|
Silkroad Online
|
Silkroad Forums
|
Affiliates
|
|
|
View unanswered posts | View active topics
Author |
Message |
SuicideNz
|
Post subject: Posted: Tue Feb 20, 2007 8:07 pm |
|
Regular Member |
|
|
Joined: Dec 2006 Posts: 221 Location:
|
hey i appreciate wat ur trying to do but can ppl stop making these hacking posts
it is showing ppl how easy it is, so then more ppl go and try it out.
i got hacked and i was hoping it was u but no email came up so i wasnt so lucky.
_________________ Nick: SuicidalNz Build: Fire, Str, Bow Guild: Mushroom
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Tue Feb 20, 2007 8:36 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
SuicideNz wrote: hey i appreciate wat ur trying to do but can ppl stop making these hacking posts
it is showing ppl how easy it is, so then more ppl go and try it out.
i got hacked and i was hoping it was u but no email came up so i wasnt so lucky.
I think it's good to share these things with everyone. The more people know about these techniques, the better prepared they'll be to prevent them. It's just like with vulnerabilities in software. Microsoft releases security bulletins all the time informing users of various vulnerabilities, and how to protect themselves from being exploited. Of course Microsoft has plenty of security problems themselves, but just an example.
It's better than just keeping users in the dark and unable to protect themselves.
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
exality
|
Post subject: Posted: Wed Mar 07, 2007 10:13 pm |
|
Loyal Member |
|
|
Joined: Mar 2007 Posts: 1802 Location: Fuck if i know
|
see if you can catch me! dont repost the info tho pm it to me to see if your right
|
|
Top |
|
|
Dark0Archer0
|
Post subject: Posted: Thu Mar 08, 2007 1:54 pm |
|
Regular Member |
|
|
Joined: Feb 2007 Posts: 342 Location:
|
Posting this topic actually would give more potential hackers the information they need to be able to hack accounts successfully than help players keep their accounts safe. Legit players who don't hack would be less inclined to read this topic than someone who wants to learn.
Thankyou for broadening the hacker community, greatly appreciated.
_________________
SOS Pie FTW!!!
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Thu Mar 08, 2007 2:20 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
Dark0Archer0 wrote: Posting this topic actually would give more potential hackers the information they need to be able to hack accounts successfully than help players keep their accounts safe. Legit players who don't hack would be less inclined to read this topic than someone who wants to learn.
Thankyou for broadening the hacker community, greatly appreciated.
True, but with all the "OMG I got hacked" threads that we see here, we can just point that user to this thread so he/she can learn ways to help prevent it from happening in the future. This information is already out there in the hacker community, and anyone that wants to hack will find it whether this thread exists or not.
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
SazerX
|
Post subject: Posted: Wed Mar 14, 2007 2:48 am |
|
Hi, I'm New Here |
|
Joined: Mar 2007 Posts: 10
|
ok well since i dont have any other way to put this... u cannot stop hacking of accounts, there will always be an exploit in silkroad database, there is no possible way to completely kill all exploits in silkroad database, im sorry but there is no possible way to shut it all off, hackings will always occur its harsh but true, hopefully suicide dont ban me again, im just speaking my mind on the subject
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Wed Mar 14, 2007 2:01 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
SazerX wrote: ok well since i dont have any other way to put this... u cannot stop hacking of accounts, there will always be an exploit in silkroad database, there is no possible way to completely kill all exploits in silkroad database, im sorry but there is no possible way to shut it all off, hackings will always occur its harsh but true, hopefully suicide dont ban me again, im just speaking my mind on the subject
Any logical person would agree with you. Of course there will always be vulnerabilities in ANY piece of software. Efforts should still be made to identify and close as many vulnerabilities as possible. For the ones that can't be closed, compensating controls need to be put in place. Any residual risk from what's left just needs to be accepted. It's a constant battle. It's like that in any area of IT security.
*goes back to writing up security plans*
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
FuryAngle
|
Post subject: Posted: Wed Mar 14, 2007 3:58 pm |
|
Regular Member |
|
|
Joined: Feb 2007 Posts: 253
|
Theoreticaly you can "hack" into sro, by SQL injections or using their SSL certificates. But 99.99%of hacked accounts are not hacked, but rather cracked. it, email+id then generate the answer.
BTW SuicideNz i remeber you when I was level 21, you recruited me for your guild. Same with my friend. we got to 26 then switched servers Is your guild dead?
_________________ >Had to remove my Signature because idiots kept begging for accounts<
|
|
Top |
|
|
Dr_Etsh
|
Post subject: Posted: Fri Mar 16, 2007 7:47 pm |
|
Hi, I'm New Here |
|
|
Joined: Dec 2006 Posts: 24
|
|
Top |
|
|
Pan_Raider(`_´)
|
Post subject: Posted: Wed Mar 21, 2007 3:21 pm |
|
Banned User |
|
|
Joined: Jul 2006 Posts: 4737 Location:
|
There might be a trojan. But then it is acquired from some hacker source.
Trojans steal all you info about everything u do, the hacker gets all he needs to snuff you out.
_________________
|
|
Top |
|
|
lolster
|
Post subject: ahhh Posted: Fri Mar 23, 2007 11:17 pm |
|
Regular Member |
|
|
Joined: Mar 2007 Posts: 318
|
what kind of idiot would do that it so simple >.> lol
|
|
Top |
|
|
Stress
|
Post subject: Posted: Sat Mar 24, 2007 2:24 pm |
|
Ex-Staff |
|
|
Joined: Oct 2006 Posts: 4599 Location: Studying Computer Science, Vienna
|
I've had a bloddy 12-letter number+word password, a 11 letter username and a long e-mail address, but I still got hacked.... Now, my info is so tight, not even I know all of it, unless I read it from a paper. Learned my lesson *sighs*
_________________ Carry your cross, and I'll carry mine.
|
|
Top |
|
|
JackB4u3r
|
Post subject: Posted: Sat Mar 24, 2007 2:34 pm |
|
Frequent Member |
|
|
Joined: Jun 2006 Posts: 1115 Location: Sarajevo
|
tiglari51 wrote: I've had a bloddy 12-letter number+word password, a 11 letter username and a long e-mail address, but I still got hacked.... Now, my info is so tight, not even I know all of it, unless I read it from a paper. Learned my lesson *sighs*
On my new account i needed about 5 days of constant logging in, in order to remember my user and pass xD.
It's better to have a dam long pass and user name with combined letters and number that you can't remember, then a short pass and user name that is easy to remember.
_________________ Stopped playing SRO a long time ago; still pr0.
|
|
Top |
|
|
scorpius59
|
Post subject: Posted: Tue Mar 27, 2007 1:47 am |
|
Hi, I'm New Here |
|
|
Joined: Mar 2007 Posts: 16
|
yeh it's common sense stuff we've been warned about for years but hearing someone tell how EASY it is exposes the fact of how MANY are probably capable, mean, and bored enough to do it! And all over a friggin game account no less! Is there no place you can get away from this crap...
_________________ LiuKain
|
|
Top |
|
|
immortalkillerz
|
Post subject: Posted: Sun Apr 08, 2007 6:10 pm |
|
Hi, I'm New Here |
|
|
Joined: Mar 2007 Posts: 20 Location: meh shi ka
|
Why would you waste your time flaming him, he has probabally helped those who didnt know how to prevent hacking well...
Thanks for the guide.....
o.0
|
|
Top |
|
|
-]sKuLLz[-$phYnX
|
Post subject: Posted: Sun Apr 15, 2007 3:24 pm |
|
Casual Member |
|
Joined: Mar 2007 Posts: 72
|
This isnt hacking. This is cracking.
It's easy all you need is a program H*d** [Not saying the name]. Get the IP to both server's and login. pick a username and wait. heres what the program looks like using CMD.
Please Note: This isn't on SRO.
|
|
Top |
|
|
pineapples
|
Post subject: Posted: Sat Apr 21, 2007 9:14 pm |
|
Common Member |
|
|
Joined: Oct 2006 Posts: 108 Location: Jon's tummy.
|
Wow. Nice. Thanks.
_________________
I'M PEACEFUL
+ I borrowed this account from the old pineapples. shhhhhh!
|
|
Top |
|
|
JajaAmnem
|
Post subject: Posted: Sun Apr 29, 2007 12:34 pm |
|
Hi, I'm New Here |
|
Joined: Apr 2007 Posts: 6
|
wait so its based ont he question. i dont even know what question i picked and i know the answer i put was so random like it didnt even make sense. tyhat sucks if i lose my pw theres no way im gettin it back. lol
|
|
Top |
|
|
dyn3x
|
Post subject: Posted: Thu May 03, 2007 5:15 pm |
|
Hi, I'm New Here |
|
Joined: May 2007 Posts: 5 Location:
|
|
Top |
|
|
truez
|
Post subject: Posted: Mon May 07, 2007 11:59 am |
|
Frequent Member |
|
|
Joined: Jan 2007 Posts: 1288 Location:
|
JajaAmnem wrote: wait so its based ont he question. i dont even know what question i picked and i know the answer i put was so random like it didnt even make sense. tyhat sucks if i lose my pw theres no way im gettin it back. lol
Well its not just wit SRO .. even u email accounts or ur bank accounts have questions ...
So tink abt it
Next time make sure u save it up somewhere with the answers.
_________________ Cheers, Truez
Zero_Doom wrote: Quick Easy Fix Turn off your computer, beat it with a hammer. If it turns back on when prompted, turn it back off and do again until it doesn't come on again. Once that is taken care of, go get a book and learn about computers. NVDIA Drivers BSOD Download anything for FREE
|
|
Top |
|
|
austinwolfclaw
|
Post subject: Posted: Tue May 08, 2007 10:22 pm |
|
Hi, I'm New Here |
|
Joined: Sep 2006 Posts: 11 Location:
|
You know, a long long long time ago, someone gave me some usernames and passwords to try out ((i wanted to sic a bunch of tigers on a high lvl person)) only one username/password worked, however the character was a murderer, and it wasnt worth playing. so i left it behind, never to be touched again
|
|
Top |
|
|
DeathBeforeDishonor
|
Post subject: Posted: Mon Jun 11, 2007 11:00 am |
|
Active Member |
|
|
Joined: Jun 2007 Posts: 990 Location: Sitting at my computer?
|
|
Top |
|
|
hootsh
|
Post subject: Posted: Wed Jun 13, 2007 9:45 am |
|
Active Member |
|
|
Joined: Jun 2007 Posts: 541 Location: Cairo, Egypt
|
Thanks for the email tip..i could have easily fallen for that i'm a pretty social person ingame :p
There doesnt seem to be lots of friendly users around lol so i havent had a chance to spread my email around thank God, now i changed it
|
|
Top |
|
|
shadowman20875
|
Post subject: Posted: Fri Jun 15, 2007 1:16 am |
|
|
First, whoever moved this to Guides I really think it should go back on general, as it is a must read, and most people go to general first.
Second, for your SRO password and username, ADD A CAPITAL LETTER. Helps A LOT with brutes.
|
|
Top |
|
|
austinwolfclaw
|
Post subject: Posted: Sat Jun 16, 2007 6:27 pm |
|
Hi, I'm New Here |
|
Joined: Sep 2006 Posts: 11 Location:
|
shadowman20875 wrote: First, whoever moved this to Guides I really think it should go back on general, as it is a must read, and most people go to general first.
Second, for your SRO password and username, ADD A CAPITAL LETTER. Helps A LOT with brutes.
Last i checked you could only use lowercase letters.....
_________________ Lvl 21 Swordie
Alps Server
|
|
Top |
|
|
WhiteSun
|
Post subject: Posted: Tue Jun 19, 2007 3:02 pm |
|
Hi, I'm New Here |
|
Joined: Jun 2007 Posts: 2
|
this guide came to late for me
|
|
Top |
|
|
leetest
|
Post subject: Posted: Wed Jun 27, 2007 3:42 pm |
|
Hi, I'm New Here |
|
|
Joined: Jun 2007 Posts: 16
|
for some reason, when i try to find the pw of my friend using the "forget ur id and password" link on the homepage, it doesn't work
is it just me?
|
|
Top |
|
|
PR0METHEUS
|
Post subject: Posted: Wed Jun 27, 2007 5:37 pm |
|
Senior Member |
|
|
Joined: Aug 2006 Posts: 4093 Location: Earth
|
leetest wrote: for some reason, when i try to find the pw of my friend using the "forget ur id and password" link on the homepage, it doesn't work
is it just me?
Last I checked, that link only works in Internet Explorer.
Btw, stop trying to break into your friend's account!
_________________ Missing the good times in SRO...
SRO: 1x, STR Blader (Thebes) 54, STR blader (Venice) 0x, INT wizard (Venice) 19, INT spear (Venice) 34, STR rogue/bard (Venus) 0x, STR blader (Venus) 8x, INT bard/cleric (Gaia)
|
|
Top |
|
|
yesyes
|
Post subject: Re: [READ]SRO Account Hacks: How it's done and how to stop i Posted: Sat Aug 04, 2007 11:12 am |
|
Common Member |
|
|
Joined: Jul 2007 Posts: 163 Location:
|
whpwnage wrote: I dug up his secret question, I prepared a dictionary attack.
A dictoionary attack? I htought you don't use programs. Or is that a dictionary attack when you open a dictionary and write in all the words from A to Z?
_________________
|
|
Top |
|
|
GeoHolyhart
|
Post subject: Posted: Mon Aug 06, 2007 3:29 am |
|
Hi, I'm New Here |
|
|
Joined: Aug 2007 Posts: 9 Location: The Moon
|
What amazes me, is why Joymax continues to let this happen. They could do the following to completely stop this form of account stealing.
1. Never allow e-mails to be publicized
2. Don't allow users to create characters with names similar to there account name.
3. Require passwords be numbers and letters over 8 characters.
4. Secret hints should be treated as a 2nd passwords, so instead of using something as dumb as "Birthplace: California" something like "Birthplace:southcali85".
This topic may seem to provoke more account crackers, which is true, but it gives the poor souls who don't know these kind of things a fighting chance as well, since they're the first ones targeted. Still I stand by my comment, that this should be Joymax's priority not ours. I know they're making pretty good money with the shear amount of silk people buy, so instead of constantly opening servers, they should try strengthening there security. Even though what I mentioned above costs nothing.
_________________
|
|
Top |
|
|
Who is online |
Users browsing this forum: No registered users and 26 guests |
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot post attachments in this forum
|
|