Wits end

Discussion in 'Software' started by tyrant64, Nov 14, 2010.

  1. tyrant64

    tyrant64 Private E-2

    I'm at my wits end with a problem I've been dealing with for over a month now and would appreciate if someone could point me in the right direction here.
    As of last month, a player on a private game server began hacking into our SQL database and altering our tables.
    We have looked at everything with write access to the DB and have found absolutely no trace of his ever being there.
    My question is simple.
    Where would I go to find someone with the knowledge to assist us in closing up the obvious security issue we have?
    I've even tried tracing his IP, and all of my traces have died in the most random areas, including sweden, and malaysia.
    Any help would be appreciated, because this issue went past the pulling out of my hair long ago :-D
    I'm totally willing to pay for assistance, so if this needs to be in the buy/sell area, feel free to move it there.
     
    tyrant64, Nov 14, 2010
    #1
  2. PC-XT

    PC-XT Master Sergeant

    Since you are having SQL tables change, it sounds like an SQL injection attack. However, I don't use SQL, and know little about it, but here are some links that may help understand it:
    http://www.cmswire.com/cms/web-cms/...site-overview-of-common-techniques-002339.php (Which shows kinds of attacks, including SQL injection, and gives some advice on how to test a few of them.)
    http://en.wikipedia.org/wiki/SQL_injection (Which lists a couple tools to test your site, if you want to learn how to use them. They apparently test for other vulnerabilities, as well.)

    I wouldn't know where to find a qualified professional who handles this stuff. For my sites, I usually learn things to watch for from books, magazines, websites, or other sources, and test them myself. I'll also tweak the code, temporarily, if I find trouble like you have, to log more information. If you can log everything that comes from the person, you could try to recreate the situation and see better how it works.
     
    PC-XT, Nov 16, 2010
    #2
  3. chickens

    chickens Private E-2

    What does your database do? i.e. what is the purpose/front end?
    What DBMS are you using?
    Are you using stored procedures for db access?

    You should consider restricting access to the database tables of concern if possible (e.g. don't use 'sa' if not necessary).
     
    Last edited: Nov 18, 2010
    chickens, Nov 18, 2010
    #3
  4. SWario

    SWario Sergeant

    It might be helpful if you could tell us what game you're referring to so that we might look at it ourselves. If there is some private information about the server or how to connect, then that information should obviously be limited to PMs. If your attempts to trace his IP are failing in different places, he may be using one or more proxies.
     
    SWario, Dec 4, 2010
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds