News | Forum | People | FAQ | Links | Search | Register | Log in
Quaddicted Defaced
Quaddicted has been attacked and although I hope and pray that it will soon be repaired, I think that in this instance we should make finding the culprit a primary priority.

Maybe you have noticed someone close to you acting strangely - a guilty expression and change in habits, possibly preferring Doom3 to Quake I. This could be someone you have known and trusted for years. If you suspect someone then first phone your local police authority and report them missing. Then go to your local hardware supply and get yourself a shovel, some quicklime and rubbish bags. Go to thier house in the early hours. The next step should be obvious.

Spirit; don't be disheartened by the little shits who do this sort of crap, your site is invaluable to the community.

Everyone else - there's an ad at quaddicted for a php coder to help (no idea) so if you know what that even means then you should at least have a look.
 
Oh, calm down. It's not as bad as you probably think! :)
Thanks for the kind words!

I know that it was a turkish script kid that just used an exploit to the forum component. It was definitely not an attack with "deeper meanings". I knew an attack would come sooner or later because I got referrers from a hacking board. Unfortunately I didn't think about updating the forum. The content management system was on the latest revision and I also did a full backup (2 days before the "hack").

Probably getting the site back up as it was (with the forum updated or removed) would not be too hard, but I really want the site fit my (and your) needs.

Sooooo, let me hijack this thread (things like this rather go into the General Abuse thread), hehe.
What would you like to see on Quaddicted (or whereever)? What is missing in the Quake-Internet?

I plan to extend the file archive with better user interaction and hashes for the files (so you can check if it is _the_ file you want/have). The links will be a important part of the site (maybe you read my booth at QExpo). And the newssite will be very plain and only providing links (a bit like digg.com maybe). Completing the deathmatch map archive will be more important for me in the future as I totally dislike all the .bsp files without their readmes there...

I would _love_ to expand the wad archive with better usability (eg preview images for the wads) but those are quite low on my list. Maybe someone else will help? ;) 
Ok, Ok 
just needed an map to play through over lunchtime - the grapes of wrath :) 
I Hope It Becomes Like Fileplanet 
the newssite will be very plain and only providing links
aw, i always liked the news section as it was - screenshot, brief description and a download link - 'links only' sounds like it would look less attractive at first glance...

i really hope someone familiar with php will get in touch with you. what about the ones responsible for the qexpo site (sajt?). maybe add some more ads, so you can make the job seem more appealing.. :P 
What Would You Like To See On Quaddicted 
Free shells for people in the q-munity ;) 
 
Sorry, it was me. 
Spirit 
The formerly useful quakeworld.nu site got totally owned a few months ago, because the admins decided not to update the forum code... when there was a new release available... Moral of the story: don't fuck with your forum. 
Oh And 
You have my sympathies ;( 
I Go To Quaddicted For The Maps 
So having a searchable map archive is far and away the most important part for me. A wad archive and a simple news page makes sense too. Anything else is unecessary, and as this proves a risk... 
What 
qwnu got hacked for the third time? They were hacked twice when they still used phpbb. I checked that they now use punbb. 
Spirit 
as q1 lacks a review site, perhaps add some sort of "user review" functionality for all the maps you have hosted there, it would be a good start and you can then get the community to do all the hard work for you :) 
No Q1 Review Sites? 
I bet Underworld fan is feeling a little unapreciated after reading that. 
Also 
Quaddicted already had exactly that feature in the archives. 
Got a link HeadThump? I've been out of the loop for quite some time, apologies to Underworld fan 
It's Here 
Daz, No Harm Done, 
I meant that in a John Stewert, scorned puppy tone, but there are no emotives on the board for it. Maybe the piggy. 
Argh 
Quaddicted seems to be in an even worse condition now; I either get a Turkish garbage page (with evil scripts) or a 404.

What's going on? 
This Means It Has Been Hacked Again 
so we can safely and justifiably redirect all our accumulated hatred and prejudices against turkey again. w00t :( 
:( 
That's a shame. Maybe if you make a post saying how much you appreciate the talents of this Turkish coding genius he will leave you alone.


By the way, when you get it back up, I have a new map out (see my booth http://qexpo.quakedev.com/booth.php?id=29&page=49) 
Er... 
Look on Day 5 (not 6! leave that until tomorrow! I put it up because I won't be around tomorrow) 
OMG 
It got hacked a 2nd time. Spirit, quit pissing off people in Turkey.

What did they ever do to you? 
 
i think Spirit should make a complain maby if many people complain they ban ips from turkey... for exemple Brasilian ips are ban everywere... stupid fucking assholes :\ 
There 
are a lot of turkish people living in germany. 
Shame ~ 
Guess the people of my country will never do any good on the net. Spirit, whether it'll be appropriate or not, I want to apologize for this guy's behaviour.

Yep - I'm Turkish. 
To Bad! 
guess it's not a matter of nationality there are stupid people all over the world! 
 
erc, no need to apologize -> what bazzu said.

i wonder how they could get in again though, since there was no (obvious) possible interface to exploit. then again, my hacking skills wouldn't be proficient enough to tell either way. :P 
Just An Odd Question 
you do use sftp and ssh for connections, not ftp and telnet? Cause some service providers still use the latter. 
Bambuz Brings Up An Excellent Point 
I have had to explicitly ask providers to turn on ssh and sftp -- they encouraged users to use telnet and ftp! I am completely amazed that fools like that can still stay in business. But, then again, cisco is still doing fine, so I guess security < profit?

:) 
He He 
everyone has a favorite IT company to despise. For me, it's Oracle and that punk Larry Ellison. 
My Guess 
is that they technically still were on the server. there's not much you can do to hack a static html file´┐Ż 
Sorry To Hear That 
no kebab for me the next days :[ Though the turkish girls at my local shop are very nice and beatyful..damn them hackers. 
Spirit 
Did you urinate on their rug? Did you personally urinate on their rug? No? Then what the hell are they doing?

The bums lost! 
So ... 
when is Quaddicted going to lose some of its present infected base-look? ;) 
Probably In 3-4 Weeks 
if spirit doesn't drown, that is. 
Bugger 
The problem with Quaddicted being down is that some of the content for QExpo isn't downloadable :( 
 
sorry you got hacked Spirit.
hoep you can find a way to come back soon, your file database of q1sp maps was outstanding and much needed.

i just had the idea for hosting you could try planetquake or even Tigger-oN over at lvl, who seems very helpful and clued up. 
Noplx 
stay independent, downloading at your place is hassle-free and you're not dependant on some other service going unavailable all of a sudden. 
I Am Back Already 
Now that was a bad surprise...

Trinca talked to the "second hacker" via msn (he left his address, weird) and I did so too. According to that guy the first defacement was insulting his analpenetration-group and thus he "had to" deface it again. Well, at least if I understood him correctly. Also it wasn't really an attack against my site but they hacked the whole server and used it for DDOSing and other stupid stuff. I don't understand why they deleted the whole /filebase folder though, DAMN! I will compile all the info and logs I have later today to send it to my host later today.

I have no problems with the hosting itself but I will move to dreamhost anyways. I heard only good things about them and they are damn cheap and give me 10x the traffic.

That sftp/ssh issue is interesting. My webhost does not support it and if I understood the hacker correctly he used some "session hijacking"...

I temporary removed the access to /wads and /filebase for everyone since I have no idea what passwords might have been revealed.

Daz: That user review idea is exactly what I am heading for :) 
Wow 
Not supporting encryption in 2006? Ouchies! Let me know if I can help, I also am on dreamhost (this is recent). 
\o/ 
The site has successfully moved to a new host (dreamhost). I am moving everything at the moment. The site will "reappear" in its read-only mode, just like after the first defacement.

Those will be back soon:
/dm
/filebase
/wads
pulsar.quaddicted.com
qurnel.quaddicted.com 
QurneL Has A Website?? 
:o 
Ok 
filebase, dm (almost) and wads are back.
pulsar.quaddicted.com is about to be back (uploaded as wrong user first... d'oh).
qurnel.quaddicted.com will take some time as I have to find the files first =) 
Wads 
do you want to review/describe and rate the wads too? or is a plain directory listing enough?
like it is just now: http://www.quaddicted.com/wads/ 
You Don't Seem To Have Fortress.wad 
do you want it?
It has one cool lava tex and then some red/blue themed textures. Vintage 1997 or so. I don't know if the stuff is in other wads already though. I just extracted them from the team fortress dir paks. 
Sure 
could you zip and mail it to me? 
Blooper 
Hey Spirit, I'm comparing the Quakaddicted site with my archive and found the blah1.zip missing. Some speedmap with moz tron speed and vodoochopsticks. I can't upload so you can find it here:

http://members.home.nl/gimli/blah1.zip 
Foxy Madfox 
Cheers! That map is on the speedmapping list: http://www.quaddicted.com/speedmapping.html
Sorry that the site is so confusing. Many of the speedmaps are so good they should be on the normal list. 
Blah 
only checking. 
 
Before anyone panics, Quaddicted.com is currently not available due to a planned upgrade at my hoster's. They said they'd be moving to new hardware and update the OS and it should have been done for 5 hours already. 
Huh 
i was expecting one of those random bumps. thanks for the update though. :) 
Post A Reply:
Name:
Title:
Body:
message
question
exclamation
idea
flame
noflame
error
skull
beer
moon
pent
rocket
sheep
pacman
pig
cheese
worldcraft
gauntlet
crate
pitfall
pimp
smile
cool
sad
frown
oi
yay
tongue
evil
wink
neutral
q1
q2
q3
ut
hl
cs
doom
dkt
serious
cube
Website copyright © 2002-2017 John Fitzgibbons. All posts are copyright their respective authors.