:10 PM

Re: Why the site was down

#36 Sep 12, 2011 9:44 PM

Re: Why the site was down

#37 Sep 12, 2011 10:03 PM

Re: Why the site was down

#38 Sep 12, 2011 10:41 PM

Re: Why the site was down

#39 Sep 13, 2011 6:29 PM

Re: Why the site was down

#40 Sep 13, 2011 6:55 PM

Re: Why the site was down

#41 Sep 13, 2011 7:00 PM

Re: Why the site was down

#42 Sep 13, 2011 7:05 PM

Re: Why the site was down

#43 Sep 13, 2011 9:15 PM

Re: Why the site was down

#44 Sep 13, 2011 10:53 PM

Re: Why the site was down

#45 Sep 15, 2011 2:34 AM

Re: Why the site was down

#46 Sep 15, 2011 3:29 AM

Re: Why the site was down

#47 Sep 16, 2011 9:27 PM

Re: Why the site was down

#48 Sep 16, 2011 9:50 PM

Re: Why the site was down

#49 Sep 16, 2011 11:28 PM

Re: Why the site was down

#50 Sep 17, 2011 1:26 AM

Re: Why the site was down

Board footer