Um .... :confused:

The supposed exploit posted on June 16th refers to a file that doesn't exist in the Tufat version of Flashchat, afaik, it actually belonged to another chat product, also called flashchat (it's not a unique name). :cool:

It's not the fault of this mod at all, please get that fact very clear. It was the fault of Flashchat itself, installing this made no difference. I'm sorry you spent 4 hours cleaning up your damage, but I don't really appreciate you trying to take out your frustration on me, or my integration mod(s). :alien:

That's your choice, and makes no difference to me :)

I do wonder if you will uninstall vbulletin next time a security hole is found in it ;)

I'm not looking for someone to blame.

..and yes, if vBulletin was so insecure that something like this happened, i would indeed review my choice of forum software. That has never happened though, partly due to the extremely vigilant and speedy security alerts which drop into my mailbox from time to time.

BTW, just FYI - the hackers came again tonight, it would seem that they have left something on the server, some shell script or something, which still gives them access even after flashchat has been completely removed. My host is trying to figure out what/where.

It was NOT the integration mod. It was a Flashchat CMS for aedating which, if you understood what a CMS is, was not necessary for vBulletin integration. Had you understood the Flashchat install, and how Flashchat worked, you would not have left the CMSs for all the other programs there to begin with. If you read the install notes with Flashchat (and here I think), it was specific that only the vBulleting CMS was needed. I deleted the other CMSes after the install as 'foreign' files not needed for Flashchat to run and, of course, I didn't get hacked.

If you don't understand what files you're installing, you should get someone who does to install the program you want installed for you.

Oh, yeah sorry, that's right it's my fault. Silly me. :rolleyes:

@trilOByte, I have edited the inaccuracy from your previous post, despite it being made clear that this mod in no way contributed, your post inferred it was.

@everyone, I'm not prepared to allow this to flare up into a series of personal arguments, everyone please move on, any further off topic/argumentative posts are liable to be removed. Thanks.

Paul, I think you misunderstand me. Your mod has been excellent for my site, it has worked well and I can see no flaws in it. I do totally understand that your mod and tufats script are two different things.

That's not my point.

From my point of view, they come as a package. Like many others, I installed tufats script because of your excellent mod but your mod does need tufat's script to work. I'm not blaming anyone and I'm not looking for someone to moan at. But the fact remains that the package on offer here (your totally blameless mod + tufats flawed script), had or has a stinking great security hole in it.

Now I'm not sure if simply removing one file from the CMS's is going to plug the hole - I hope it does. But having spent the last 2 days running round chasing hackers off my server, I'm not inclined to place too much faith in that.

I hope the newer package from tufat is secure. If it proves to be in time, I will probably put you excellent mod back on my site, but for now, it (tufats script) consitutes too much of a risk. There are mixed messages on the forums. I've read in one thread that the kiddies were logged running a search for other files in the tufat installation. I dont know why, or if they are vulnerable, but the possibility that they might be, seems to exist.

Let me put it another way.

Can you guarantee that tufat's script is now secure?

If not, is it prudent to endorse it's use?

There are a couple of aedating files to remove to be sure, not just one file:

aedating4CMS.php
aedatingCMS2.php
aedatingCMS.php

And you may as well remove all the other cms files (they are unnecesary) except the vBulletin cms for your vBulletin version.

The hole was plugged in 4.6.2.

Look here...

http://www.zone-h.org/component/opti...berLord/page,2

And here: http://forum.tufat.com/showthread.php?t=24428