|
Silkroad Online
|
Silkroad Forums
|
Affiliates
|
|
|
View unanswered posts | View active topics
Author |
Message |
SuicideGrl
|
Post subject: Posted: Fri Jan 26, 2007 11:11 pm |
|
Retired Admin |
|
|
Joined: Jan 2006 Posts: 8004 Location: World of Warcraft
|
draquish wrote: I refuse to call this hacking.
it's not hacking. it's what the SRO community generally refers to as hacking though. i'd hazard to guess that 9/10 of so-called "ZOMG WTF H4x0rED" threads originated in actions like what was described here, and ver few are actually "hacks" by the textbook definition.
_________________
Thx IceCrash for my awesome sig :) SRF Name Change Policy Having trouble accessing SRF?
dom wrote: RuYi wrote: Are you from outer space or something? He's from Jersey. Close enough.
|
|
Top |
|
|
Draquish
|
Post subject: Posted: Sat Jan 27, 2007 12:33 am |
|
Elite Member |
|
|
Joined: Mar 2006 Posts: 6423 Location: ____
|
@ Lizard boy: Yes
@ SG: Exactly. Fake emails work wonders
|
|
Top |
|
|
judaiskariot
|
Post subject: Posted: Sat Jan 27, 2007 3:10 am |
|
Regular Member |
|
|
Joined: Jan 2007 Posts: 309 Location: Croatia
|
The funiest thing is: lots of people that play SRO are not native english speakers and 80% of them have their scret answer, username, email etc. in english (human stupidity - question in english = answer in english).
Isn't it more secure if u have everything in your native language (lot of dictionarys to find and use), and noone is asking you to answer truthfully on secret question (for ex. what's my pets name = idontrealyownapet or something but in urdu or siux or what ever)..
And another thing: i dont get it - how can people be so desperate to ask a complete stranger in game to buy him silk, gives him his ID and PW, and then logs off (cause scammer told him he must). And we are not talking here about lvl 1-20 chars but lvl 60+++...
_________________ Babel: lvl 64 Bow hybrid (hacked / retired) Zeus: lvl 90 Bow hybrid (fu.fa.) lvl 76 Cleric/warlock (on hold)
|
|
Top |
|
|
IguanaRampage
|
Post subject: Posted: Sat Jan 27, 2007 4:22 am |
|
Advanced Member |
|
|
Joined: Jul 2006 Posts: 2483 Location: Changing
|
draquish wrote: @ Lizard boy: Yes @ SG: Exactly. Fake emails work wonders
lmao
_________________ McCain, he (Barack Obama) said, will soon "be accusing me of being a secret communist because I shared my toys in kindergarten."
|
|
Top |
|
|
XuChu
|
Post subject: Re: [READ]SRO Account Hacks: How it's done and how to stop i Posted: Mon Jan 29, 2007 4:17 am |
|
Advanced Member |
|
|
Joined: Apr 2006 Posts: 2429 Location: here
|
whpwnage wrote: I've noticed a rash of hackers running about SRO - and truthfully, it pisses me off. I was confronted by one in-game, warning me to "watch out and don't try to offend the wrong people."
rofl, some nerd acting tough "yo n00bz i w1ll hax0r j00 w1th m31n 1337 hax0rz $k1llz, dul\l ..... w1t m3"
|
|
Top |
|
|
timtam
|
Post subject: Posted: Mon Jan 29, 2007 7:31 am |
|
Loyal Member |
|
|
Joined: Nov 2006 Posts: 1779 Location: Warcraft 3: The frozen throne
|
Nice ^.^
I just changed my sro password (old one was timtam =0)
That helped me alot, thanks man.
_________________ Us west (lordaeon)
ign: karanadon
|
|
Top |
|
|
IguanaRampage
|
Post subject: Posted: Mon Jan 29, 2007 10:31 pm |
|
Advanced Member |
|
|
Joined: Jul 2006 Posts: 2483 Location: Changing
|
if
SRF handle = username
or
You posted on official forums when you could quote people
and probably some other ways too.
_________________ McCain, he (Barack Obama) said, will soon "be accusing me of being a secret communist because I shared my toys in kindergarten."
