bitbender
05-10-2003, 01:19 PM
Boys and girls
It happens to us all, we build a decent place, peeps come and go, and lo and behold a turd decides that he is going to become a super hacker and try to trash your DB thru a posting bot...
So, you start seeing all these emails from db_mysql, bad password and such, and a session hash that's weird, and cannot be found, or no session hash at all. Example;
Database error in vBulletin :
Link-ID == false, connect failed
mysql error: Access denied for user: 'mydbusername@localhost' (Using password: YES)
Note: I changed the user id above for obvious display reasons- It's NOT mydbusername
mysql error number: 1045
Date: Friday 09th of May 2003 07:16:15 PM
Script: /vb22/usercp.php?
Referer:
-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Database error in vBulletin :
Link-ID == false, connect failed
mysql error: Access denied for user: 'mydbusername@localhost' (Using password: YES)
mysql error number: 1045
Date: Friday 09th of May 2003 06:43:57 AM
Script: /vb22/index.php? s = bedcecb47073caae6fb6513d7e5b249c
Referer:
-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
I added some code to the email notify, along with a function to derive the REAL ip addy (as far as one can) to at least list the IP addy in the email, so that it can be properly added to Mr. rack's firewall, but I was wondering, is there a hack out here that already addresses this?? I did a search, and got rather an empty list.. :smoke:
I used a function I found at PHP.net to get the IP addy, and just called that sucka when I parsed the additional email message in db_mysql.
Is that about all a fella can do?? I really hate turd users who have perenially failed at self copulation, and have resorted to abusing what they cannot make for themselves, either by computer, or by hand. :cross-eyed:
It happens to us all, we build a decent place, peeps come and go, and lo and behold a turd decides that he is going to become a super hacker and try to trash your DB thru a posting bot...
So, you start seeing all these emails from db_mysql, bad password and such, and a session hash that's weird, and cannot be found, or no session hash at all. Example;
Database error in vBulletin :
Link-ID == false, connect failed
mysql error: Access denied for user: 'mydbusername@localhost' (Using password: YES)
Note: I changed the user id above for obvious display reasons- It's NOT mydbusername
mysql error number: 1045
Date: Friday 09th of May 2003 07:16:15 PM
Script: /vb22/usercp.php?
Referer:
-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Database error in vBulletin :
Link-ID == false, connect failed
mysql error: Access denied for user: 'mydbusername@localhost' (Using password: YES)
mysql error number: 1045
Date: Friday 09th of May 2003 06:43:57 AM
Script: /vb22/index.php? s = bedcecb47073caae6fb6513d7e5b249c
Referer:
-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
I added some code to the email notify, along with a function to derive the REAL ip addy (as far as one can) to at least list the IP addy in the email, so that it can be properly added to Mr. rack's firewall, but I was wondering, is there a hack out here that already addresses this?? I did a search, and got rather an empty list.. :smoke:
I used a function I found at PHP.net to get the IP addy, and just called that sucka when I parsed the additional email message in db_mysql.
Is that about all a fella can do?? I really hate turd users who have perenially failed at self copulation, and have resorted to abusing what they cannot make for themselves, either by computer, or by hand. :cross-eyed: