Messages posted by: trey

I somehow magaged to miss step 1.

Thanks anyway.

And lets hope this time no "turkish hacker" decide to show up.

Great job guys.

Sincerely, Trey

Every time I go to the guestbook, I get this:

Connection Error
--------------------------------------------------------------------------------

MySQL Error : Connection Error
Error Number: 2002 Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)
Date : Sun, February 5, 2006 15:27:02
IP : 68.94.147.163
Browser : Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Referer :
PHP Version : 4.4.2
OS : Linux
Server : Apache/1.3.33 (Unix)
Server Name : revolveyouth.com

I ran install.php, entered my database settings, and it said that the tables were created, ect., click here to go the admin panel. But then it says that error. Any ideas? The page is http://www.revolveyouth.com/guestbook/

BTW :: The SQL databases arent hosted on the same server as my site.

I just went and talked to the webmaster and apparently she dosen't know too much about computers. She just tells the company hosting the what to put on the site. When I first told about the hackers, her first reaction was "HACKERS! OH NO, I MUST FREAK OUT!" She had no idea what I was talking about when I told her about the patch. She said she would contact the hosting company, then have them contact me. I have a feeling that this could go on forever, and in the meantime the hackers will have complete control over my guestbook! What should I do?

In fact, just delete it for me. It wont happen again.
Thanks.

You still havent answered my question about how to get rid of the post.

Carbonize wrote:Personally tempted to just go in and patch his damn guestbook myself.

Hey, dont rush to any conclusions guys. I am not the webmaster of the site, only the guestbook. To patch the problem I would have to go talk to the webmaster, and I have been so busy I havent found the time. Today I am going to talk to her and tell her. Apparently she has no interest in computer computer security. But can you really patch the "damn guestbook" yourself, Carbon? If so, how? Apparently you seem to know a lot.

Right now I'm at school, so I dont have access to the server of my website. But now, a different Turkish hacking team hacked my guestbook. I will install the patch as soon as I get home today, but for now, tell me how to get rid of their post through the cpanel. BUT DONT DELETE IT, I NEED IT AS EVIDENCE. You told me before, but I'm kind of confused. Please help me out once more guys.

Here is the site.
The homepage is http://www.mavideniz.org/
and the hacking page is http://www.mavideniz.org/isko/iskorpitx.htm

Nope, but ill search my history and see if I can find it. Only small parts of it were English, so I couldn't understand it. But i got the general idea. But I have a question for Carbonize. Where did you learn C++, Java, HTML, ect., and how long have you been in to computers and programming?

I was wondering if you knew anything about this Turkey hacker. I checked out the site he set it up to redirect you to, and it seems like they are hosting some sort of hacking contest. They keep count of how many defacements they have done and stuff like that. And I wonder if this guy is watching my guestbook to see if I have taken down his post so he can slap 'er right back up there.

Also a funny tidbit. My initials are JTD.

And yes, I will patch the exploit problem.

Just wondering. How does the hacker post this message? Does the hacker use the exploit to gain admitance to the administrative page, then enable html, post his page, disable html, then simply log out? Or is he using some other way to post his little flag of Turkey? Knowing how he did it would be a great help.
Thanks.