Comments on: DoucheRant: Hello, 65.23.157.214… http://www.marketmentat.com/markets/oz/doucherant-hello-65-23-157-214/ Independent fundamental, technical and sentiment analysis of stocks and commodities Sat, 31 Jul 2010 03:05:16 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: <img src='http://www.marketmentat.com/WPBlog/wp-content/plugins/rpx/images/openid.png'/> GeoffreyTransom http://www.marketmentat.com/markets/oz/doucherant-hello-65-23-157-214/comment-page-1/#comment-430 GeoffreyTransom Sun, 05 Jul 2009 11:43:09 +0000 http://www.marketmentat.com/MarketRant/?p=1366#comment-430 Hey there WebSteer, That's precisely the same thing as was tried here - from the same address. Cheers GT Hey there WebSteer,

That's precisely the same thing as was tried here – from the same address.

Cheers

GT

]]> By: websteer http://www.marketmentat.com/markets/oz/doucherant-hello-65-23-157-214/comment-page-1/#comment-429 websteer Sun, 05 Jul 2009 08:55:04 +0000 http://www.marketmentat.com/MarketRant/?p=1366#comment-429 I have had the same Crock head do the same on one of my domains! 65.23.157.214 more info Windows 98, Internet Explorer 6 ns1.vnwebhosting.com Mozilla/4.0 (compatible; MSIE 6.0; Windows 98) 05/07/2009 09:44:26 //phpMyAdmin/main.php 05/07/2009 09:44:28 //phpmyadmin/main.php 05/07/2009 09:44:29 //pma/main.php 05/07/2009 09:44:33 //dbadmin/main.php 05/07/2009 09:44:33 //mysql/main.php 05/07/2009 09:44:34 //php-my-admin/main.php 05/07/2009 09:44:35 //myadmin/main.php 05/07/2009 09:44:36 //PHPMYADMIN/main.php I have had the same Crock head do the same on one of my domains!
65.23.157.214 more info
Windows 98, Internet Explorer 6

ns1.vnwebhosting.com
Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)
05/07/2009 09:44:26

//phpMyAdmin/main.php
05/07/2009 09:44:28

//phpmyadmin/main.php
05/07/2009 09:44:29

//pma/main.php
05/07/2009 09:44:33

//dbadmin/main.php
05/07/2009 09:44:33

//mysql/main.php
05/07/2009 09:44:34

//php-my-admin/main.php
05/07/2009 09:44:35

//myadmin/main.php
05/07/2009 09:44:36

//PHPMYADMIN/main.php

]]> By: <img src='http://www.marketmentat.com/WPBlog/wp-content/plugins/rpx/images/openid.png'/> GeoffreyTransom http://www.marketmentat.com/markets/oz/doucherant-hello-65-23-157-214/comment-page-1/#comment-428 GeoffreyTransom Thu, 02 Jul 2009 05:27:49 +0000 http://www.marketmentat.com/MarketRant/?p=1366#comment-428 Hi there db0, In this case, it showed up in StatPress' "Spy" function, but also in the server log for the 404 page since this hopeless gimboid's attempt was a straightforward use of "http://marketmentat.com/MarketRant//phpmyadmin/main.php" and variations on that theme (using all variants of phpmyadmin/pma/phpadmin and main.php/index.php). I've also got index and script protection (in htaccess), and some obfuscation in some php scripts. And of course, stripslashes (and sensible use of order by and limit in validation queries) to minimise risk of SQL injection exploits. You're never going to avoid good professionals though - that killed my Forums, and I won't reactivate them until they are exploit-proof. Script-kiddies are easy to deal with... and a well-developed global private market for extreme violence helps on the 'teaching them not to do it again' front. Cheers GT Hi there db0,

In this case, it showed up in StatPress' "Spy" function, but also in the server log for the 404 page since this hopeless gimboid's attempt was a straightforward use of "http://marketmentat.com/MarketRant//phpmyadmin/main.php" and variations on that theme (using all variants of phpmyadmin/pma/phpadmin and main.php/index.php).

I've also got index and script protection (in htaccess), and some obfuscation in some php scripts.

And of course, stripslashes (and sensible use of order by and limit in validation queries) to minimise risk of SQL injection exploits.

You're never going to avoid good professionals though – that killed my Forums, and I won't reactivate them until they are exploit-proof. Script-kiddies are easy to deal with… and a well-developed global private market for extreme violence helps on the 'teaching them not to do it again' front.

Cheers

GT

]]> By: db0 http://www.marketmentat.com/markets/oz/doucherant-hello-65-23-157-214/comment-page-1/#comment-427 db0 Wed, 01 Jul 2009 18:18:05 +0000 http://www.marketmentat.com/MarketRant/?p=1366#comment-427 What do you use to notice and stop exploits? I've been cracked in the past (through XSS in my case) and I'd love to know how to better protect myself. What do you use to notice and stop exploits? I've been cracked in the past (through XSS in my case) and I'd love to know how to better protect myself.

]]>