I got hacked!
Yep, like what the title says.
Though, I am not supposed to talk about it when one of my servers got hacked. But that is what happened.
But let me tell you the story, since this is interesting…. and different than other servers that gets hacked by the second.
Our Network Analyst called me saying “Hey Morad, you got hacked!” and I was like “hmm, 212.122.111.121? or 212.122.111.122?”… He replies with “Your 122″… And I paused for a second, because I never expected that my Linux server will get hacked! You might be like “How can you be so sure that it cannot get hacked!?”… Well, one.. you can never 100% sure, there is always more than 1% chance of you getting hacked…. Second, I have nessus running, IDS, HIDS, blah blah… portsentry… and etc….
So anyway, I got hacked! the method they hacked into my server was via one of the web applications that one of my guys designed with Ajax and such.
But here is not the fun part of the story! I tracked the mofo who did it! The hacker called *****, lets just called him mofo for now.. I chit chatted with him on IRC… I started my conversation with “How is it going?”… and he didnt respond for 16 hours, after 16 hours he goes “Your host looks familiar!” Now, I deliberatly left my info reflect my real host information… so anyway, I asked him with an astonishing question “How is Brasilia down there?” And guess what? hehe, he never responded back! that was the end of it.
So I guess he is not coming back any near to one of my servers now. You see, that is how “real” sys admins are. 
That is all, will keep you updated if he comes back!
Sphere: Related ContentIf you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.
haha. n00b. ;P (jk)