Hello Members,

I bought vBulletin 10 days ago. While using i found some errors.

1) Members can't login without www

eg. Login works great - www.sharingbb.com

Members can't login using http://sharingbb.com

2) Plugin Manager page changed

Yesterday i clicked on plugin manager and i found that the page has completely change automatically. First it was different now it is different.

I am posting page screenshot ( Sorry can't provide old page screenshot .. but i am sure you can find out the difference )

Screen shot -
https://vborg.vbsupport.ru/external/2009/01/86.png

3) Is it possible to hack vBulletin Forum ?

Few days ago i purchased VIP Membership on phpbb forum. There i found some hacking tutorials provided by forum staff members for VIPs!

One of them was How To Hack vBulletin .. I read that article and found that it is very easy to hack nulled vBulletin Board. Then i thought what about licensed ? So just wanted to ask if somebody knows my customer number can they hack my Board ?? or its impossible to hack it ?

And can i remove version details from footer to prevent hackers getting information ?

With warm regards,
Mandar

1. set cookie domain to .yourdomain.com (note the dot in front) that way www. & non www pages keep members logged in.

2. thats the plugin manager, not the product manager page. (If you mean what happened to the left column in that page?)

3. don not ask about nulled vb products., as far as vb being easy to hack, thats untrue, if you want oremove the vb version info, i do not believe thats against the license agreement.

thanks for replying sir. By the way can i delete my install folder to protect forum ?

And i asked admins of many large forums that why they are using phpbb . . .They told me that phpbb is used by real webmasters and it is very easy to hack vbulletin . . They also said that they will prefer using IPB instead of vb !

Of course i am big supporter of vb . . . Not going to listen them . . Cheers :)

You can delete the /install folder if you want.

okies :) thanks ! And i was thinking how to set cookies ! from vbulletin options right ? By changing that blank ?

They told me that phpbb is used by real webmasters and it is very easy to hack vbulletin

I think they've got the two switched around. :)

Nulled vBulletin installations are prone to exploitation because (a) they're most likely running outdated and insecure components and (b) they're nulled! (it's very likely the person who nulled it also put security holes in).

If you're running an up-to-date and legal instance of vBulletin and you're careful as to what modifications (if any) you install, you've got nothing to worry about.

phpBB used to be the holy grail of exploits and hackability. However, the newer versions are likely to be pretty secure.

okay :) thanks a lot ! I am only installing mods from vb.org and one from vbseo .... Thats all ! Also removing / renaming install folder ! Edited .htaccess file :) any more suggestions ? Thanks ;)

Interesting discussion going here. I truly hope that this time, hackers can't hack into my board to install some spam bot or whatever they call it. Had SMF but after 16 months hackers were in the drivers' seats and the only thing I could do was watch...

It was a very user friendly board, though. Very good for people with no code/HTML/PHP knowledge like myself.

--------------- Added 1231059915 at 1231059915 ---------------

1. set cookie domain to .yourdomain.com (note the dot in front) that way www. & non www pages keep members logged in.

2. thats the plugin manager, not the product manager page. (If you mean what happened to the left column in that page?)

3. don not ask about nulled vb products., as far as vb being easy to hack, thats untrue, if you want oremove the vb version info, i do not believe thats against the license agreement.


Interesting Snakes,

I could use some of your advice as well. Where is the Plugin manager exactly so that I put in that one dot you mentioned? or is it set by default? I had the board installed by a vbulletin tech so things could be alright for me.... or?

@ singa

Well I dont think hackers can install any spam bot or something on vbulletin board. Its very secure board :) I have asked some pro hackers to hack my trial board ! Lets see now but i doubt they will succeed !

Installing vbulletin is very easy but if you want you can ask vb tech staff to install it !

Where is the Plugin manager exactly so that I put in that one dot you mentioned? or is it set by default? I had the board installed by a vbulletin tech so things could be alright for me.... or?
That setting is located in the Admin CP > vBulletin Options > Cookie Options > Cookie Domain. The Plugin Manager is a completely different thing.

Thanks for all the help. You can close this thread :) Thank you.