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Tue Jan 30, 2007 6:51 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
J3FFz128 wrote: wouldn't you need their password to be able to login into silkroadonline.net and get there email addrress?
Not necessarily. That's why he suggested to use an email address you don't use anywhere else.
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
judaiskariot
|
Post subject: Posted: Sat Feb 03, 2007 10:11 pm |
|
Regular Member |
|
|
Joined: Jan 2007 Posts: 309 Location: Croatia
|
hahahhhaahhha Caio, good one..
_________________ Babel: lvl 64 Bow hybrid (hacked / retired) Zeus: lvl 90 Bow hybrid (fu.fa.) lvl 76 Cleric/warlock (on hold)
|
|
Top |
|
|
IguanaRampage
|
Post subject: Posted: Sat Feb 03, 2007 11:09 pm |
|
Advanced Member |
|
|
Joined: Jul 2006 Posts: 2483 Location: Changing
|
Caio wrote: Thanks for the information m8, I'll give it a try.
seeing as you are the botter, there's another, much easier way to hack you you know...
_________________ McCain, he (Barack Obama) said, will soon "be accusing me of being a secret communist because I shared my toys in kindergarten."
|
|
Top |
|
|
Nuklear
|
Post subject: Posted: Sun Feb 04, 2007 12:54 am |
|
Veteran Member |
|
|
Joined: Jun 2006 Posts: 3272 Location:
|
MastaChiefX wrote: This REALLY got a sticky? Wow general discussion has really gone down
I believe this was posted for the computer newbs and sro newbs to get knowledge from, not us smart people.
_________________
No government?!?! Oh, noes! Total chaos! Or would it be? http://freekeene.com/free-audiobook/
|
|
Top |
|
|
linange
|
Post subject: Posted: Sun Feb 04, 2007 3:25 pm |
|
Regular Member |
|
|
Joined: Feb 2007 Posts: 345 Location: World of P0121\10
|
thx for such a great work~
btw, i shall add one more thing.......
DON"T USE unreliable bots........
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Mon Feb 05, 2007 2:56 am |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
linange wrote: thx for such a great work~ btw, i shall add one more thing....... DON"T USE unreliable bots........
I believe you meant "DON'T USE bots...." at least I hope.
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
PR-Solja
|
Post subject: Posted: Mon Feb 05, 2007 6:07 pm |
|
Regular Member |
|
|
Joined: Nov 2006 Posts: 203 Location:
|
I have a question when you make up a new email addy for your SRO account does it have to be an active account. lets say I changed my email addy to 25OP90YU@gmail.com, now my question is does SRO accept that as a valid email adress if it doesn't exist at all?
_________________ If Knowledge Is Power, Then To Be Unknown Is To Be Unconquerable.
|
|
Top |
|
|
JackB4u3r
|
Post subject: Posted: Mon Feb 05, 2007 6:46 pm |
|
Frequent Member |
|
|
Joined: Jun 2006 Posts: 1115 Location: Sarajevo
|
PR-Solja wrote: I have a question when you make up a new email addy for your SRO account does it have to be an active account. lets say I changed my email addy to 25OP90YU@gmail.com, now my question is does SRO accept that as a valid email adress if it doesn't exist at all?
Probably... yes. Because they sure don't check your e-mail address the only thing why you need it for, is to recover you pass, and activate a new account.
About the topic:
Great! Some users have known this, the one who have already experienced hacking and similar in other games, but most don't know how to protect an account completely. As he said:
- random e-mail
- random user name
- random pass
- random secret answer
Write everything down on a paper and, you are safe & set to play the game
_________________ Stopped playing SRO a long time ago; still pr0.
|
|
Top |
|
|
CrazyAztec
|
Post subject: Posted: Tue Feb 06, 2007 10:18 am |
|
Valued Member |
|
|
Joined: Jan 2007 Posts: 419 Location:
|
I, too, REfuse to call this hacking!!!
ok. One of my friend is a hacker. Elite hacker and crack NASA's database and even goes face to face with the FBI!!! lol...can u see that. He hacked paypal and lots more idk what. To tell you the truth, he doesnt need any white hat tricks at all!!! simply just ..programming. oh yeah btw he even teach me a lil about hacking lol...send them a keylogger
im not pro-hax and pro-bots just interested on the both side of the community in SRo..or the NetWArriors!! hehe
_________________
I wanna wrote: i love fonts is size 24 and bold
|
|
Top |
|
|
judaiskariot
|
Post subject: Posted: Tue Feb 06, 2007 10:42 am |
|
Regular Member |
|
|
Joined: Jan 2007 Posts: 309 Location: Croatia
|
Elite hacker and crack NASA's database and even goes face to face with the FBI!!!
hahahah very funny
_________________ Babel: lvl 64 Bow hybrid (hacked / retired) Zeus: lvl 90 Bow hybrid (fu.fa.) lvl 76 Cleric/warlock (on hold)
|
|
Top |
|
|
oktaytheazer
|
Post subject: Posted: Thu Feb 08, 2007 3:16 pm |
|
Frequent Member |
|
Joined: Nov 2006 Posts: 1123
|
sweet.
another advise for sro users, read srf.
|
|
Top |
|
|
Wamphyri
|
Post subject: Posted: Tue Feb 13, 2007 1:15 pm |
|
Hi, I'm New Here |
|
Joined: Feb 2007 Posts: 1
|
CrazyAztec wrote: I, too, REfuse to call this hacking!!!ok. One of my friend is a hacker. Elite hacker and crack NASA's database and even goes face to face with the FBI!!! lol...can u see that. He hacked paypal and lots more idk what. To tell you the truth, he doesnt need any white hat tricks at all!!! simply just ..programming. oh yeah btw he even teach me a lil about hacking lol...send them a keylogger im not pro-hax and pro-bots just interested on the both side of the community in SRo..or the NetWArriors!! hehe
i don't know what drives peopel to make comments like this?
bruteforcing and dictionary attack are a style, i repeat "STYLE" of hacking
reffering to your "programming" aspect what do you think drives these attack, oh crap. programs
anyways for anyone who has been around since the b.b.s. days understand what this guys has said and is trying to do thank you very much for the descriptive information as the password adding ascii shift - #'s is an added bonus as well as numbers and characters longer the better as it take bruteforcing longer to run through all the combined keystrokes avalable
oh and one more thing so how long is your elite hacker buddy in jail for? using a metal spoon to drug yourself outta federal prison doesn't constitute as hacking nor does having big bubba for a cell mate lol
|
|
Top |
|
|
bugy92
|
Post subject: Posted: Tue Feb 13, 2007 1:22 pm |
|
Regular Member |
|
|
Joined: Oct 2006 Posts: 294 Location:
|
hey.....If they know your id and e-mail, your account isn`t theirs.....they steal need to know the secret question, who is difficolt to find out....how can you know someone`s secret question?? I forgot my own secret answer...It`s dificult to find secret answer...how can you???
_________________ Name:_Akon_ LvL:86 Guild:Romanasii Build:Full str archer(fire/light). Pet:HarryPotter(lvl 82)
Romanasii...Can`t live with them, can`t live without them...
98% of the teenagers will try or has tried smoking pot.If you're one of the 2% who hasn't, copy & paste this into your signature.
|
|
Top |
|
|
themeatwagon
|
Post subject: funny Posted: Thu Feb 15, 2007 3:30 am |
|
Hi, I'm New Here |
|
Joined: Sep 2006 Posts: 1
|
It's funny how naive some people can be, alls it take is someone with a properly worded sentence and no knowledge of the computer language of SQL to convince people that hacking silkroad can't be done. Hacking Silkroad is possible and it's done through blind SQL injection. Every website on the internet is suseptible to at least one form of SQL injection but some site like silkroad are....easier than others.
