GO FISHING, use SLABSAUCE Fishing Attractant
Results 1 to 9 of 9

Thread: Hey admin's/mod's

  1. #1
    Join Date
    Oct 2005
    Location
    Calgary, AB
    Posts
    275

    Default Hey admin's/mod's

    Hey admin's/mod's!

    Sorry haven't been here in years, no BMW in the current fleet. Thought I'd let you know (you may already know) but your getting hit by a bot trying to log in, block IP 209.126.110.113 which is notorious for this around the web and it should help you from getting hacked and help your load times if they are hitting hard. Got the email from your server saying login was blocked and figured I'd pass it along.

    Dear AllGo'n'Show,

    Someone has tried to log into your account on BimmerNut.com Forums with an incorrect password at least 5 times. This person has been prevented from attempting to login to your account for the next 15 minutes.

    The person trying to log into your account had the following IP address: 209.126.110.113

    All the best,
    BimmerNut.com Forums


    Delete when you read this Good luck and thanks for staying around!

  2. #2
    Join Date
    May 2004
    Location
    Japan
    Posts
    9,249

    Default

    Just google with that IP and you find a lot
    209.126.110.113 anonymous-ip-database

    IP Check: 209.126.110.113 Country: United States
    We found 2454 matches for IP Addresses '209.126.110.113'
    http://botscout.com/ipcheck.htm?ip=209.126.110.113
    https://www.maxmind.com/de/geoip2-anonymous-ip-database

  3. #3
    Join Date
    Oct 2005
    Location
    Calgary, AB
    Posts
    275

    Default

    Quote Originally Posted by shogun View Post
    Just google with that IP and you find a lot
    209.126.110.113 anonymous-ip-database

    IP Check: 209.126.110.113 Country: United States
    We found 2454 matches for IP Addresses '209.126.110.113'
    http://botscout.com/ipcheck.htm?ip=209.126.110.113
    https://www.maxmind.com/de/geoip2-anonymous-ip-database
    Hi Shogun Yes lots of web results, lots of forum hits from that IP, that's all I'm saying if you block it at a server level, no issues for you guys from that IP.

    Have a good week!

  4. #4
    Join Date
    Dec 2003
    Location
    Eastern Tennessee USi
    Posts
    14,839

    Default

    Can only ban users, not IP addys from my end. I will PM Ed and let him know about this.
    95 E34 530I V2.37
    ===========
    Those who make peaceful revolution impossible will make violent revolution inevitable.

    John F. Kennedy

  5. #5
    Join Date
    Dec 2010
    Location
    FL
    Posts
    1,033

    Default

    I just blacklisted that whole IP range at the server level.

    All servers on the internet get attacked all the time. Here they are actually attacking the application though. I see these too. When I see that the IP is China or Russia, I always ban the IP range. But not usually from the USA. In this case I did anyway. Sorry about the issues, it's Al Gore's fault. lol

    A Bimmer Nut '99 Z3, '06 330cicm zhp, '69 r60, Owner/Operator of www.Bimmer.info and www.BimmerNut.com

  6. #6
    Join Date
    May 2004
    Location
    Japan
    Posts
    9,249

    Default

    Also got a similar message from Micah O'C some weeks ago on same subject, seems they try all user names:

    Hi Shogun - I thought it noteworthy -
    I got notification that someone was trying to get into my bimmernut.com account from the IP address 171.25.193.78 at some time on Sunday evening.
    ------------------------
    So do not use the easiest passwords.

    15 Tips To Better Password Security
    Protect your information by creating a secure password that makes sense to you, but not to others.

    Most people don’t realize there are a number of common techniques used to crack passwords and plenty more ways we make our accounts vulnerable due to simple and widely used passwords.

    How to get hacked

    Dictionary attacks: Avoid consecutive keyboard combinations— such as qwerty or asdfg. Don’t use dictionary words, slang terms, common misspellings, or words spelled backward. These cracks rely on software that automatically plugs common words into password fields. Password cracking becomes almost effortless with a tool like John the Ripper or similar programs.

    Cracking security questions: Many people use first names as passwords, usually the names of spouses, kids, other relatives, or pets, all of which can be deduced with a little research. When you click the “forgot password” link within a webmail service or other site, you’re asked to answer a question or series of questions. The answers can often be found on your social media profile. This is how Sarah Palin’s Yahoo account was hacked.

    Simple passwords: Don’t use personal information such as your name, age, birth date, child’s name, pet’s name, or favorite color/song, etc. When 32 million passwords were exposed in a breach last year, almost 1% of victims were using “123456.” The next most popular password was “12345.” Other common choices are “111111,” “princess,” “qwerty,” and “abc123.”

    Reuse of passwords across multiple sites: Reusing passwords for email, banking, and social media accounts can lead to identity theft. Two recent breaches revealed a password reuse rate of 31% among victims.

    Social engineering: Social engineering is an elaborate type of lying. An alternative to traditional hacking, it is the act of manipulating others into performing certain actions or divulging confidential information.

    How to make them secure
    1.Make sure you use different passwords for each of your accounts.
    2.Be sure no one watches when you enter your password.
    3.Always log off if you leave your device and anyone is around—it only takes a moment for someone to steal or change the password.
    4.Use comprehensive security software and keep it up to date to avoid keyloggers (keystroke loggers) and other malware.
    5.Avoid entering passwords on computers you don’t control (like computers at an Internet café or library)—they may have malware that steals your passwords.
    6.Avoid entering passwords when using unsecured Wi-Fi connections (like at the airport or coffee shop)—hackers can intercept your passwords and data over this unsecured connection.
    7.Don’t tell anyone your password. Your trusted friend now might not be your friend in the future. Keep your passwords safe by keeping them to yourself.
    8.Depending on the sensitivity of the information being protected, you should change your passwords periodically, and avoid reusing a password for at least one year.
    9.Do use at least eight characters of lowercase and uppercase letters, numbers, and symbols in your password. Remember, the more the merrier.

    10. Strong passwords are easy to remember but hard to guess. Iam2b29! — This has 10 characters and says “I am happy to be 29!” I wish.

    11. Use the keyboard as a palette to create shapes. %tgbHU8*- Follow that on the keyboard. It’s a V. The letter V starting with any of the top keys. To change these periodically, you can slide them across the keyboard. Use W if you are feeling all .

    12. Have fun with known short codes or sentences or phrases. 2B-or-Not_2b? —This one says “To be or not to be?”

    13. It’s okay to write down your passwords, just keep them away from your computer and mixed in with other numbers and letters so it’s not apparent that it’s a password.

    14. You can also write a “tip sheet” which will give you a clue to remember your password, but doesn’t actually contain your password on it. For example, in the example above, your “tip sheet” might read “To be, or not to be?”

    15. Check your password strength. If the site you are signing up for offers a password strength analyzer, pay attention to it and heed its advice.

    Robert Siciliano is a McAfee Consultant and Identity Theft Expert. https://blogs.mcafee.com/consumer/15...sword-security

  7. #7
    Join Date
    Oct 2005
    Location
    Calgary, AB
    Posts
    275

    Default

    Wow glad to see everyone is still around I have some good old Russians pounding my server too, oh the funs of the modern world... Glad I could pass it along to everyone.

  8. #8
    Join Date
    Jan 2008
    Posts
    17

    Default

    same here. Haven't logged in for a while, but 2 times in the past two weeks, get an email about failed login attempts. Here's the ip for the most recent: 198.50.145.72

    Mike

  9. #9
    Join Date
    May 2004
    Location
    Japan
    Posts
    9,249

    Default

    According to IP data search it would be - if not fake -
    IP address is 198.50.145.72
    City: Montreal
    Country: Canada
    Continent: North America

Similar Threads

  1. Sent message to admin
    By 632 Regal in forum 5 Series BMW
    Replies: 12
    Last Post: 04-04-2010, 10:04 PM
  2. Admin rights needed for ETK/TIS install....?
    By Bellicose Right Winger in forum 5 Series BMW
    Replies: 15
    Last Post: 10-13-2005, 09:34 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •