PDA

View Full Version : What is this on here now?


ozzy47
11-17-2013, 01:00 PM
What is up with this stuff now?

nhawk
11-17-2013, 01:02 PM
Getting the same thing here..

ozzy47
11-17-2013, 01:04 PM
Me thinks there is something configured wrong somewhere.

--------------- Added 1384697343 at 1384697343 ---------------

For now I would not put any of your info in that box, till someone knows what it is.

Dead Eddie
11-17-2013, 01:33 PM
Is it related to the announcement Stingray27 managed to post?

ozzy47
11-17-2013, 01:35 PM
I am not sure, but as I said, I would not put your info into the box till we know what it is.

blind-eddie
11-17-2013, 02:08 PM
I have seen this happen from image links being posted in threads that are from password protected directories. I have done this myself here on the org.

ForceHSS
11-17-2013, 02:14 PM
Getting this myself has the site been hacked?

ozzy47
11-17-2013, 02:16 PM
Yeah it is possible this happened due to the recent security concerns, and they added some additional security.

But that don't explain the announcement that was posted by Stingray27 in my screenshot.

--------------- Added 1384701421 at 1384701421 ---------------

Getting this myself has the site been hacked?

I don't believe so, probably additional security configured wrong.

ForceHSS
11-17-2013, 02:19 PM
Yeah it is possible this happened due to the recent security concerns, and they added some additional security.

But that don't explain the announcement that was posted by Stingray27 in my screenshot.

--------------- Added 1384701421 at 1384701421 ---------------



I don't believe so, probably additional security configured wrong.

All i seen in stingray post was ~

ozzy47
11-17-2013, 02:20 PM
Yeah that is all I saw too.

ForceHSS
11-17-2013, 02:22 PM
He should get a warning or something for posting something that he knows he should not off

ozzy47
11-17-2013, 02:23 PM
I am sure when Paul gets here, he will have a explanation for everything.

findingpeace
11-17-2013, 02:53 PM
Is it related to the announcement Stingray27 managed to post?

I think so. Only happens on pages where the Global Announcement is visible (showforum), and on the announcement itself:

https://vborg.vbsupport.ru/announcement.php?f=7&a=49

ozzy47
11-17-2013, 02:56 PM
Yeah seems he did a naughty thing. :(

TheLastSuperman
11-17-2013, 06:20 PM
Correct all, it was a link or image included in the announcement that linked directly to a password protected file/folder. I recently had to remove 3 images from a modification thread because the author now has the entire server .htaccess protected and everytime you veiwed the mod thread you were prompted for login credentials :p.

It is always best to be curious about these things though even if you're not a vet who knows these things why? As the old saying goes better safe then sorry ;).

ozzy47
11-17-2013, 06:23 PM
Cool, but how did a user post a announcement?

Max Taxable
11-17-2013, 06:25 PM
Correct all, it was a link or image included in the announcement that linked directly to a password protected file/folder. Interesting that Stingray27 hasn't posted since Feb. of 2010, and now he is posting announcements? Suddenly has(d) Moderator permissions?

Lynne
11-17-2013, 06:50 PM
That account is one of our test accounts which is why he was able to post an announcement.

ForceHSS
11-17-2013, 10:02 PM
So who logged in to just post ~ and why not delete it after looks a bit strange

Jafo232
11-18-2013, 03:52 AM
I wonder if there was an identical test account at vbulletin.com (http://www.vbulletin.com/forum/member/137238-stingray27) with the same password?

TheLastSuperman
11-18-2013, 05:18 AM
Interesting that Stingray27 hasn't posted since Feb. of 2010, and now he is posting announcements? Suddenly has(d) Moderator permissions?

Hey I see where you were going with this :cool: - Would have been shocking if not a staff member :eek:

So who logged in to just post ~ and why not delete it after looks a bit strange

I have not asked yet but I would assume simply becoming sidetracked while multi-tasking or perhaps company at the door heck I alone had to delay a few people on skype this weekend, people kept coming over to see me ;).

I wonder if there was an identical test account at vbulletin.com (http://www.vbulletin.com/forum/member/137238-stingray27) with the same password?

Could be, I doubt it has the same password though considering recent events.

That account is one of our test accounts which is why he was able to post an announcement.

^ As Lynne said it's a legitimate account, no worries folks I know some of you are concerned over recent events but don't let a staff member here doing some testing rile you up that much ;).

Paul M
11-18-2013, 12:25 PM
This was not a legitimate test by anyone.

Whoever was using that account was not authorized, I would strogly advise anyone who ran that announcement code to change their password (again if necessary).

New Joe
11-18-2013, 01:02 PM
Oh dear oh dear......
Looks like a bit more of a clean up and secure up needs doing.
I can see these problems going on for a while guessing how much info they got with the hack of here and the vb dot com site.

BSMedia
11-18-2013, 05:11 PM
Wonder how many people fell in to that trap this time?