+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 18
Windows 7 Thread, Students "Hacking" each other in Technical; Happy Friday everyone! We are having an issue on site with students being hacked and having all of their folders ...
  1. #1

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Students "Hacking" each other

    Happy Friday everyone!

    We are having an issue on site with students being hacked and having all of their folders changed to "Gay" their work is left alone but this is bullying and we need to put a stop to it, I don't have a clue how they are doing it as of yet, but we have ruled out a simple case of the Machine's being left unattended and tampered with.

    The machine's run Python which is the only code related/script related program they could be using to do this, Am I being stupid? is it something you guys have heard of before?

    Cheers for your input
    Sam

  2. #2

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,596
    Thank Post
    725
    Thanked 1,685 Times in 1,500 Posts
    Rep Power
    432
    Double check your permission on the folders?

    Ben

  3. #3
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Location
    Powys, Wales
    Posts
    686
    Thank Post
    75
    Thanked 157 Times in 122 Posts
    Rep Power
    49
    Check your python script (Or even post it here)? Or even just check Permissions to their home areas? Its worth a try

  4. #4

    rush_tech's Avatar
    Join Date
    Jul 2006
    Location
    Nottingham
    Posts
    1,414
    Thank Post
    111
    Thanked 265 Times in 201 Posts
    Rep Power
    194
    I love it when they come in here saying that 'I've been hacked sir all my files are gone and the folders have been renamed!'

    What you really mean is that you left yourself logged on and some mean year 11 has sat down after you and decided to make a few changes to you user area!

  5. #5

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,813
    Thank Post
    110
    Thanked 586 Times in 507 Posts
    Blog Entries
    1
    Rep Power
    225
    The only time I was hacked was at Uni, and that was the point of the exercise. We had an SGI Indie network and the first one to 0wn the rest won.

  6. #6

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,228
    Thank Post
    894
    Thanked 1,778 Times in 1,533 Posts
    Blog Entries
    12
    Rep Power
    462
    Quote Originally Posted by plexer View Post
    Double check your permission on the folders?

    Ben
    I would check this first.

    Are the students using weak passwords?

  7. #7

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    The student's are using Passwords that must be changed after 4 weeks and also we have a rotating system so that the default password is never the same.

    The Folder for this particular students are has "Special Permissions" ticket for other users of the same year, I cannot believe I missed this at first.

    Could it be that glaringly simple? Although I'm convinced there is a simple script being run by a student as all the Folders where modified at exactly the same time, is there a way to check who last made changes to the folders?

    Cheers
    Sam

  8. #8

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,596
    Thank Post
    725
    Thanked 1,685 Times in 1,500 Posts
    Rep Power
    432
    If the permission permit access to other users then that is most definitely your problem.

    Ben

  9. #9
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,212
    Thank Post
    138
    Thanked 346 Times in 292 Posts
    Rep Power
    90
    This should fix your permissions problems in no time - NTFSFix

  10. #10

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,813
    Thank Post
    110
    Thanked 586 Times in 507 Posts
    Blog Entries
    1
    Rep Power
    225
    Quote Originally Posted by Sammidge View Post
    is there a way to check who last made changes to the folders?
    Only if you turned auditing on.

  11. #11

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,596
    Thank Post
    725
    Thanked 1,685 Times in 1,500 Posts
    Rep Power
    432
    Quote Originally Posted by Geoff View Post
    Only if you turned auditing on.
    Before the event

    Ben

  12. #12
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,380
    Thank Post
    125
    Thanked 97 Times in 66 Posts
    Rep Power
    31
    I'm always amazed how many students let other students know their passwords - its the first port of call when we look into stuff like this.

  13. #13

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    They Aren't the smartest of beasts, but we confirmed its not them account/password sharing.

    I'm looking into the Special Permission's on the account and it seems like a loophole that is so glaringly obvious I can't believe it was ever a problem

    I've inherited this network (i'm just a lowly Junior engineer at the moment) and A whole set of problem

    Thanks, for the help so far
    Sam

  14. #14


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,681
    Thank Post
    279
    Thanked 783 Times in 610 Posts
    Rep Power
    224
    Do members of staff have access to pupil folders to drop in / pickup work?

    Have you audited your security logs for logins when they couldn't (or shouldn't) have been at the machine the login appears to be from?

    Have you checked the membership of privileged domain groups?

    Is there a script on a shared drive called "Cool games" that when run changes the current directory to the homedir and runs a mass-rename of files?

  15. #15

    Join Date
    May 2012
    Location
    Location
    Posts
    87
    Thank Post
    17
    Thanked 7 Times in 6 Posts
    Rep Power
    6
    If you're running windows 7, which judging by the forum you posted this in you are.

    Remember that they can go up folders, it could be as easy as them finding their mates folders via such things as going up from their folder, and having the rights to change stuff.

    We had that problem here, we have a network shared folder for the kids, they would click on it, and on the top bar where it said '//network/Server1/shared' They would just click the word network and lovely windows 7 would display all of our servers on the network, half hour later they found all of the student areas, so we changed permissions pretty quickly!

    On windows 7 you cant stop kids finding the 'network' in my experience but you can stop them viewing anything when they are there!

    Ryan

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Stop pupils emailing each other Exchange 2003
    By tazz in forum How do you do....it?
    Replies: 12
    Last Post: 18th November 2010, 03:08 PM
  2. Blocking user emailing each other
    By modcoms in forum Windows
    Replies: 18
    Last Post: 18th March 2008, 06:51 PM
  3. Connect 2 buildings accross the road from each other
    By e_g_r in forum How do you do....it?
    Replies: 15
    Last Post: 4th July 2007, 02:55 PM
  4. Stop kids locking each others accounts
    By ken_kaniff in forum How do you do....it?
    Replies: 24
    Last Post: 18th May 2006, 02:21 PM
  5. Fuj Amilo Pro and DLink AP dont see each other
    By ChrisH in forum Wireless Networks
    Replies: 11
    Last Post: 15th September 2005, 11:32 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •