Uhh...hbh hashes ;\
Well, this is what i found and I don't know what to think of it.
[sorry, i had to edit that out. For obvious security reason - Scankyfrank]
Ok, obviously I didn't think anything to big of it…but yeah I took a few of those hashes, and cracked. I got plain text passwords of some memebrs here :S and it's actually where I got all this from is what's confusing me. Here's an example:
******************************:evelyn That is a valid password for the user "" and I got more. I don't know of this was an old flaw and these hashes were still lying around…but yeah ;s I just kinda cracked a bunch..all valid ;s
Dude - This is an old distro of the db.
All passwords are different to what they are now.
I have tested before; Informed cheese and the problem is fixed.
Maybe next time you should think about keeping this information private until Cheese comes online so some tosser decides to login and put 'omg i was owned by <insert name>' in the shoutbox.
It seems to be a common occurance for members who's skills have never left this site and think that it never should.
So when a copy of the database became public, people shoutbox etc.
It's the closest they can get to a defacement.
Anarcho:- I was logged into your account a few nights back as a test. I didn't read PM's, shoutbox public nor admin or abuse the privelages you have. I informed cheese that the database is still public.
The 'conflict' surrounding this is deeply flawed within itself. First some comments on existing posts:
And now iHackers are distributing old versions Does iHackers have an existing website? Any existing data i could not locate on Google.
Anarchy99 I believe have Locus7s have most recently That was very amusing. I could give you a little story on HBH history if you were interested.
It's not rare to stumble accross the userlist, and if you do… your better off deleting it.Look around you. Most people here would kill to get that list. Because chances are, people use the same password in multiple places. Take a look at t35.com. Their database was taken by i love hbh. keep up the good work! Also look at i love hbh. keep up the good work!.com. Do you realize how many noobs "h4x0r" small sites by using the list? They are extremely pathetic. Nonetheless, keep ANY lists away from those noobs looking for blood.
Cause if it's the db of today then you're not supposed to have it Says who? Im sure alot of HBH members have the entire source, database. Will i be banned if I have the entire public_html/ folder on my desktop? If so, that would just expose the ignorance of the staff.
'omg i was owned by <insert name>' in the shoutbox.Reminds me of r4z0rblade, or The_Reaper, as he used to go by.
I informed cheese that the database is still public.Indeed it is. And there is nothing Mr_Cheese can do about it.
Hehe. How did you know?He is magic.
Of course my dear friend from locus7, tell me a story about HBH.
The_Reaper? Wasn't he the one who hacked techsploit? Took over the whole site and made it his own?
DaJooB don't even encrypt their passwords for subdomains so there isn't even a skill for the n00bs.
And yes, most probably you would get banned for having the source on your desktop if you planned to distribute it. If you planned to tell Mr_Cheese and tell him how you got it you would prolly recieve HoF.
There is only so much he can do to stop people who try to show off to new hackers on sites like these.
And of course he is magic, he is a hippie. In honesty I think it's 'cos I posted and hadn't logged back into my account.