for all the content for vbulletin should be set to? Cascading permissions, etc? Thanks.

File permissions dont matter they can still hack no matter what you put them to. You need to make your forum ftp etc etc more secure but i dont think anyone has found out how they are hacking remember a really good hacker can get into anything u put into place

Ok, so removing the install directory (which I did) after installation is all that is required? Thx

Directories are normally 755, and files are normally 644. This might vary host to host though.

Assuming no one got in before you removed it, you should be safe.

Same stuff I post everywhere else:

Please read the following two blog posts:
http://www.vbulletin.com/forum/blogs/zachery/3993888-fixing-your-site-after-you-have-been-hacked
http://www.vbulletin.com/forum/blogs/zachery/3993849-best-practices-for-securing-your-vbulletin-site
Also please see these recent security announcements:
vBulletin 4.1.x-4.2.x & All versions of vBulletin 5: http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5
vBulletin 5.0.x patch released, for a different security issue: http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3993204-vbulletin-5-connect-security-patches-released-all-versions

Ok, thanks. Just want to be sure. Sisn't know if removing the install directory was the only thing to do, or if file/folder permissions needed to be changed as well. I know phpbb had you change some file permissions after install, wasn't sure if vbulletin was similar...

File permissions dont matter they can still hack no matter what you put them to. You need to make your forum ftp etc etc more secure but i dont think anyone has found out how they are hacking remember a really good hacker can get into anything u put into place

If you're referring to the Syrian Electronic Army hacks, all they are doing is executing scripts in the INSTALL directories.

Deleting those directories prevents further hacks through that exploit.

If you're referring to the Syrian Electronic Army hacks, all they are doing is executing scripts in the INSTALL directories.

Deleting those directories prevents further hacks through that exploit.

Yes but no matter what security you put a good hacker will still get passed them. Even if it only what this hacker has done