• We are now running on a new, and hopefully much-improved, server. In addition we are also on new forum software. Any move entails a lot of technical details and I suspect we will encounter a few issues as the new server goes live. Please be patient with us. It will be worth it! :) Please help by posting all issues here.
  • The forum will be down for about an hour this weekend for maintenance. I apologize for the inconvenience.
  • If you are having trouble seeing the forum then you may need to clear your browser's DNS cache. Click here for instructions on how to do that
  • Please review the Forum Rules frequently as we are constantly trying to improve the forum for our members and visitors.

SQL Exploit Attack?

S

slowfiveoh

Regular Member
Joined
Sep 15, 2009
Messages
1,415
Location
Richmond, VA
imported post

CarryOpen wrote:
I don't know a lot about mysql, but I am an Oracle DBA. It didn't look like it was a traffic issue, it looked like a db crash to me. Could have been a data file corrupted, disk issues, a backup that went south... etc. It didn't look like an attack to me though.
Click to expand...
I am a network engineer, and this is the same conclusion I would have come to. It was clear that it was unable, for whatever reason, to contact the Database for queries.

There are a ton of exploits for DoS'ing databases, unfortunately.

If you guys need any help with troubleshooting what happened I would be happy to offer my services at no fee. I am suspecting a request flood to the DB, or the segment where it was hosted was entirely DoS'd.
 
TFred

TFred

Regular Member
Joined
Oct 13, 2008
Messages
7,750
Location
Most historic town in, Virginia, USA
imported post

fully_armed_biker wrote:
Stranger things have happened. The Hacker's mantra is "If at first you don't succeed, try try again." They have a litany list of tools, mostly freely available on the Internet,that seek out vulnerabilitiesand try to exploit them...seeing as how Apache, the web server thissite runs on, and MySQL, the database server this site runs on, are public domain software...or actually GNU licensed, which means the source code is freely available to the public...those vulnerabilities are even easier to discover.
Click to expand...
And that also makes them much more likely to be discovered and fixed. Even the DoD, which long resisted open source, has climbed aboard.

And besides... shouldn't a forum about open carry also use open source software? ;)

TFred
 
N

Neo

Campaign Veteran
Joined
Aug 4, 2009
Messages
181
Location
Huntsville, AL, ,
imported post

It looks like some recent threads were lost, too. I was just looking for something I recently posted in reply to a new user and it appears to be missing.
 
P

Pace

Regular Member
Joined
Jun 2, 2009
Messages
1,140
Location
Las Vegas, NV
imported post

I spent more than a few years catching hackers (& kiddy porn distributors), so have some idea what can happen. As one user said, if they wanted, would be easy to crash it.

Neo wrote:
It looks like some recent threads were lost, too. I was just looking for something I recently posted in reply to a new user and it appears to be missing.
Click to expand...
 
You must log in or register to reply here.
Top