Beleive what you want doesn't hurt me in the least
_________________ IGN-The_Ruiner
Build-Hybrid int spear
Lvl-75
|
|
Top |
|
|
FuryAngle
|
Post subject: Posted: Thu Feb 15, 2007 4:03 am |
|
Regular Member |
|
|
Joined: Feb 2007 Posts: 253
|
This is far from hacking, this is just research and cracking and taking an educated guess at somebodys answer. It obviously doesnt work 100% and it doesnt even work 20%of the time, I would have to say you got lucky with the 5accounts that you tried. Aswell its much easier just to gain acces to the acctual host of sro.net, after all its just html, and if you take notice to the actual silkroadonline.net website, you will notice they are not security certified(if your are certified[protected] you have a little lock in the corner of the screen) this indicated all data is in code. Ie: if your id is idiot it would be stored in a code format and not in actual leters which can be read. sro.net is although certified by SSL (verisign secured) This is a company with very poor fire wall and defenses, their certificates can be easily intercepted and resent to sro.net, if i remeber right, it was 128 bit encryption/SSL encryption. If you gained even one certificate you could gain acces to their homepage, you can edit minor data this way, such as the incident when there was a notice on main page. I wonder who did that BTW They also have data stored in .txt format which just scares me. Well good thing for some people, bad thing for others
-And for gods sake, Can these noobs not register on SRF with their real ID and E-Mail that is used for SRO? SRF would take less than a day to data wipe
_________________ >Had to remove my Signature because idiots kept begging for accounts<
|
|
Top |
|
|
Z0mbs
|
Post subject: Posted: Thu Feb 15, 2007 5:52 am |
|
New Member |
|
Joined: Feb 2007 Posts: 33
|
I suggest you scan all files you download at http://www.virustotal.com and use SpyBot Search & Destroy before you install anything. To install SpyBot S&D first download and install WinRar and use the trial version forever. It seems like a lot of work but it's worth it to protect yourself.
This is an example of virustotal, scanning SpyBot Search & Destroy.
Last edited by Z0mbs on Sun Feb 18, 2007 2:23 am, edited 2 times in total.
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Re: funny Posted: Thu Feb 15, 2007 2:47 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
themeatwagon wrote: It's funny how naive some people can be, alls it take is someone with a properly worded sentence and no knowledge of the computer language of SQL to convince people that hacking silkroad can't be done. Hacking Silkroad is possible and it's done through blind SQL injection. Every website on the internet is suseptible to at least one form of SQL injection but some site like silkroad are....easier than others. Beleive what you want doesn't hurt me in the least
That's why Joymax needs a company like the one I work for to monitor them for attacks like these....
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
Nave47
|
Post subject: Re: funny Posted: Sat Feb 17, 2007 1:30 pm |
|
Frequent Member |
|
Joined: Oct 2006 Posts: 1038 Location: Inside your Mind
|
PR0METHEUS wrote: themeatwagon wrote: It's funny how naive some people can be, alls it take is someone with a properly worded sentence and no knowledge of the computer language of SQL to convince people that hacking silkroad can't be done. Hacking Silkroad is possible and it's done through blind SQL injection. Every website on the internet is suseptible to at least one form of SQL injection but some site like silkroad are....easier than others. Beleive what you want doesn't hurt me in the least That's why Joymax needs a company like the one I work for to monitor them for attacks like these....
And what company is it?
_________________
Bakemaster wrote: ... Now I have to spam up about 30 more posts tonight so I can go delete some of Nave47's posts.
|
|
Top |
|
|
Zeb
|
Post subject: Posted: Sun Feb 18, 2007 4:33 am |
|
Hi, I'm New Here |
|
Joined: Feb 2007 Posts: 22
|
I just searched all my info. I got 4 results for my login name, 0 results for my email and ~100 results for my password (not going to give the exact word). The weird thing is that my password is something I completely made up a few years ago based off of a swear sensor from a website I used to go to. None of the google results had anything to do with me though, all coincidental. Usually appearing on blogs where people were trying to be random.
My login name unfortunately is similar to my in-game name but I guess there's nothing to be done about that.
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Re: funny Posted: Sun Feb 18, 2007 11:55 am |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
Nave47 wrote: PR0METHEUS wrote: themeatwagon wrote: It's funny how naive some people can be, alls it take is someone with a properly worded sentence and no knowledge of the computer language of SQL to convince people that hacking silkroad can't be done. Hacking Silkroad is possible and it's done through blind SQL injection. Every website on the internet is suseptible to at least one form of SQL injection but some site like silkroad are....easier than others. Beleive what you want doesn't hurt me in the least That's why Joymax needs a company like the one I work for to monitor them for attacks like these.... And what company is it?
An IT security company in the tri-state area.
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
Who is online |
Users browsing this forum: No registered users and 15 guests |
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot post attachments in this forum
|
|