Eurocardsharing

Go Back   Eurocardsharing > General Discussions > General Discussions > Chat

Chat Discussion, Stolen cfg's posting usernames. Poll, closing in 2 weeks! at General Discussions forum; The idea is to open a topic in bad peer section with usernames who are hacked/have their cfg's stolen. This ...

View Poll Results: Create such a topic? Don't vote before reading comments
Yes 25 83.33%
No 3 10.00%
Don't care, i always check my peers their security 2 6.67%
Voters: 30. You may not vote on this poll

Reply
 
LinkBack Thread Tools Display Modes
Stolen cfg's posting usernames. Poll, closing in 2 weeks!
Old
  (#1)
morte
Guest
 
morte's Avatar
 
Offline
Posts: 10,804

Level: 66 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 492 / 1640
Magic: 3601 / 52830
Experience: 62%

Thanks: 4,388
Thanked 6,243 Times in 2,101 Posts
Join Date: May 2007
Stolen cfg's posting usernames. Poll, closing in 2 weeks! - 24-October-2010, 12:28

The idea is to open a topic in bad peer section with usernames who are hacked/have their cfg's stolen.
This causes their peers dns-es to be posted online on other websites.
The users are not bad peers but do oppose a security risk to their peers.
Users on the list can request removal when they have proven they are secure for further hacking.
CLOSE PORT 80 (and never put directly on the internet and do not put in DMZ)!

The "rules":
Topic will be modded, so every post needs to be approved by a staff member and can edit/validate it before getting public
The published cfg's must be from october 2010 and newer

dns-es won't be posted, those are never from the person in question but from his/her peers.
Usernames in the c-line will be posted

There is 1 side effect, this could cause more abuse on posted c-lines

This is a poll and depending on the majority of votes this topic will be created or not.Poll closes in 2 weeks.

(24-October-2010 12:31)
p.s. perhaps read first all comments before voting, depending on feedback the "rules" could change a bit

(24-October-2010 14:09)
If there are concerns, suggestions, than dont hesitate to post


Link to topic: http://www.eurocardsharing.com/f265/...blished-279365


Hardware: DM500S, MaximumTorodial T90
Sat positions: 4.8,13.0,19.2,28.2
Software: Pli Jade 3 with X-line Skin
CAM: Cccam 2.1.3
NOT LOOKING FOR SHARES
ECS irc Chatroom
Cccam Collection topic
http://virusscan.jotti.org/en



Use the ====>>>><<<<==== when you are happy with a post instead of replying to a post (rule #11 and gets you even banned)

Last edited by morte; 10-November-2010 at 07:25.. Reason: Automerged Doublepost
   
Reply With Quote
Old
  (#2)
faccione
┌∩┐(◣_◢)┌∩┐
 
faccione's Avatar
 
Offline
Posts: 334

Level: 17 [♥ Bé-Yêu ♥]
Life: 0 / 401
Magic: 111 / 13521
Experience: 7%

Thanks: 48
Thanked 158 Times in 71 Posts
Join Date: Nov 2006
Location: Montecarlo
24-October-2010, 14:52

Morte could you please post an example on how the structure of the information will be posted in the thread?

Stating that stolen/lost/disclosed lines is a very big issue, IF I correctly understood the way, I have some concerns about the creation of a list of lines.

Disclosing just the username it's not enough, the most common way is to use the nickname as username adding some additional small details about the provisioning.
So if I find FACCIONESKY as disclosed username on which of my peers should I charge the disclosure?

Probably I'm wrong and having an example this idea would be more clear and easy to understand.

I didn't vote yet.
   
Reply With Quote
Sponsored Links
Old
  (#3)
morte
Guest
 
morte's Avatar
 
Offline
Posts: 10,804

Level: 66 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 492 / 1640
Magic: 3601 / 52830
Experience: 62%

Thanks: 4,388
Thanked 6,243 Times in 2,101 Posts
Join Date: May 2007
24-October-2010, 15:33

Stolen lines are posted on several forums, we wont do that to prevent more abuse.
The intention is only to post the username of the hacked person.
If you see stolen lines you see
C: dns port userX pass
C: dns port userX pass
The dns is from a peer from userX, as you say its common to use the nickname in the user/pass
In this case it's obvious that userX has his cfg stolen, so listed will be: userX

The intention is again to raise a constant awareness about security and to check your peers.
I dont share with people with port 21/80 forwarded to their dreambox, since password can be bypassed in many cases


Hardware: DM500S, MaximumTorodial T90
Sat positions: 4.8,13.0,19.2,28.2
Software: Pli Jade 3 with X-line Skin
CAM: Cccam 2.1.3
NOT LOOKING FOR SHARES
ECS irc Chatroom
Cccam Collection topic
http://virusscan.jotti.org/en



Use the ====>>>><<<<==== when you are happy with a post instead of replying to a post (rule #11 and gets you even banned)

Last edited by morte; 24-October-2010 at 15:35..
   
Reply With Quote
Old
  (#4)
57Southbound
Senior Member
 
57Southbound's Avatar
 
Offline
Posts: 103

Level: 9 [♥ Bé-Yêu ♥]
Life: 0 / 203
Magic: 34 / 5623
Experience: 15%

Thanks: 10
Thanked 18 Times in 11 Posts
Join Date: Dec 2008
24-October-2010, 15:45

Not a bad idea... but there wouold need to be some check/proof. Otherwise, someone could post a user x name - just to be malicious.
   
Reply With Quote
Old
  (#5)
morte
Guest
 
morte's Avatar
 
Offline
Posts: 10,804

Level: 66 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 492 / 1640
Magic: 3601 / 52830
Experience: 62%

Thanks: 4,388
Thanked 6,243 Times in 2,101 Posts
Join Date: May 2007
24-October-2010, 20:41

I expect a link to the source posted, posts are moderated so staff can check first, remove a link and approve the post


Hardware: DM500S, MaximumTorodial T90
Sat positions: 4.8,13.0,19.2,28.2
Software: Pli Jade 3 with X-line Skin
CAM: Cccam 2.1.3
NOT LOOKING FOR SHARES
ECS irc Chatroom
Cccam Collection topic
http://virusscan.jotti.org/en



Use the ====>>>><<<<==== when you are happy with a post instead of replying to a post (rule #11 and gets you even banned)
   
Reply With Quote
Old
  (#6)
Laganini
Error
 
Laganini's Avatar
 
Offline
Posts: 108

Level: 9 [♥ Bé-Yêu ♥]
Life: 0 / 210
Magic: 36 / 5069
Experience: 40%

Thanks: 34
Thanked 48 Times in 31 Posts
Join Date: Feb 2010
25-October-2010, 14:19

good idea Morte, if i got it right 'procedure' will be:

- find my dns on eg. google and find line with my dns
- see from what user is that line
- make a post in 'stolen cfg's' topic with name of a user and link to webpage where line is
- wait for that member to fix problem (close ports...)
- continue sharing with that member now when he is secure

And of course, before exchange lines check if that user is on 'not safe' list

Cheers
laganini

Edit: maybe it will be good to always update first post and keep 'hacked server/user' list updated. That way it will be easy to check if new peer is on that list... on other hand it will be more work for the staff... and list can grow big...



Last edited by Laganini; 25-October-2010 at 14:28..
   
Reply With Quote
The Following 2 Users Say Thank You to Laganini For This Useful Post:
jakas (25-October-2010), morte (25-October-2010)
Old
  (#7)
morte
Guest
 
morte's Avatar
 
Offline
Posts: 10,804

Level: 66 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 492 / 1640
Magic: 3601 / 52830
Experience: 62%

Thanks: 4,388
Thanked 6,243 Times in 2,101 Posts
Join Date: May 2007
25-October-2010, 19:34

first post editing is a good idea, but depends how busy it gets, i hope that topic is going very slow and that no one wants their name on it so they finally take the needed security steps
Username removal is requested by the user self or the reporter
We need a confirmation that all is ok


Hardware: DM500S, MaximumTorodial T90
Sat positions: 4.8,13.0,19.2,28.2
Software: Pli Jade 3 with X-line Skin
CAM: Cccam 2.1.3
NOT LOOKING FOR SHARES
ECS irc Chatroom
Cccam Collection topic
http://virusscan.jotti.org/en



Use the ====>>>><<<<==== when you are happy with a post instead of replying to a post (rule #11 and gets you even banned)
   
Reply With Quote
Old
  (#8)
srkistt
Member
 
srkistt's Avatar
 
Offline
Posts: 88

Level: 8 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 0 / 183
Magic: 29 / 4654
Experience: 35%

Thanks: 91
Thanked 19 Times in 14 Posts
Join Date: Sep 2009
Location: 4551' N | 2028' Е
Question 25-October-2010, 21:00

as far as i've investigated cases of card-exchange-data un-authorized usage, besides info's stolen from someone's device(s), i've also seen aC-lines somehow extracted (i'm not an expert, but maybe it's possible with some kind of md5-decrypter), i strongly suspect, from pm's of some forum(s) database...

maybe would be usefull to, after a undeniable confirmation of course, somehow point-out those high-risk data-exchange forums too...?
   
Reply With Quote
Old
  (#9)
cs0963
Permanent Banned
 
cs0963's Avatar
 
Offline
Posts: 8

Level: 1 [♥ Bé-Yêu ♥]
Life: 0 / 18
Magic: 2 / 410
Experience: 73%

Thanks: 1
Thanked 1 Time in 1 Post
Join Date: Oct 2010
25-October-2010, 22:45

i think if people leave port 80 open and dont change there server login and password(dreambox mainly),then anybody with a small amount of info say an ip address can steal there whole cccam config.
Also in cs studio when i add a peer i check there ports myself and then let them know there open for trouble if passwords arent set etc

Last edited by cs0963; 25-October-2010 at 22:48..
   
Reply With Quote
Old
  (#10)
morte
Guest
 
morte's Avatar
 
Offline
Posts: 10,804

Level: 66 [♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥♥ Bé-Yêu ♥]
Life: 492 / 1640
Magic: 3601 / 52830
Experience: 62%

Thanks: 4,388
Thanked 6,243 Times in 2,101 Posts
Join Date: May 2007
26-October-2010, 00:03

1 thing is for sure a source
unprotected dreamboxes and a big part of pass protected dreamboxes
Others are a hunch, online c-line generators am not a fan of either all info put there could be abused, if using one, put fake details just to see how settings should be put.
Being a member on a forum that posts those c-lines is questionable if you should activly share on such a board


Hardware: DM500S, MaximumTorodial T90
Sat positions: 4.8,13.0,19.2,28.2
Software: Pli Jade 3 with X-line Skin
CAM: Cccam 2.1.3
NOT LOOKING FOR SHARES
ECS irc Chatroom
Cccam Collection topic
http://virusscan.jotti.org/en



Use the ====>>>><<<<==== when you are happy with a post instead of replying to a post (rule #11 and gets you even banned)
   
Reply With Quote
Reply

Bookmarks

Tags
cfg's, closing, poll, posting, stolen, usernames., weeks!


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

Forum Jump



ECS on RSS ECS on Twitter ECS on Facebook ECS on Youtube
Follow us on:

Powered by vBulletin
Copyright 2002 - 2010, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
Dreambox