Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [hacking]

Hacking is the violation of server or network security via exploitation of weaknesses in that security.

Hacking is the violation of server or network security via exploitation of weaknesses in that security.

Some of the most common ways security may be compromised include:

  • Social engineering, in which a person is persuaded to give up sensitive information such as passwords
  • Exploiting unpatched or not generally known (0-day) security holes in software
  • Brute force, that is, trying common usernames and passwords repeatedly until something works

Less commonly, hacking refers to the uncommonly creative solution of a software or hardware problem. Some see this original definition as the correct one and wish to preserve it, though they seem to be fighting a losing battle.

Detailed security questions and answers which do not fit at Server Fault may be welcome at IT Security Stack Exchange.

482 questions
72
votes
15 answers

Should I respond to an "ethical hacker" who's requesting a bounty?

I run a small internet based business from home and make a living at it to feed my family, but I'm still a one man show and internet security is far from my area of expertise. Yesterday I received two emails from a guy who calls himself an "ethical…
Vincent
  • 808
17
votes
3 answers

How can I detect unwanted intrusions on my servers?

How are other admins monitoring their servers to detect any unauthorized access and/or hacking attempts? In a larger organization it's easier to throw people at the problem but in a smaller shop how can you effectively monitor your servers? I tend…
Paul Mrozowski
  • 415
4
votes
1 answer

How to get the identity of the owner of a box trying to hack my server

I saw in the logs of my server that an IP was repeatedly trying to logon as sa onto my SQL Server. The ip is: 75.145.243.233 it resolves back to 5-145-243-233-richmond-va.hfc.comcastbusiness.net. Is there anyway to find out from Comcast who owns…
Peter
4
votes
1 answer

MySQL Database Being Tampered Without Injection

My MySQL database has been getting hacked, and I cannot find the loophole. I have solid protection in PHP to prevent against injection and the hacker himself has communicated with me and says he is not hacking by means of injection. Without…
Tai Kwangi Chicken
  • 141
3
votes
1 answer

got weird email with server data. Does this mean I got hacked?

I just got the following "undelivered message" to my postmaster@mydomain.com Does this mean someone might have tried to (or succeeded in) hacking me? (I replaced certain parts in the below for privacy purpose, it's not exactly 100% the original I…
Kolja
  • 199
3
votes
1 answer

Hacked by Black Jaguar

My Website has been Hacked by Black Jaguar... Help?
Dan Hanly
  • 127
  • 1
  • 10
2
votes
1 answer

Someone try to hack my site, want to understand the log

I have a wordpress site hosted on CentOS 6. After see the following access log, I checked the server, it seems ok. Can anyone explain what does this guy trying to do? Did they get what they want? I have disabled allow_url_include, and restricted…
garconcn
  • 2,418
  • 8
  • 36
  • 46
1
vote
2 answers

How can a sysadmin trap potential attackers?

After honeypots comes IBM's Billy Goat to lock horns with malicious coders. So, is there any other approach to detect and collect potential attacks from malicious people? What is your security plan against some kind of attacks? Why do many attackers…
Ali Mezgani
  • 3,860
1
vote
0 answers

Website ftp details hacked by Alsancak Tim

My web files are hacked by Alsancak Tim. some ine is hacked ftp username and password. then going to delete all files and updated his own file. Now i am looking my website, it display a new index.html file (added by hacker). but mysql database is…
user2386050
  • 11
1
vote
1 answer

Removing redirection to antivirus in a hacked web page

Possible Duplicate: My server's been hacked EMERGENCY After some sort of hacking, the main URL of my website now redirects to a fake antivirus page. How can I remove this thing?
glabus
1
vote
2 answers

My cPanel site was hacked - any advise on what to do?

My cPanel site was hacked. The attacker has changed my cPanel password. How could he do that and how can I gain access to my site back? Thanks.
Moutaz
1
vote
0 answers

Server hacked? Binary /usr/lib/os-release!

Server: Ubuntu 20.04.5 LTS I was going to generate an SSL certificate as usual with certbot but suddenly it started to give a weird error: An unexpected error occurred: UnicodeDecodeError: 'utf-8' codec can't decode byte 0x99 in position 0: invalid…
Darko Romanov
  • 145
  • 1
  • 2
  • 10
0
votes
1 answer

Website visitors are still being redirected after "fixing" the damage from a conditional redirect website attack

BACKGROUND A website of mine was recently the target of a conditional redirect attack. PHP code was added to my pages to redirect visitors. The .htaccess file was edited to redirect visitors. I've re-uploaded my website so the compromised PHP…
Shannon Matthews
  • 99
0
votes
3 answers

apache2 server logs - weird activity?

I was going through apache log, and I thought some of the access logs seemed suspicious... I'm not pro, just do server administration as hobby :) so I wonder if I should take some steps... 86.138.17.122 - - [20/May/2012:12:53:14 +0200]…
user113400
0
votes
0 answers

Hacked website and cannot delete hacked file

First of all, I might be on the total wrong place to post this, but my researches lead to here and I've found "similar" questions being asked here. But still since I lack knowledge in this subject, I could be wrong. Just let me know if it doesn't…
JVol
  • 1
1
2