+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 18
Windows 7 Thread, Students "Hacking" each other in Technical; Happy Friday everyone! We are having an issue on site with students being hacked and having all of their folders ...
  1. #1

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Students "Hacking" each other

    Happy Friday everyone!

    We are having an issue on site with students being hacked and having all of their folders changed to "Gay" their work is left alone but this is bullying and we need to put a stop to it, I don't have a clue how they are doing it as of yet, but we have ruled out a simple case of the Machine's being left unattended and tampered with.

    The machine's run Python which is the only code related/script related program they could be using to do this, Am I being stupid? is it something you guys have heard of before?

    Cheers for your input
    Sam

  2. #2

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,713
    Thank Post
    667
    Thanked 1,636 Times in 1,462 Posts
    Rep Power
    424
    Double check your permission on the folders?

    Ben

  3. #3
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Location
    Powys, Wales
    Posts
    642
    Thank Post
    70
    Thanked 145 Times in 111 Posts
    Rep Power
    47
    Check your python script (Or even post it here)? Or even just check Permissions to their home areas? Its worth a try

  4. #4

    rush_tech's Avatar
    Join Date
    Jul 2006
    Location
    Nottingham
    Posts
    1,410
    Thank Post
    111
    Thanked 265 Times in 201 Posts
    Rep Power
    194
    I love it when they come in here saying that 'I've been hacked sir all my files are gone and the folders have been renamed!'

    What you really mean is that you left yourself logged on and some mean year 11 has sat down after you and decided to make a few changes to you user area!

  5. #5

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    The only time I was hacked was at Uni, and that was the point of the exercise. We had an SGI Indie network and the first one to 0wn the rest won.

  6. #6

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,054
    Thank Post
    888
    Thanked 1,729 Times in 1,492 Posts
    Blog Entries
    12
    Rep Power
    454
    Quote Originally Posted by plexer View Post
    Double check your permission on the folders?

    Ben
    I would check this first.

    Are the students using weak passwords?

  7. #7

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    The student's are using Passwords that must be changed after 4 weeks and also we have a rotating system so that the default password is never the same.

    The Folder for this particular students are has "Special Permissions" ticket for other users of the same year, I cannot believe I missed this at first.

    Could it be that glaringly simple? Although I'm convinced there is a simple script being run by a student as all the Folders where modified at exactly the same time, is there a way to check who last made changes to the folders?

    Cheers
    Sam

  8. #8

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,713
    Thank Post
    667
    Thanked 1,636 Times in 1,462 Posts
    Rep Power
    424
    If the permission permit access to other users then that is most definitely your problem.

    Ben

  9. #9
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,207
    Thank Post
    137
    Thanked 345 Times in 291 Posts
    Rep Power
    87
    This should fix your permissions problems in no time - NTFSFix

  10. #10

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    Quote Originally Posted by Sammidge View Post
    is there a way to check who last made changes to the folders?
    Only if you turned auditing on.

  11. #11

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,713
    Thank Post
    667
    Thanked 1,636 Times in 1,462 Posts
    Rep Power
    424
    Quote Originally Posted by Geoff View Post
    Only if you turned auditing on.
    Before the event

    Ben

  12. #12
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,350
    Thank Post
    123
    Thanked 95 Times in 65 Posts
    Rep Power
    29
    I'm always amazed how many students let other students know their passwords - its the first port of call when we look into stuff like this.

  13. #13

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    They Aren't the smartest of beasts, but we confirmed its not them account/password sharing.

    I'm looking into the Special Permission's on the account and it seems like a loophole that is so glaringly obvious I can't believe it was ever a problem

    I've inherited this network (i'm just a lowly Junior engineer at the moment) and A whole set of problem

    Thanks, for the help so far
    Sam

  14. #14


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,650
    Thank Post
    275
    Thanked 780 Times in 607 Posts
    Rep Power
    224
    Do members of staff have access to pupil folders to drop in / pickup work?

    Have you audited your security logs for logins when they couldn't (or shouldn't) have been at the machine the login appears to be from?

    Have you checked the membership of privileged domain groups?

    Is there a script on a shared drive called "Cool games" that when run changes the current directory to the homedir and runs a mass-rename of files?

  15. #15

    Join Date
    May 2012
    Location
    Location
    Posts
    81
    Thank Post
    17
    Thanked 7 Times in 6 Posts
    Rep Power
    6
    If you're running windows 7, which judging by the forum you posted this in you are.

    Remember that they can go up folders, it could be as easy as them finding their mates folders via such things as going up from their folder, and having the rights to change stuff.

    We had that problem here, we have a network shared folder for the kids, they would click on it, and on the top bar where it said '//network/Server1/shared' They would just click the word network and lovely windows 7 would display all of our servers on the network, half hour later they found all of the student areas, so we changed permissions pretty quickly!

    On windows 7 you cant stop kids finding the 'network' in my experience but you can stop them viewing anything when they are there!

    Ryan

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Stop pupils emailing each other Exchange 2003
    By tazz in forum How do you do....it?
    Replies: 12
    Last Post: 18th November 2010, 03:08 PM
  2. Blocking user emailing each other
    By modcoms in forum Windows
    Replies: 18
    Last Post: 18th March 2008, 06:51 PM
  3. Connect 2 buildings accross the road from each other
    By e_g_r in forum How do you do....it?
    Replies: 15
    Last Post: 4th July 2007, 02:55 PM
  4. Stop kids locking each others accounts
    By ken_kaniff in forum How do you do....it?
    Replies: 24
    Last Post: 18th May 2006, 02:21 PM
  5. Fuj Amilo Pro and DLink AP dont see each other
    By ChrisH in forum Wireless Networks
    Replies: 11
    Last Post: 15th September 2005, 11:32 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •