vb.org Archive
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   My forum hacked - any help appreciated (https://vborg.vbsupport.ru/showthread.php?t=223891)

mcrider 10-05-2009 02:56 PM
Quote:
Originally Posted by MAD--DOG (Post 1895133)
see man some one must have access to an ftp to ur hosting thats the only way some one can add an index page with an image that says that you been hacked
What about a remote file include vulnerability....be careful what you wish for

Aspergillus 10-05-2009 05:35 PM
Dear m8's,

in the last few Month i observed many times so called "hacks" and it allways turned out be have been started by FTP. There ist a Trojan going arround spying out FTP Passwords.. sending them to a bot wich then goes to add a few lines to all index.php and and index.html files..
Most of the times these added lines open a hidden iframe on some page.. just tu generate clicks!!

So check your Computer for Trojan first and change all ftp passwortds (but dont do it via FTP Client) do it in Hosting Controll center.

Greez Aspi

snakes1100 10-05-2009 06:30 PM
Did you upgrade anything as i stated in my first post?

Have you implemented mod_sec or suhosin?

What your doing so far isnt going to stop him, you can block all the ip's you want, simple to get a new ip to use.

knucklenitz 10-05-2009 06:53 PM
Quote:
Originally Posted by snakes1100 (Post 1895271)
Did you upgrade anything as i stated in my first post?

Have you implemented mod_sec or suhosin?

What your doing so far isnt going to stop him, you can block all the ip's you want, simple to get a new ip to use.
Yes, upgraded vb to the latest.

As I understand it, mod_sec can only be implemented (by me) on dedicated servers. I plan on moving to a host that provides mod_security built into the plan, although I won't have any access to make security changes. I just can't afford a dedicated setup right now.


All times are GMT. The time now is 04:58 PM.
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01059 seconds
  • Memory Usage 1,716KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (4)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete