Warcraft II Forum
Warcraft II => Server.War2.ru => Topic started by: mousEtopher on June 07, 2015, 09:24:19 AM
-
Lightbringer- recently announced here (http://forum.war2.ru/index.php/topic,1008.0.html) abuse of the ladder and that several well-known accounts had been compromised. After looking into it this is what we believe happened:
- USA~Archer is responsible and most likely acted alone.
- He did not access the .ru database in any way. The winbotting/ladder abuse was most likely an attempt to do so.
- The passwords of the stolen accounts came from War2.me: he exploited the server database via an SQLi vulnerability in an open source ladder/stats script. (This is known for certain.) That allowed him to download the entire database and crack the password hashes, and then try the username/password combos on .ru to see if any were the same.
- So, only the accounts of people who registered on War2.me at some point AND used the same password both there and on .ru were vulnerable.
- USA~Archer has contacted a few people and denied that he had any part in this, but his story is very farfetched and impossible to verify. The most logical explanation is that Archer did everything himself, since it's known for a fact that he compromised war2.me. As of right now he's been permanently banned from forum & server.
-
Good riddance.
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
So to sum things up its all mousetopher's fault.
-
this is why we cant have nice things!
-
Oh well... The scums in there keep getting more and more incredible. Just when you thought that you had reached a pinnacle in EQ ... Lol...
-
Hahahha I knew it sorry about your server mousey. He did inject with game name.
-
it is a bad call to ban him from forum.
that takes away his right to explain himself
its a bad call. it makes RU a unilateral decision maker. we're all adults here
and not a family where admins are our dads and the rest are underage teens
it is common practice even the most wanted criminals in any country are allowed to speak and give their side of story (if any)
after all, this is only a way for ourselves to chat. as adults. he hasn't exploited the forum. shouldn't really be mixing things up.
-
You need him to come here and get abused? Need free drama? Make it happen guys!
-
Nice lie to cover your ass moustopher!
In any way it's your fault and there nothing to cover, your an idiot girl.
-
hey equinox
i heard theres a sunday tourney at heroes of storm this morning, big prizes!
-
it is a bad call to ban him from forum.
that takes away his right to explain himself
its a bad call. it makes RU a unilateral decision maker. we're all adults here
and not a family where admins are our dads and the rest are underage teens
it is common practice even the most wanted criminals in any country are allowed to speak and give their side of story (if any)
after all, this is only a way for ourselves to chat. as adults. he hasn't exploited the forum. shouldn't really be mixing things up.
Is that a joke???? TROLL??? Seriously, they just hack all the top ten and your asking for explanation, pls someone ban this idiot now.
-
it is a bad call to ban him from forum.
that takes away his right to explain himself
its a bad call. it makes RU a unilateral decision maker. we're all adults here
and not a family where admins are our dads and the rest are underage teens
it is common practice even the most wanted criminals in any country are allowed to speak and give their side of story (if any)
after all, this is only a way for ourselves to chat. as adults. he hasn't exploited the forum. shouldn't really be mixing things up.
Is that a joke???? TROLL??? Seriously, they just hack all the top ten and your asking for explanation, pls someone ban this idiot now.
dont put words in my mouth i didn't say.
im not asking for explanation.
im saying removing the condemned's ability for a response is what authoritharian unilateral people do. and it serves no purpose other than fill the persons ego.
everyone is allowed to speak, regardless what his sentence is.
-
Now its actually good he did this. His exposed himself, blid has his real LinkedIn. Know we know he can't be trusted, maybe in the future idk. People change. But if I hear the words hacker come out I'm gonna rofl. He didn't use proxys for anything LOLLLLL
-
Is that a joke???? TROLL??? Seriously, they just hack all the top ten and your asking for explanation, pls someone ban this idiot now.
I think he is genuinely stupid
-
did he actually think nobody would notice the wins, I don't get what he was trying to accomplish.
-
did he actually think nobody would notice the wins, I don't get what he was trying to accomplish.
What are you excepting from someone who ask us to forget gow and focus on hacking paintball.
-
did he actually think nobody would notice the wins, I don't get what he was trying to accomplish.
I wonder this as well
-
He is actually a rookie, he found a hole and creamed his panies. It's obvious he had no clue what he was doing. He didn't even hide his identity, or VPN, how stupid.... good thing this is just a game server or the feds would of got his ass 2 seconds after he clicked connect on the bot with the game names.
Hes been PMING people like crazy for info. I'm not suprised if hes not alone after the PM I received from him shows his knowledge level is low.
-
He is actually a rookie, he found a hole and creamed his panies. It's obvious he had no clue what he was doing. He didn't even hide his identity, or VPN, how stupid.... good thing this is just a game server or the feds would of got his ass 2 seconds after he clicked connect on the bot with the game names.
Hes been PMING people like crazy for info. I'm not suprised if hes not alone after the PM I received from him shows his knowledge level is low.
It is shocking that he would even do something like this but then try to blame others so that he could clear his name? That is just low...this guy has no moral character what so ever.
I should post his email correspondence. This guy is a sociopath.
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
So to sum things up its all mousetopher's fault.
Well, it's not like I put the guy up to it. :P But partially my fault for sure.
Hahahha I knew it sorry about your server mousey. He did inject with game name.
Yeah. :c He used a completely different sort of exploit on war2.me though, no winbotting involved.
im saying removing the condemned's ability for a response is what authoritharian unilateral people do. and it serves no purpose other than fill the persons ego.
I sort of agree, but he doesn't need access to the forum to appeal, he's already contacted several people via email and other means.
Hes been PMING people like crazy for info. I'm not suprised if hes not alone after the PM I received from him shows his knowledge level is low.
Could be playing dumb. I don't get it either tbh, what he was trying to accomplish or why he'd bother denying it after the fact.
-
did he actually think nobody would notice the wins, I don't get what he was trying to accomplish.
What are you excepting from someone who ask us to forget gow and focus on hacking paintball.
Not sure if he ever mentioned forget gow...I think you meant expecting?
He also stole a few pball players names from what I hear so far as I am concerned this guy is no friend to anyone in the community.
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
I should post his email correspondence. This guy is a sociopath.
do it, littel ryu, be useful for once in your life!
-
I should post his email correspondence. This guy is a sociopath.
do it, littel ryu, be useful for once in your life!
(http://vignette2.wikia.nocookie.net/wingsoffire/images/9/9a/Happy-oh-stop-it-you.png/revision/latest?cb=20150203092711.)
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
Lightbringer- recently announced here ([url]http://forum.war2.ru/index.php/topic,1008.0.html[/url]) abuse of the ladder and that several well-known accounts had been compromised. After looking into it this is what we believe happened:
- USA~Archer is responsible and most likely acted alone.
- He did not access the .ru database in any way. The winbotting/ladder abuse was most likely an attempt to do so.
- The passwords of the stolen accounts came from War2.me: he exploited the server database via an SQLi vulnerability in an open source ladder/stats script. (This is known for certain.) That allowed him to download the entire database and crack the password hashes, and then try the username/password combos on .ru to see if any were the same.
- So, only the accounts of people who registered on War2.me at some point AND used the same password both there and on .ru were vulnerable.
- USA~Archer has contacted a few people and denied that he had any part in this, but his story is very farfetched and impossible to verify. The most logical explanation is that Archer did everything himself, since it's known for a fact that he compromised war2.me. As of right now he's been permanently banned from forum & server.
I have made a post on Facebook to notify players to change their passwords if they have used the same password on war2.me that they use on en.war2.ru. I have also posted a link to this forum post.
I should post his email correspondence. This guy is a sociopath.
do it, littel ryu, be useful for once in your life!
I'm curious to see this as well.
-
Quote from: SmurfKinG on Today at 12:06:28 PM
im saying removing the condemned's ability for a response is what authoritharian unilateral people do. and it serves no purpose other than fill the persons ego.
I sort of agree, but he doesn't need access to the forum to appeal, he's already contacted several people via email and other means.
still don't see how would a unban be of any sort of offense to you or anyone in here.
(not my call anywway)
but if you're so reluctant with templifting the forum ban,
care to share with the community whats this story of his that is very farfetched and impossible to verify.
p.s. this thread is called official explanation but ommits details (what were usaarcher true words? )
-
Quote from: SmurfKinG on Today at 12:06:28 PM
im saying removing the condemned's ability for a response is what authoritharian unilateral people do. and it serves no purpose other than fill the persons ego.
I sort of agree, but he doesn't need access to the forum to appeal, he's already contacted several people via email and other means.
well
care to share with the community whats this story of his that is very farfetched and impossible to verify.
p.s. this thread is called official explanation but ommits details (what were usaarcher true words? )
His true words were "...that he was trolling."
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
Well, he apologized to LB and said he could fix all of it, so theres one side of the "archer" story. Mousetopher and ryu can give us 2nd and 3rd perspective.
-
i think archer should be unbanned to give us his own (another) version of whats happened
-
yeah
-
$10000000 people would have complained "lazy admins" did not ban him if he was not banned. :D
-
equinox style irrelevant delusional bullcrap = instaban. whats there to lose
-
i think archer should be unbanned to give us his own (another) version of whats happened
From what I understand, he tried to pin the blame on Tupac after being caught. I'd really like to see how he'll handle himself on the forum if we allow him to make his case here.
-
$10000000 people would have complained "lazy admins" did not ban him if he was not banned. :D
I know I would of [emoji10]
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
i think archer should be unbanned to give us his own (another) version of whats happened
From what I understand, he tried to pin the blame on Tupac after being caught. I'd really like to see how he'll handle himself on the forum if we allow him to make his case here.
And let the community vote on his fate?
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
He's fucked no matter what trying to frame players because he cannot face the mess he created himself. What a total waste of knowledge. That was the last time I help that bastard.
Unban him, so we can hear his excuses, then give me mod so I can ban him. Thanks
-
i think archer should be unbanned to give us his own (another) version of whats happened
From what I understand, he tried to pin the blame on Tupac after being caught. I'd really like to see how he'll handle himself on the forum if we allow him to make his case here.
And let the community vote on his fate?
Sent from my Motorola DynaTAC 8000X using Tapatalk
I mean, I'm pretty sure it's confirmed it was him with the association of his IP. I just had a player tell me that Archer was bragging to him about a SQL injection before he got caught too. Allowing him to state his case on here is just for shits and giggles for the most part. Still, I prefer a more structured system of punishment for any offense in order to maintain the integrity of community decisions. It's nothing more than a general process in order to make just decisions.
-
i think archer should be unbanned to give us his own (another) version of whats happened
From what I understand, he tried to pin the blame on Tupac after being caught. I'd really like to see how he'll handle himself on the forum if we allow him to make his case here.
yeah, i mean, if admins are so sure about decision, what is there to fear about him explaining?
-
i think archer should be unbanned to give us his own (another) version of whats happened
From what I understand, he tried to pin the blame on Tupac after being caught. I'd really like to see how he'll handle himself on the forum if we allow him to make his case here.
And let the community vote on his fate?
Sent from my Motorola DynaTAC 8000X using Tapatalk
I mean, I'm pretty sure it's confirmed it was him with the association of his IP. I just had a player tell me that Archer was bragging to him about a SQL injection before he got caught too. Allowing him to state his case on here is just for shits and giggles for the most part. Still, I prefer a more structured system of punishment for any offense in order to maintain the integrity of community decisions. It's nothing more than a general process in order to make just decisions.
I guess just reassure smurf that you won't be wasting "time and resources" lmao...
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
no need to unban, 100% guilty and convicted. Hes just gonna come here and say something stupid like I was just doing it for fun and some other bs.
-
So to sum things up its all mousetopher's fault.
Well, it's not like I put the guy up to it. :P But partially my fault for sure.
lol I was just joking, you can't blame yourself if you didn't even know the exploit existed.
-
Ban
-
$10000000 people would have complained "lazy admins" did not ban him if he was not banned. :D
So true. :D
Quote from: SmurfKinG on Today at 12:06:28 PM
im saying removing the condemned's ability for a response is what authoritharian unilateral people do. and it serves no purpose other than fill the persons ego.
I sort of agree, but he doesn't need access to the forum to appeal, he's already contacted several people via email and other means.
still don't see how would a unban be of any sort of offense to you or anyone in here.
(not my call anywway)
but if you're so reluctant with templifting the forum ban,
care to share with the community whats this story of his that is very farfetched and impossible to verify.
p.s. this thread is called official explanation but ommits details (what were usaarcher true words? )
I just personally consider one to one correspondences to be confidential and don't arbitrarily publicize them. Even convicted criminals have rights! I also don't particularly object to unbanning him from forums, it'd be something to talk about for another few days anyway. I wasn't responsible for enacting the ban though, so I won't be the one to reverse it.
-
I banned him from the forums. It's not out of fear of him posting anything here, it's about the fact that I don't want to tolerate people that fucking hack the server. If you do that, I don't want you here, it's a thing that ought to be punished. If he contacted me or someone else and said "here's my statement" I wouldn't necessarily have a problem with allowing that, but
This guy hacked half a dozen people's accounts and abused shit in the most egregious way. For that I no longer welcome him here. This needs to be a statement: doing shit like that is unacceptable and we won't allow such abusers on the forums, in the game, etc. if we can do anything to stop them.
-
(23:26:29) -- PvPGN: hxjwtm (Ladder - Garden of War.pud) Host: 1Archer1 (0.0.0.0:0)
(23:26:29) -- PvPGN: 7eadt (Ladder - Garden of War.pud) Host: 1Archer1 (0.0.0.0:0)
(23:26:29) -- PvPGN: 6nx1u (Ladder - Garden of War.pud) Host: 1Archer1 (0.0.0.0:0)
(23:26:29) -- PvPGN: kfixez (Ladder - Garden of War.pud) Host: USA:Archer (0.0.0.0:0)
(23:26:29) -- PvPGN: xdwfg3e (Ladder - Garden of War.pud) Host: 1Archer1 (0.0.0.0:0)
(23:26:29) -- PvPGN: 1kcjf (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: fd75nicw (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: ugpqd (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: j3se05uas (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: ahcx9 (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: t5eqpjxk (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: u3qlfyh (Ladder - Garden of War.pud) Host: xArcherx (0.0.0.0:0)
(23:26:29) -- PvPGN: jeytswhd (Ladder - Garden of War.pud) Host: USA-Archer3 (0.0.0.0:0)
(23:26:29) -- PvPGN: 8dnvu8zr (Ladder - Garden of War.pud) Host: USA-Archer3 (0.0.0.0:0)
(23:26:29) -- PvPGN: p03cgo1v (Ladder - Garden of War.pud) Host: USA-Archer3 (0.0.0.0:0)
(23:26:29) -- PvPGN: 3bghed (Ladder - Garden of War.pud) Host: USA-Archer3 (0.0.0.0:0)
(23:26:29) -- PvPGN: 3rr7ugv (Ladder - Garden of War.pud) Host: USA-Archer3 (0.0.0.0:0)
(23:26:29) -- PvPGN: hlkuuvk (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: bf2c0goda (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: egh5mt (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: ntnin5d8i (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: q6lxkr (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: lijywf (Ladder - Garden of War.pud) Host: USA-Archer2 (0.0.0.0:0)
(23:26:29) -- PvPGN: 5rygn09u (Ladder - </a>"><?php echo '<p>Hello World</p>'; ?><a>.pud) Host: 60menTournament (0.0.0.0:0)
(23:26:29) -- PvPGN: fj28j6oi (Ladder - </a>"><?php echo '<p>Hello World</p>'; ?><a>.pud) Host: 60menTournament (0.0.0.0:0)
(23:26:29) -- PvPGN: uu3rsjk (Ladder - </a>"><?php echo '<p>Hello World</p>'; ?><a>.pud) Host: 60menTournament (0.0.0.0:0)
(23:26:29) -- PvPGN: v9ldbb (Ladder - </a>"><?php echo '<p>Hello World</p>'; ?><a>.pud) Host: 60menTournament (0.0.0.0:0)
-
blid i sent u a pm not sure if it delivered cuz my sent items box is empty... uhmmmmmmmm
-
hey blid, ever heard of keep your friends close and your enemies closer
-
hey blid, ever heard of keep your friends close and your enemies closer
Ever heard of stop molesting children?
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
ban smurf king
-
lol i have fans.
dont u noobs have anything more positive things to do with your life.....
-
lol i have fans.
dont u noobs have anything more positive things to do with your life.....
Do you?
Do humanity a favor and castrate yourself.
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
hey blid, ever heard of keep your friends close and your enemies closer
you have no friends.
-
Smurfking's all right.
-
No he's not.
-
Yah he is. If USA~Archer has a msg though, he can convey it thru email or whatever.
-
ya'll crazy. Smurfking is a good, decent, sweet rumpelnewbskin
we should totally start a poll and unban archer to spite blid!
-
Pedoking = [emoji90][emoji107]
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
Smurfking's all right.
pity like.
-
[11:01:14 AM] Currently accessable games:
[11:01:14 AM] ------name------ p -status- --------type--------- count
[11:01:14 AM] Old Fun y started melee 1
[11:01:14 AM] w85u1ddw y open ladder 0
[11:01:14 AM] hxjwtm y open ladder 0
[11:01:14 AM] 7eadt y open ladder 0
[11:01:14 AM] 6nx1u y open ladder 0
[11:01:14 AM] kfixez y open ladder 0
[11:01:14 AM] xdwfg3e y open ladder 0
[11:01:14 AM] 1kcjf y open ladder 0
[11:01:14 AM] fd75nicw y open ladder 0
[11:01:14 AM] ugpqd y open ladder 0
[11:01:14 AM] j3se05uas y open ladder 0
[11:01:14 AM] ahcx9 y open ladder 0
[11:01:14 AM] t5eqpjxk y open ladder 0
[11:01:14 AM] u3qlfyh y open ladder 0
[11:01:14 AM] jeytswhd y open ladder 0
[11:01:14 AM] 8dnvu8zr y open ladder 0
[11:01:14 AM] p03cgo1v y open ladder 0
[11:01:14 AM] 3bghed y open ladder 0
[11:01:14 AM] 3rr7ugv y open ladder 0
[11:01:14 AM] hlkuuvk y open ladder 0
[11:01:14 AM] bf2c0goda y open ladder 0
[11:01:14 AM] egh5mt y open ladder 0
[11:01:14 AM] ntnin5d8i y open ladder 0
[11:01:14 AM] q6lxkr y open ladder 0
[11:01:14 AM] lijywf y open ladder 0
[11:01:14 AM] 5rygn09u y open ladder 0
[11:01:15 AM] fj28j6oi y open ladder 0
[11:01:15 AM] uu3rsjk y open ladder 0
[11:01:15 AM] v9ldbb y open ladder 0
[11:01:15 AM] u9skg8 y open ladder 0
[11:01:15 AM] v51t29a y open ladder 0
[11:01:15 AM] 8omlmcuk2 y open ladder 0
[11:01:15 AM] lwglfr7q y open ladder 0
[11:01:15 AM] se72p2f y open ladder 0
[11:01:15 AM] 5o3rmr7 y open ladder 0
[11:01:15 AM] eniey7pw3 y open ladder 0
[11:01:15 AM] e7k76gf y open ladder 0
[11:01:15 AM] md2n81c9k6 y open ladder 0
[11:01:15 AM] 5ojsiz3 y open ladder 0
[11:01:15 AM] 0xgj08 y open ladder 0
[11:01:15 AM] bjz3m5rhhh y open ladder 0
-
They cant do nothing....
-
They cant do nothing....
How come?
-
It's a bot aka warwinner that some newb played with the source in which some parts the ip is masked and not giving but there are ways the ip does show. It's packets that are sent and the connection isn't killed properly and let's the games stay and thus would require a ip ban and pvpgn restart to remove them.
-
Not sure why he is still doing this...
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
I bet the bug for the ip is because no udp support that it needs.... does pretty much all TCP packets. I wonder if there is some settings that can be changed or maybe update pvpgn with game filters.
-
Not sure why he is still doing this...
Sent from my Motorola DynaTAC 8000X using Tapatalk
Really??
-
doubt it, the games are frozen n thats it
-
Did anyone email iL and ask him to restart the server?
-
Did anyone email iL and ask him to restart the server?
I pm'd him...no response.
Sent from my Motorola DynaTAC 8000X using Tapatalk
-
So to sum things up its all mousetopher's fault. lol!
-
So to sum things up its all mousetopher's fault. lol!
[emoji39]
Sent from my Motorola DynaTAC 8000X using Tapatalk