+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 18
Windows 7 Thread, Students "Hacking" each other in Technical; Happy Friday everyone! We are having an issue on site with students being hacked and having all of their folders ...
  1. #1

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Students "Hacking" each other

    Happy Friday everyone!

    We are having an issue on site with students being hacked and having all of their folders changed to "Gay" their work is left alone but this is bullying and we need to put a stop to it, I don't have a clue how they are doing it as of yet, but we have ruled out a simple case of the Machine's being left unattended and tampered with.

    The machine's run Python which is the only code related/script related program they could be using to do this, Am I being stupid? is it something you guys have heard of before?

    Cheers for your input
    Sam

  2. #2

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,691
    Thank Post
    756
    Thanked 1,715 Times in 1,526 Posts
    Rep Power
    438
    Double check your permission on the folders?

    Ben

  3. #3
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Location
    Powys, Wales
    Posts
    708
    Thank Post
    77
    Thanked 159 Times in 124 Posts
    Rep Power
    49
    Check your python script (Or even post it here)? Or even just check Permissions to their home areas? Its worth a try

  4. #4

    rush_tech's Avatar
    Join Date
    Jul 2006
    Location
    Nottingham
    Posts
    1,427
    Thank Post
    112
    Thanked 269 Times in 202 Posts
    Rep Power
    195
    I love it when they come in here saying that 'I've been hacked sir all my files are gone and the folders have been renamed!'

    What you really mean is that you left yourself logged on and some mean year 11 has sat down after you and decided to make a few changes to you user area!

  5. #5

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227
    The only time I was hacked was at Uni, and that was the point of the exercise. We had an SGI Indie network and the first one to 0wn the rest won.

  6. #6

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,376
    Thank Post
    906
    Thanked 1,811 Times in 1,559 Posts
    Blog Entries
    12
    Rep Power
    468
    Quote Originally Posted by plexer View Post
    Double check your permission on the folders?

    Ben
    I would check this first.

    Are the students using weak passwords?

  7. #7

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    The student's are using Passwords that must be changed after 4 weeks and also we have a rotating system so that the default password is never the same.

    The Folder for this particular students are has "Special Permissions" ticket for other users of the same year, I cannot believe I missed this at first.

    Could it be that glaringly simple? Although I'm convinced there is a simple script being run by a student as all the Folders where modified at exactly the same time, is there a way to check who last made changes to the folders?

    Cheers
    Sam

  8. #8

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,691
    Thank Post
    756
    Thanked 1,715 Times in 1,526 Posts
    Rep Power
    438
    If the permission permit access to other users then that is most definitely your problem.

    Ben

  9. #9
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,214
    Thank Post
    138
    Thanked 347 Times in 293 Posts
    Rep Power
    90
    This should fix your permissions problems in no time - NTFSFix

  10. #10

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227
    Quote Originally Posted by Sammidge View Post
    is there a way to check who last made changes to the folders?
    Only if you turned auditing on.

  11. #11

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,691
    Thank Post
    756
    Thanked 1,715 Times in 1,526 Posts
    Rep Power
    438
    Quote Originally Posted by Geoff View Post
    Only if you turned auditing on.
    Before the event

    Ben

  12. #12
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,437
    Thank Post
    130
    Thanked 109 Times in 73 Posts
    Rep Power
    33
    I'm always amazed how many students let other students know their passwords - its the first port of call when we look into stuff like this.

  13. #13

    Join Date
    Jun 2013
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    They Aren't the smartest of beasts, but we confirmed its not them account/password sharing.

    I'm looking into the Special Permission's on the account and it seems like a loophole that is so glaringly obvious I can't believe it was ever a problem

    I've inherited this network (i'm just a lowly Junior engineer at the moment) and A whole set of problem

    Thanks, for the help so far
    Sam

  14. #14


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,715
    Thank Post
    288
    Thanked 789 Times in 616 Posts
    Rep Power
    226
    Do members of staff have access to pupil folders to drop in / pickup work?

    Have you audited your security logs for logins when they couldn't (or shouldn't) have been at the machine the login appears to be from?

    Have you checked the membership of privileged domain groups?

    Is there a script on a shared drive called "Cool games" that when run changes the current directory to the homedir and runs a mass-rename of files?

  15. #15

    Join Date
    May 2012
    Location
    Location
    Posts
    87
    Thank Post
    17
    Thanked 7 Times in 6 Posts
    Rep Power
    7
    If you're running windows 7, which judging by the forum you posted this in you are.

    Remember that they can go up folders, it could be as easy as them finding their mates folders via such things as going up from their folder, and having the rights to change stuff.

    We had that problem here, we have a network shared folder for the kids, they would click on it, and on the top bar where it said '//network/Server1/shared' They would just click the word network and lovely windows 7 would display all of our servers on the network, half hour later they found all of the student areas, so we changed permissions pretty quickly!

    On windows 7 you cant stop kids finding the 'network' in my experience but you can stop them viewing anything when they are there!

    Ryan



SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Stop pupils emailing each other Exchange 2003
    By tazz in forum How do you do....it?
    Replies: 12
    Last Post: 18th November 2010, 04:08 PM
  2. Blocking user emailing each other
    By modcoms in forum Windows
    Replies: 18
    Last Post: 18th March 2008, 07:51 PM
  3. Connect 2 buildings accross the road from each other
    By e_g_r in forum How do you do....it?
    Replies: 15
    Last Post: 4th July 2007, 03:55 PM
  4. Stop kids locking each others accounts
    By ken_kaniff in forum How do you do....it?
    Replies: 24
    Last Post: 18th May 2006, 03:21 PM
  5. Fuj Amilo Pro and DLink AP dont see each other
    By ChrisH in forum Wireless Networks
    Replies: 11
    Last Post: 15th September 2005, 12:32 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •