| tsk... hacking a forum isn't too hard if is made using a cmq and not well-protected, and also forumfree had lots of problems some time ago since there were lots of "hacking crews" in the community... but nowadays is one of the most secure community in the world. a simple lamer can't break out such protections. that's because these are a sort of premade forum, managed not by the users, but by the forumcommunity staff.
BUT... other sites, made using a cms can be hacked pretty easly if there isn't a well made protection. it they have the control on the server and/or on the SQL database, they can also add some script to the original code, like a cookie grabber or an exploit.
using these codes, is possible to steal saved passwords and other stuff. they are encrypted using the MD5 code, but this system is a bit old and well known, and can be cracked without so much problems if the pass is pretty short and made only by alphanumeric symbols.
Hacking a computer is an harder stuff, but not impossible. there are lots of way... first of all, more the computer is outdated, more is simple. then... a simple way can be sending something to the victim. maybe also something that works as expected but includes malicious software. and bypassing the antivirus is just a piece of cake. Other way can simply be trought some exploit placed in a website. that is very hard, because nowadays this stuff is quite compleatly outdated, but can work on old computers.
Finally, obtaining the victim IP and then connecting is the easyer thing to do.
Trust me, an hacker isn't god. and a really skilled one probably has got more important stuff to do than break an old and buggy game like VC2. these are tricks, nothing more...
To protect yourself i have some suggestion: 1) if the server is yours, change the password used by FTP service and SQL one, then update all: apache, mysql, ssh, the ftp sever.... on a debian-based (linux) server the command is "sudo apt-get update" and then "sudo apt-get upgrade", on a windows server you have to update by hand. 2) use a different password for the sql connection and the FTP one 3) if you want to use a cms, i suggest you to use a well supported one, like joomla, phppbb... they are frequently updated, and are a bit more protected 4) use always "strange symbols" in the password, like £$@.- 5) use another accout for the forum admin, better if hidden. and don't use a name like "admin". also using as admin an account different than the first created can really help... so is quite impossiple for the hacker knowing wat is the admin account 6) give advanced privileges only to trusted people 7) some antihack script can help... for php sites a lot of time ago i used evilsentinel, made by the Evilsocket hacking crew lot of time ago. the project is outdated and discontinued, but better than nothing... 8) using a very good antivirus can be important. i suggest you avira or avast as free ones, or also kaspersky if you want to spend some money. 9) also a firewall can be VERY impostnt, also more important than the antivirus itself. my favorite one was ashampoo firewall, but also this is a discontinued project, and works only on 32-bit computers. 10) you can use also something like peerblock... it isn't a real firewall, but can really help. it's also free and light.
Ragazzi, non ho voglia di tradurvi in italiano tutto questo papiro, ma comunque i miei consigli valgono anche per voi. quindi se proprio fate a pugni con l'inglese chiedete aiuto a un buon dizionario o a un amico meno ignorante di voi e applicate i 10 comandamenti della sicurezza... XD
|