Sorry to hear that, [email protected] from Ohio born on June 30, 1991 using IP 66.49.48.3 (resolved from skype ynabitch).
IP address, 66.49.48.3. Hostname, 66.49.48.3.nw.nuvox.net. Port, 8333. Country, United States. City, Kent. ASN, AS7029
weirdthall with the email [email protected], also known as StarryNight on WhiskChat, using Sky Network Services from Manchester (IP 2.124.225.136), got it.
j0se1it0 with the email [email protected], you should note that your plaintext password has been available since 2012. https://dazzlepod.com/yahoo/?page=2055 - hi 186.222.215.151 from Sao Paulo, Brazil.
Topic: [LOL] KBVE pwn'd. (Read 1062 times)
Official Staff Responsibilities / To-Do List
Relical - Advertising and Marketing Administrator
-> Compile a list of forums we can advertise our faucet on?
-> Make threads in these said forums.
-> Oversight over registration / invite
DetoxSA -> Social Administrator
-> Must stay active on all social platforms for KBVE (Includes coinchat and various bitcoin forums)
-> Incharge of all Contests
-> Oversight over ALL Social related issues
Cahriz -> Gaming, Gambling and GM Administrator
- Oversight over all Gambling related projects
- Incharge of all Gaming Projects
-> Build Development teams and keep them stable
-> Incharge of hiring/regulating GMs
-> Oversight over ALL GGG related issues
h0ly -> Development and Systems Administrator
-> Incharge of keeping the forums updated
-> Security throughout the whole forum
-> Overlord and God and Final Judgment.
Relical - Advertising and Marketing Administrator
-> Compile a list of forums we can advertise our faucet on?
-> Make threads in these said forums.
-> Oversight over registration / invite
DetoxSA -> Social Administrator
-> Must stay active on all social platforms for KBVE (Includes coinchat and various bitcoin forums)
-> Incharge of all Contests
-> Oversight over ALL Social related issues
Cahriz -> Gaming, Gambling and GM Administrator
- Oversight over all Gambling related projects
- Incharge of all Gaming Projects
-> Build Development teams and keep them stable
-> Incharge of hiring/regulating GMs
-> Oversight over ALL GGG related issues
h0ly -> Development and Systems Administrator
-> Incharge of keeping the forums updated
-> Security throughout the whole forum
-> Overlord and God and Final Judgment.
Current Funds as of 10/28/2013 @ 12:02AM EST
Bank
Fiat (Cash Included):
$107 Paypal
CryptoCurrency:
- 2 BTC
Vircurex: 0.47 BTC
Coinbase Faucet - 0.1979 BTC
Inputs Faucet - 0.193 BTC
Coinbase General Funds - 1.39 BTC
-
Total Budget : $500 USD
Costs
Monthly:
- $7.00 2GB VPS (us1) -> Allocated to KBVE
- $7.00 2GB VPS (us2) -> Allocated to Minecraft
- *[1]* - 0.5 BTC Reserve for Private Faucet
- *[2]* - Contests/Events
Yearly:
- $10.00 Domain Renewal
Total Faucet Sent:
- 0.359 BTC (Inputs)
- 0.3 CoinBase
= 0.659 ~ $65 (at that time) and $130~ (Current)
Assets
Hosting:
- $10.00 Shared Hosting Account (us3) -> Allocated for CDN (Paid by 3rd Party Anonymous)
- 7 Namecheap VPS -> Allocated towards mining XPM.
Domains:
RuHype.com (Megal)
Warcades.com (Megal)
Niftyvibes.com (Frank Wild)
Yanille.com (Parker)
Constantly Updated Information?: Nothing major.
Bank
Fiat (Cash Included):
$107 Paypal
CryptoCurrency:
- 2 BTC
Vircurex: 0.47 BTC
Coinbase Faucet - 0.1979 BTC
Inputs Faucet - 0.193 BTC
Coinbase General Funds - 1.39 BTC
-
Total Budget : $500 USD
Costs
Monthly:
- $7.00 2GB VPS (us1) -> Allocated to KBVE
- $7.00 2GB VPS (us2) -> Allocated to Minecraft
- *[1]* - 0.5 BTC Reserve for Private Faucet
- *[2]* - Contests/Events
Yearly:
- $10.00 Domain Renewal
Total Faucet Sent:
- 0.359 BTC (Inputs)
- 0.3 CoinBase
= 0.659 ~ $65 (at that time) and $130~ (Current)
Assets
Hosting:
- $10.00 Shared Hosting Account (us3) -> Allocated for CDN (Paid by 3rd Party Anonymous)
- 7 Namecheap VPS -> Allocated towards mining XPM.
Domains:
RuHype.com (Megal)
Warcades.com (Megal)
Niftyvibes.com (Frank Wild)
Yanille.com (Parker)
Constantly Updated Information?: Nothing major.
Since we have reason to believe(read: we know) that we are being targeted, I'd like to propose some new security protocols for the consideration of all staff members:
1. For all shell access to servers, Two Factor Authentication must be used(implemented, h0ly PM me for the secret key)
2. All non-essential services on the US1 should be disabled(why do we have a DNS server running on the US1 anyways?, IMAP and POP will be unused since forwarders are all that runs on the US1, and an SMB server? Seriously?)
3. Access to the admin panel(s) should require tunneling through the US2 or US1 SSH(for security reasons) - or maybe an OpenVPN server, which provides a similar level of security in a much more convient way. I'm also looking into client-side SSL authentication(where the client authenticates to the server using SSL instead of vise-versa) for this.
4. MySQL should not be accessible from the public web
5. Fail2Ban should be loaded onto the US1 and US2(I plan to do this asap)
6. KBVE's Bitcoins should be stored in an m-of-n multisig address, to which each staff member should have a key, with h0ly having two keys. Three keys should be required to get any money from this address.
7. Staff members going on vacation should request that their account be de-admined and locked while on vacation, unless they plan to be monitoring KBVE from their vacation, in which case they MUST USE SSL through satoshize when on hotel/public access points.
Thoughts?
1. For all shell access to servers, Two Factor Authentication must be used(implemented, h0ly PM me for the secret key)
2. All non-essential services on the US1 should be disabled(why do we have a DNS server running on the US1 anyways?, IMAP and POP will be unused since forwarders are all that runs on the US1, and an SMB server? Seriously?)
3. Access to the admin panel(s) should require tunneling through the US2 or US1 SSH(for security reasons) - or maybe an OpenVPN server, which provides a similar level of security in a much more convient way. I'm also looking into client-side SSL authentication(where the client authenticates to the server using SSL instead of vise-versa) for this.
4. MySQL should not be accessible from the public web
5. Fail2Ban should be loaded onto the US1 and US2(I plan to do this asap)
6. KBVE's Bitcoins should be stored in an m-of-n multisig address, to which each staff member should have a key, with h0ly having two keys. Three keys should be required to get any money from this address.
7. Staff members going on vacation should request that their account be de-admined and locked while on vacation, unless they plan to be monitoring KBVE from their vacation, in which case they MUST USE SSL through satoshize when on hotel/public access points.
Thoughts?
Jump to: