vb.org Archive
Page 2 of 4 1 2 34
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   V/Bulletin Getting hacked (https://vborg.vbsupport.ru/showthread.php?t=118613)

Freesteyelz 06-15-2006 12:27 AM
Quote:
Originally Posted by gio~logist
What about: iohjeodp2iu43hnHJHLKJH3dih2nfio23h498yuf-copux@#(*&$)& ?
Exceed password character limit I assume. Plus, sometimes the "(" will show up as illegal. If not, well...Good luck. :rolleyes:

bigmonay2k 06-15-2006 01:29 AM
Quote:
Originally Posted by gio~logist
What about: iohjeodp2iu43hnHJHLKJH3dih2nfio23h498yuf-copux@#(*&$)& ?
:cool:

lightwave 06-15-2006 01:31 AM
You guys think its just password?

What about table hacking...

Ntfu2 06-15-2006 01:51 AM
Unless he inserted some sort of script that will insert himself into the DB has a admin i doubt it.

You did completely delete everything didnt you?

Freesteyelz 06-15-2006 01:55 AM
Quote:
Originally Posted by lightwave
You guys think its just password?
At this point we don't know if your site has been compromised. It's a guessing game at this stage. The way to investigate is to minimize all unknown to questionable variables and go from there.

SaintDog 06-15-2006 02:41 AM
1). Set yourself as the only administrator, don't promote any other user for the time being.

2). In config.php, insert your userid in the area to limit the editing of users. This way, if it is something gaining access via the admin cp, they at least will not be able to edit your admin account.

3). Make sure the tools.php folder isn't accessable or uploaded.

4). Rename your admincp and modcp folders and then .htaccess them for an extra layer of protection.

The above should stop anyone gaining access via software, however, if they still get through the above, chances are there's a security breach somewhere along your server and you would need to contact your host and have them check the logs and such.

Sean S 06-15-2006 05:32 AM
I agree with all the steps given above, especially step 2. Also to add a little bit more security, make sure that you put a blank "index.html" page in almost all the folders that need one. Not having an index page allows people to look into your files and folders and they might find something within your files to steal data.

good luck to you.

lightwave 06-15-2006 04:13 PM
-I read it all.
Thanx ill try it

Kirk Y 06-15-2006 04:33 PM
Make sure too that you've set your Admin account as uneditable -- that way, he won't be able to remove you, if this is just simply another administrator messing with you. But if your actual site is being hacked, then this would only protect you if the intruder didn't know his way through vbulletin or was just an idiot.

SaintDog 06-15-2006 05:59 PM
Optionally, also check your admin logs to see if it is another administrator tinkering around. See what has been done and move from there. The above listed steps are the most crucial though and should prevent it from happening again, pending it's not something server-side.


All times are GMT. The time now is 02:50 PM.
Page 2 of 4 1 2 34
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01168 seconds
  • Memory Usage 1,733KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete