Login 
canadian forums
bottom
 
 
Canadian Forums

Author Topic Options
Offline
Site Admin
Site Admin
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 9883
PostPosted: Wed Mar 08, 2023 9:29 pm
 


Scanning access logs, I found the IP of the most recent hacker 212.133.223.33, banning it.


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Thu Mar 09, 2023 7:09 am
 


Scape Scape:
DrCaleb DrCaleb:
I just hate wasting 20 years of data.


I get that but even Pharmanet goes only 6 months/1 year before it archives. I am not saying we need to pull the plug on the site outright but the day to day functions are compromised and a reason for that is the site is not being kept up to date.


The code is compromised, the data is not. CKA is already virtualized in the cloud, which is half the battle. I've done this process a few times. Spin up a new web server and DB server (Linux!!) and take last nights backup and restore them to the new DB server. Point the old Web server at the new DB server, delete the vulnerable server. That's one vector taken care of - SQL injection and poisoning.

Get a new package for the front end, and put it on the web server. I suggest Mastadon, because it it open source and far more secure than phpBB. Mastadon also gives access to other Mastadon servers by authenticating against one server, and without sharing information between them. It allows a wider, secure experience. There is also more than just CKA that needs to be transitioned. Trev has more than one site on this server.

Then it's a matter of customizing the web server to meet needs. This would move the data, while dumping the poisoned code. There is of course, a lot more to the process, but this is the basic algorithm I've used for other sites. Trimming down data and old user accounts can of course be part of the process, but they don't have to affect moving to a more secure and robust set up.


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Thu Mar 09, 2023 7:11 am
 


Canadaka Canadaka:
Scanning access logs, I found the IP of the most recent hacker 212.133.223.33, banning it.


Turkey. :evil:


Offline
CKA Moderator
CKA Moderator
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 15046
PostPosted: Thu Mar 09, 2023 10:46 am
 


Canadaka Canadaka:
I got the site back working. Sorry I was on vacation in New Zealand and missed some messages.

New Zealand! I'm betting you had an awesome time.


Nice to see this site back up and running. For how long this time we shall see.


Offline
CKA Uber
CKA Uber
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 11431
PostPosted: Thu Mar 09, 2023 11:17 am
 


DrCaleb DrCaleb:
Scape Scape:
DrCaleb DrCaleb:
I just hate wasting 20 years of data.


I get that but even Pharmanet goes only 6 months/1 year before it archives. I am not saying we need to pull the plug on the site outright but the day to day functions are compromised and a reason for that is the site is not being kept up to date.


The code is compromised, the data is not. CKA is already virtualized in the cloud, which is half the battle. I've done this process a few times. Spin up a new web server and DB server (Linux!!) and take last nights backup and restore them to the new DB server. Point the old Web server at the new DB server, delete the vulnerable server. That's one vector taken care of - SQL injection and poisoning.

Get a new package for the front end, and put it on the web server. I suggest Mastadon, because it it open source and far more secure than phpBB. Mastadon also gives access to other Mastadon servers by authenticating against one server, and without sharing information between them. It allows a wider, secure experience. There is also more than just CKA that needs to be transitioned. Trev has more than one site on this server.

Then it's a matter of customizing the web server to meet needs. This would move the data, while dumping the poisoned code. There is of course, a lot more to the process, but this is the basic algorithm I've used for other sites. Trimming down data and old user accounts can of course be part of the process, but they don't have to affect moving to a more secure and robust set up.


Why I gave up running my own serverbank...take my money GoDaddy, let me earn it from people who can't find their Windows start button...


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Thu Mar 09, 2023 11:45 am
 


You aren't wrong. But Shopify is a better investment. ;)


Offline
CKA Uber
CKA Uber
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 11431
PostPosted: Thu Mar 09, 2023 1:49 pm
 


Yes. Shop online.
They delivered my new anvil, overnight from China for free to my cabin up the logging road from Bunghole BC.
And it was only $3.99

I miss those calls at work "What's wrong with your internet now?" from people sitting in the dark because the power's out for the last 6 hours....


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Thu Mar 09, 2023 3:26 pm
 


Or the guy who says 'Did you get my email that email wasn't working'?


Offline
CKA Uber
CKA Uber
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 11431
PostPosted: Thu Mar 09, 2023 10:14 pm
 


You made me feel better.
I thought it was just my town full of idiots.
They're everywhere

The Triumph of the Ignoroids


Offline
CKA Moderator
CKA Moderator
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 15046
PostPosted: Fri Apr 14, 2023 9:56 am
 


Things are still fucked up on this site. Look at the hits on the home page for news articles even yesterday.


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Fri Apr 14, 2023 9:59 am
 


Little DDOS yesterday, and this morning. Keeps things fresh. :(


Offline
CKA Moderator
CKA Moderator
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 15046
PostPosted: Fri Apr 14, 2023 12:18 pm
 


DrCaleb DrCaleb:
Little DDOS yesterday, and this morning. Keeps things fresh. :(

Why would anyone bother attacking this site? It's not like it's a goods or services site that would have an effect on customers and personal information.


Offline
CKA Moderator
CKA Moderator
User avatar
Profile
Posts: 49081
PostPosted: Fri Apr 14, 2023 12:39 pm
 


Strutz Strutz:
DrCaleb DrCaleb:
Little DDOS yesterday, and this morning. Keeps things fresh. :(

Why would anyone bother attacking this site? It's not like it's a goods or services site that would have an effect on customers and personal information.


Shits and giggles. They stopped someone from doing something.

Irrelevant that it wasn't anything important anyhow.


Offline
CKA Moderator
CKA Moderator
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 15046
PostPosted: Fri Apr 14, 2023 12:45 pm
 


DrCaleb DrCaleb:
Strutz Strutz:
DrCaleb DrCaleb:
Little DDOS yesterday, and this morning. Keeps things fresh. :(

Why would anyone bother attacking this site? It's not like it's a goods or services site that would have an effect on customers and personal information.


Shits and giggles. They stopped someone from doing something.

Irrelevant that it wasn't anything important anyhow.

Awwwww... and they don't even get a ribbon or medal for it... :roll:


Offline
CKA Uber
CKA Uber
 Vancouver Canucks


GROUP_AVATAR
User avatar
Profile
Posts: 11431
PostPosted: Fri Apr 14, 2023 12:47 pm
 


Because most of us haven't drank the Kool-Aid?
Pretty diverse political views, many of us remain 'traditional' conservatives who believe fiscal responsibility and slow steady progress rather than 'wokeism' and marching backwards are the actual political issues.


Post new topic  Reply to topic  [ 2410 posts ]  Previous  1 ... 157  158  159  160  161  Next



Who is online

Users browsing this forum: No registered users and 3 guests




 
     
All logos and trademarks in this site are property of their respective owner.
The comments are property of their posters, all the rest © Canadaka.net. Powered by © phpBB.