H
HackTheServer
Guest
Hack The server
------------------
First of all, don't expect anything special, everything i'll explain here is plain obvious.
What i'm going to explain is how a hacker thinks. A Hacker doesn't even have to know you in real life.
He can do it the hard way, by using self written programs/finding leaks in software or,
he can do it the easy way. And with Easy i mean really Easy. You'd be surprised how easy it is to 'Hack' Someone.
A Hacker only needs to know 2 things to get access to someones DAoC Acc.
1. His E-mail Address and
2. His Login/Password.
Alot people use Free Email Server sites. Sites like Yahoo,Hotmail,MSN,Mail,Casino,.. .
Most private Email Servers from providers also have a login to the Email Inbox on their site.
Maybe you don't know immediatly from where @telenet.be comes but i'm pretty sure you'd figure out fast
which site gives access to that Emailbox. Now Lets start with (1) How do I get someone Email Address.
prolly the easiest one of the 2. Lets just take Barrysworld. The info from your victim was immediatly
viewable in his 'Info'. Getting someone EMail by asking his is another way .I Don't think you'd sound
suspisious when you would ask your victim for his Email Address. Now only thing that rests is the Password.
Since many EmailServers use EmailAddress as Login .Only thing left is the password and you're in.
It seems hard but it isn't. First of all you can guess, normally you won't have much luck with this
except when you know him in real life, then you'd have a large library of words he uses alot..
But like I said at the beginning, you don't know him in real life. So what can I do?
Most Subscribe Emailsites have a password Recovery system (something you don't have
with provider EmailSites normally). But Hotmail and even old Barrysworld had/have(?) this.
They ask you for the already know EmailAddress and then followed by an option:
1. Send me an Email
2. Answer secret question.
Pretty sure everyone knows these Questions:
'What is your mom's Name', 'What is your Dog's Name' , 'What's your Birthday?'
Heh how hard can it be..
-Hacker Enters random private chat
-Hacker : OMG, my dog just died ;((((
-Victim : I feel sorry for you m8, I myself got one too..
-Hacker : Oh really?? Whats his name. *Bingo*
Now this method only works on 1 person. A guy which you focus on. But I, I want to do it good,
I want to hit the jackpot. I want to know the password of 30% of the server. Now let's say i'm starting a LottoForum.
But a Lotto where you can't loose. Every Week i'm giving away 10plat to the guy who rolls the highest number between 1-100.000
if the number is lower then 50.000 the Jackpot doubles next week to 20plat!.
Some guilds already use some similar system to lotto stuff the Guild won on raid X.
I make some commercial on Freddyshouse , IRC, use to friends together in this complot to spread the news..
But To Participate you need to Subscribe (login) Now who wouldn't do this, who isn't interested in this Jackpot.
You "Can't loose"!! and its Free!!. Wrong, I'd have it all. I, mister Admin ,
just recieved the EmailAddress from so many blind people, and their matching password. Since more then 90% uses the same password
over and over again because otherwise i'd be hard to remember Password X for site X and Password Y for site Y etc.
So In the end, I'm the owner of alot new accounts. ofcouse if you want to do this good you give away 1-2 weeks the Jackpot.
The more ppl subscribe to your LottoForum, the better for you!
Not Reality? Ofcouse this doesn't exist. Or does it? Every Server has about 100 guilds, every guild got a site ,
some even have an own public and private forum and I think you can figure out the rest...
Currently every Forum Admin controls your account. Some people think they are smart, they make a new Email Account for
private stuff: keys for programs, bank stuff, passwords to accounts, etc. nodoby knows this EmailAdress, so you'd think you're safe!
To Activate your private EmailAddress you need to Activate it with your "Funny" EmailAddress account.
But like everyone knows, every EmailSite got this default setting "[x] Send me Junkmail". So your "private" EmailSite is sending your
"Funny" EmailAddress some junk once in a while. A hacker only needs to wait for a mail like this or browse his "deleted/junkmail box"
and bingo he knows your "Private" EmailAdress. Browse to the site, Choose 'Lost Password' & 'Send me Email with new password'
(to the Funny Email Account) and he's in.
I think this makes things clear for people that already have been hacked. There are so many ways to 'Hack' someone on an Easy way.
The point of this story was to show how easy it is, how dumb and blind some people are. Mostly if you got hacked,
it's your own fault. Real hackers which use Programs and Leaks to get information don't do this
kind of dangerous work for stupid DAoC accounts, There is so much to tell, a hacker will always find a backdoor.
But mostly, it is you giving him the key to it.
A.
------------------
First of all, don't expect anything special, everything i'll explain here is plain obvious.
What i'm going to explain is how a hacker thinks. A Hacker doesn't even have to know you in real life.
He can do it the hard way, by using self written programs/finding leaks in software or,
he can do it the easy way. And with Easy i mean really Easy. You'd be surprised how easy it is to 'Hack' Someone.
A Hacker only needs to know 2 things to get access to someones DAoC Acc.
1. His E-mail Address and
2. His Login/Password.
Alot people use Free Email Server sites. Sites like Yahoo,Hotmail,MSN,Mail,Casino,.. .
Most private Email Servers from providers also have a login to the Email Inbox on their site.
Maybe you don't know immediatly from where @telenet.be comes but i'm pretty sure you'd figure out fast
which site gives access to that Emailbox. Now Lets start with (1) How do I get someone Email Address.
prolly the easiest one of the 2. Lets just take Barrysworld. The info from your victim was immediatly
viewable in his 'Info'. Getting someone EMail by asking his is another way .I Don't think you'd sound
suspisious when you would ask your victim for his Email Address. Now only thing that rests is the Password.
Since many EmailServers use EmailAddress as Login .Only thing left is the password and you're in.
It seems hard but it isn't. First of all you can guess, normally you won't have much luck with this
except when you know him in real life, then you'd have a large library of words he uses alot..
But like I said at the beginning, you don't know him in real life. So what can I do?
Most Subscribe Emailsites have a password Recovery system (something you don't have
with provider EmailSites normally). But Hotmail and even old Barrysworld had/have(?) this.
They ask you for the already know EmailAddress and then followed by an option:
1. Send me an Email
2. Answer secret question.
Pretty sure everyone knows these Questions:
'What is your mom's Name', 'What is your Dog's Name' , 'What's your Birthday?'
Heh how hard can it be..
-Hacker Enters random private chat
-Hacker : OMG, my dog just died ;((((
-Victim : I feel sorry for you m8, I myself got one too..
-Hacker : Oh really?? Whats his name. *Bingo*
Now this method only works on 1 person. A guy which you focus on. But I, I want to do it good,
I want to hit the jackpot. I want to know the password of 30% of the server. Now let's say i'm starting a LottoForum.
But a Lotto where you can't loose. Every Week i'm giving away 10plat to the guy who rolls the highest number between 1-100.000
if the number is lower then 50.000 the Jackpot doubles next week to 20plat!.
Some guilds already use some similar system to lotto stuff the Guild won on raid X.
I make some commercial on Freddyshouse , IRC, use to friends together in this complot to spread the news..
But To Participate you need to Subscribe (login) Now who wouldn't do this, who isn't interested in this Jackpot.
You "Can't loose"!! and its Free!!. Wrong, I'd have it all. I, mister Admin ,
just recieved the EmailAddress from so many blind people, and their matching password. Since more then 90% uses the same password
over and over again because otherwise i'd be hard to remember Password X for site X and Password Y for site Y etc.
So In the end, I'm the owner of alot new accounts. ofcouse if you want to do this good you give away 1-2 weeks the Jackpot.
The more ppl subscribe to your LottoForum, the better for you!
Not Reality? Ofcouse this doesn't exist. Or does it? Every Server has about 100 guilds, every guild got a site ,
some even have an own public and private forum and I think you can figure out the rest...
Currently every Forum Admin controls your account. Some people think they are smart, they make a new Email Account for
private stuff: keys for programs, bank stuff, passwords to accounts, etc. nodoby knows this EmailAdress, so you'd think you're safe!
To Activate your private EmailAddress you need to Activate it with your "Funny" EmailAddress account.
But like everyone knows, every EmailSite got this default setting "[x] Send me Junkmail". So your "private" EmailSite is sending your
"Funny" EmailAddress some junk once in a while. A hacker only needs to wait for a mail like this or browse his "deleted/junkmail box"
and bingo he knows your "Private" EmailAdress. Browse to the site, Choose 'Lost Password' & 'Send me Email with new password'
(to the Funny Email Account) and he's in.
I think this makes things clear for people that already have been hacked. There are so many ways to 'Hack' someone on an Easy way.
The point of this story was to show how easy it is, how dumb and blind some people are. Mostly if you got hacked,
it's your own fault. Real hackers which use Programs and Leaks to get information don't do this
kind of dangerous work for stupid DAoC accounts, There is so much to tell, a hacker will always find a backdoor.
But mostly, it is you giving him the key to it.
A.