not sure wut to post this but...

ive been having problems with this guy hacking all of my site, ive switched many times but he somehow finds my sites. I was wondering if there is a code or a way I could prevent him from hacking my current website?

I dont know too much about it, someone mentioned somethin about encrypting or something...

Could anyone help please, its a matter of time before he does it again lol...

I dont know too much about it, someone mentioned somethin about encrypting or something... how is he hacking you.

well at 1st it was a proboard site, the naother similiar site...

but im sure he will try to hack my current site....which by the way is located at www.lethalp.cjb.net

im not sure how hes doing it, i just wish i could do something to stop him from doing it...

why would he want to hack you, and what is being lost. If you are not transmitting secure data and he is not harming your data what is the problem, and why do you care? What is so important that someone would go out of their way to hack you. Real hacking is not just something that takes 3 seconds to do, and large hosts and things do not leave doors wide open.

I myself would most definetely care if someone was hacking my site/computer.

It matters not whether data is lost but last I heard, hacking is a crime.
Besides, even if someone is hacking for "fun" this could leave a hole open for a more dangerous individual to come in.

However if you have a forum or something, it would be wise to make sure peoples IP's are not showing.

PeOfEo..it sounds like you are having a bad day ;)

Originally posted by Dark Dragon
I myself would most definetely care if someone was hacking my site/computer.

It matters not whether data is lost but last I heard, hacking is a crime.
Besides, even if someone is hacking for "fun" this could leave a hole open for a more dangerous individual to come in.

However if you have a forum or something, it would be wise to make sure peoples IP's are not showing.

PeOfEo..it sounds like you are having a bad day ;) no, i just question weather the data is worth hacking. I mean unless you have something to hack in the first place, why would you have a hacker. If someone changes your account pass on you then you know you have one but other then that how would you know if you are not using passwords on your site or anything. If you feel someone is hacking your account with your host take it up with them, its their security flaw.

no, i just question weather the data is worth hacking

That really wasn't the point I was trying to make; about whether the data was "valuable" or not.

By that standard one could say I shouldn't get upset if someone breaks into my house if they didn't steal anything, just snooped.

However I was wondering if a firewall can prevent that or perhaps imbedding some coding into the web documents?

I know the inquiry sounds stupid but I don't know if it is possible, that is why I ask. ;)

Originally posted by Dark Dragon
no, i just question weather the data is worth hacking

That really wasn't the point I was trying to make; about whether the data was "valuable" or not.

By that standard one could say I shouldn't get upset if someone breaks into my house if they didn't steal anything, just snooped.

However I was wondering if a firewall can prevent that or perhaps imbedding some coding into the web documents?

I know the inquiry sounds stupid but I don't know if it is possible, that is why I ask. ;) What is there to hack. There are no logins on his site, there is no behind the scenes area. The only thing to hack is the host, and that is their problemm there is nothing you can do to secure that. You missed the point of what i said what is there to hack.

i was also wondering if there was a code that i could embed to make it harder...

hes hacking me because i banned him from my site, then him and a few of his friends hacked my site and sent out emails to all my members sayin that my site and his had merged and locked me out fo my site..i moved sites and he/they yet again got into my site and locked me out...

i emailed the sites host but they never replied back...

Originally posted by werd
i was also wondering if there was a code that i could embed to make it harder...

hes hacking me because i banned him from my site, then him and a few of his friends hacked my site and sent out emails to all my members sayin that my site and his had merged and locked me out fo my site..i moved sites and he/they yet again got into my site and locked me out...

i emailed the sites host but they never replied back... You mean you banned him from your groups thing? If those login scripts and the data bases are controled by your host then it is your hosts problem. There are not client side scripts you are going to be able to embed to make anything more secure.

Believe me some script kiddies have tried hacking me for fun obviously they don't get that far and they will face criminal prosecution by myself but still they try.

Once even the Intelligence Service tried getting into my website but I don't really know what they thought they'd achieve perhaps they wanted to learn XHTML.

As for your script kiddies note down their IP Blocks and inform their ISP's of their activity it is a criminal offence under the "Computer Misuse Act 1990".

A good lawyer can handle the prosecution and damage recovery for you. As to how to secure the site, have you determined your attackers' IP addresses? (May have to ask for the server logs if you don't have these already.) Secondly, are you running under Apache? If so you can use .htaccess to lock out IP address ranges.

You missed the point of what i said what is there to hack.

Nah..I am quite well aware of your point, I was merely attempting to convey that just because there is "nothing to hack" doesn't make the action less wrong. I am speaking purely of the action itself, not the content.

Originally posted by Dark Dragon
You missed the point of what i said what is there to hack.

Nah..I am quite well aware of your point, I was merely attempting to convey that just because there is "nothing to hack" doesn't make the action less wrong. I am speaking purely of the action itself, not the content. No you are missing my point completly. If this person did not make the login system or anything like that and all of the users content is in the open then there is nothing to hack. Now if they are hacking your account on the host then they are hacking the hosts system and the host needs to stepup and work on its security holes.

It sounds to me like you could possibly have a keylogger on your computer.

Originally posted by Dark Dragon
You missed the point of what i said what is there to hack.

Nah..I am quite well aware of your point, I was merely attempting to convey that just because there is "nothing to hack" doesn't make the action less wrong. I am speaking purely of the action itself, not the content.

wut peo means, incase u dont understand yet, is that there is nothing on that site that is possible to hack. if you dont have a database, there is really nothing to hack.
-Dan

exactly, thats what makes me think hes been keylogged. It's the easiest way to "hack". You send someone a file and say 'teeheee check out this awesome pic!' or something. ;) The person opens the file, and the hacker can now see everything the victom types. :(

Originally posted by The Cheat
exactly, thats what makes me think hes been keylogged. It's the easiest way to "hack". You send someone a file and say 'teeheee check out this awesome pic!' or something. ;) The person opens the file, and the hacker can now see everything the victom types. :( if this is the case it is time to get a firewall (preferably hardware) to prevent that keylogger or trojan from sending packets back to the person that put it there. Your host should also be using https so that the data is encrypted and it is being sent over on its own socket to prevent hackers from being able to intercept it. If your host is not using https then its time you stopped paying them (if you pay) and considered a new host. A host that does not take its security seriously should not be taken seriously its self.

Originally posted by PeOfEo
if this is the case it is time to get a firewall (preferably hardware) to prevent that keylogger or trojan from sending packets back to the person that put it there. Your host should also be using https so that the data is encrypted and it is being sent over on its own socket to prevent hackers from being able to intercept it. If your host is not using https then its time you stopped paying them (if you pay) and considered a new host. A host that does not take its security seriously should not be taken seriously its self.
Yep, hardware firewalls are good. However they most likely wont stop the outgoing packets with the data the keylogger logged. I'd recomend running a scan with antivirus software. Then install zonealarm free version to be able to monitor your outgoing traffic. Also it isn't a bad idea to get behind a hardware firewall if you arent already. ESPECIALLY if you are on a broadband always-connected connection.

Originally posted by The Cheat
Yep, hardware firewalls are good. However they most likely wont stop the outgoing packets with the data the keylogger logged. I'd recomend running a scan with antivirus software. Then install zonealarm free version to be able to monitor your outgoing traffic. Also it isn't a bad idea to get behind a hardware firewall if you arent already. ESPECIALLY if you are on a broadband always-connected connection. I have broadband, a 3mb dl rate, but I am in a darned dmz lol. The firewall on my router is great, it stops all potential threats, even mohaas and starcraft! :o