Security problems
 

News:

29 December 2022 - PtokaX 0.5.3.0 (20th anniversary edition) released...
11 April 2017 - PtokaX 0.5.2.2 released...
8 April 2015 Anti child and anti pedo pr0n scripts are not allowed anymore on this board!
28 September 2015 - PtokaX 0.5.2.1 for Windows 10 IoT released...
3 September 2015 - PtokaX 0.5.2.1 released...
16 August 2015 - PtokaX 0.5.2.0 released...
1 August 2015 - Crowdfunding for ADC protocol support in PtokaX ended. Clearly nobody want ADC support...
30 June 2015 - PtokaX 0.5.1.0 released...
30 April 2015 Crowdfunding for ADC protocol support in PtokaX
26 April 2015 New support hub!
20 February 2015 - PtokaX 0.5.0.3 released...
13 April 2014 - PtokaX 0.5.0.2 released...
23 March 2014 - PtokaX testing version 0.5.0.1 build 454 is available.
04 March 2014 - PtokaX.org sites were temporary down because of DDOS attacks and issues with hosting service provider.

Main Menu

Security problems

Started by vipernef, 17 December, 2004, 12:48:13

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

vipernef

Hello
I am having some problems in my hub. someone is using a program that makes my hub strat loosing users , users start droping and cant get back in, other probles is redirecting someone that is not an operator manages to redirect users and even using ptoka on is pc redirect my ip to his ptoka
How can I protect from this
Kind regards

[NL]Pur

do you have an firewall installed on your computer, and are you sure , he didn't hacked your windows ?

bastya_elvtars

QuoteOriginally posted by vipernef
Hello
I am having some problems in my hub. someone is using a program that makes my hub strat loosing users , users start droping and cant get back in, other probles is redirecting someone that is not an operator manages to redirect users and even using ptoka on is pc redirect my ip to his ptoka
How can I protect from this
Kind regards

i found a f***ing backdoor that installs with Radmin

do you use radmin?
Everything could have been anything else and it would have just as much meaning.

vipernef

I use ptoka x  4034 and I use sygate firewall and a router with a firewall as well
My bigest problem are teh redirects and the user droping they can redirect and kick my users

blackwings

#4
or do you use a script that you haven't got from this site? because then there might be some nasty things in it, like redirecting users with a certain tag, or haveing a function that counts connecting users and sends  like every 20 users to a different IP.

These scary function that you can find on other places then this site (like wares servers on p2p networks), they can be like just a very few lines that has been mixed up with the rest of the code of the original script.


[_XStaTiC_]

Hi,

I think you have to check your Profile Manager.
Maybe you have turned on the redirect and dropping for RegUsers.

plop

QuoteOriginally posted by vipernef
I use ptoka x  4034
????????????????????????????????????
that 1 doesn't excist.

plop
http://www.plop.nl lua scripts/howto\'s.
http://www.thegoldenangel.net
http://www.vikingshub.com
http://www.lua.org

>>----> he who fights hatred with hatred, drives the spreading of hatred <----<<

Herodes

QuoteOriginally posted by plop
QuoteOriginally posted by vipernef
I use ptoka x  4034
????????????????????????????????????
that 1 doesn't excist.

plop
prolly 4043 refers to DC++ v0.4034 and 'ptokax x' == 'accessing ptokax with' ..:/

vipernef

sorry its 0.3.3.0 the version I put befiore was  from revconnect LOL

plop

QuoteOriginally posted by bastya_elvtars i found a f***ing backdoor that installs with Radmin

do you use radmin?
radmin is a backdoor, a backdoor 2 manage a computer over a network.
so you didn't find anything bad.

plop
http://www.plop.nl lua scripts/howto\'s.
http://www.thegoldenangel.net
http://www.vikingshub.com
http://www.lua.org

>>----> he who fights hatred with hatred, drives the spreading of hatred <----<<

bastya_elvtars

QuoteOriginally posted by plop
QuoteOriginally posted by bastya_elvtars i found a f***ing backdoor that installs with Radmin

do you use radmin?
radmin is a backdoor, a backdoor 2 manage a computer over a network.
so you didn't find anything bad.

plop

i bet IT company do know this... why did 2 spy checkers report it then?
Everything could have been anything else and it would have just as much meaning.

[NL]Pur

maby to notify you that radmin is installed on your computer.

It might be that someone else installs radmin on your comp and gains access thru it without you knowing that radmin is installed.

I can imagine that some users don't even know what radmin is.

bastya_elvtars

QuoteOriginally posted by [NL]Pur
maby to notify you that radmin is installed on your computer.

It might be that someone else installs radmin on your comp and gains access thru it without you knowing that radmin is installed.

I can imagine that some users don't even know what radmin is.

i uninstalled it for safety... maybe i will install 2.1 once, but we are running ptokax, not yhub, and ptokax does not crash ;p
Everything could have been anything else and it would have just as much meaning.

[NL]Pur

exactly , we only use radmin to see how nicely ptokax runs ;)

plop

QuoteOriginally posted by [NL]Pur
maby to notify you that radmin is installed on your computer.

It might be that someone else installs radmin on your comp and gains access thru it without you knowing that radmin is installed.

I can imagine that some users don't even know what radmin is.
indeed, you can install radmin and disable the tray icon.
now you can abuse it as a trojan horse giving you full acces.

plop
http://www.plop.nl lua scripts/howto\'s.
http://www.thegoldenangel.net
http://www.vikingshub.com
http://www.lua.org

>>----> he who fights hatred with hatred, drives the spreading of hatred <----<<

[PT]CableGuy

#15
Radmin is not a trojan !!! There are some vulnerabilities though...
But...why use Radmin and be forced to install the application ?
If you need "remote desktop systems" , take a look at UltraVNC !!!
It gives you:

Quote* File Transfer with intuitive Graphical User Interface
* Optional Video Driver for high speed and low CPU  (W2000/XP/2003), Ddi hooking (Win 9.x)
* NT Domain and Active Directory based security
* High speed and performances over LAN connections.
* Very good responsivness over slow connections (cable, modem)
* Embedded Client/Server Text Chat
* Optional Data Stream Enrcryption Plugin
* Viewer with Auto Configuration, Quick Options and Auto Scaling
* Standard Win32 Viewer and JavaViewer connections over TCP/IP
* Supported Operating Systems: Win9x/NT4/Win2000/XP/2003
* Viewer Toolbar and Hot keys
* View Modes: Full-Screen, Scaled and Windowed
* Viewer Status Window
* Dynamic Single Window/Full Desktop view switching
* Backward Compatible with others VNC flavors.
* Support for 32/24/16/8 bits colors
* Server's Desktop dynamic resolution switching
* Server Screen Blanking/mouse locking from viewer side
* Bandwidth Saving technologies : Bitmap Cache management, server screen scaling
* Possibility to send Ctrl-Alt-Del to the remote server
Sincerely , the best and fastest , remote desktop system i've ever used...and you don't need to install nothing !!
Give it a try. ;)

vipernef

the problem continues .... its really anoying lol
but I know the guy that is doing it I think I am going to take more "real" measures hehehe

thank you all for your help

plop

QuoteOriginally posted by vipernef
the problem continues .... its really anoying lol
but I know the guy that is doing it I think I am going to take more "real" measures hehehe

thank you all for your help
if your behind a router you should check the settings.
look for default server and DMZ, if those are enabled you found a huge leak.
but open up the given ip fully 2 the internet, here you need a firewall on your computer 2 protect yourself.
a router has NAT inside it, which hides your computer.
but as a result you need 2 forward some ports for dc and the hub, but then the firewall only needs 2 protect those ports.

plop
http://www.plop.nl lua scripts/howto\'s.
http://www.thegoldenangel.net
http://www.vikingshub.com
http://www.lua.org

>>----> he who fights hatred with hatred, drives the spreading of hatred <----<<

SMF spam blocked by CleanTalk