vb.org Archive
Page 1 of 6 1 23 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   VB really this terrible????? Can it Be (https://vborg.vbsupport.ru/showthread.php?t=119099)

Andromeda2875 06-20-2006 02:39 AM
VB really this terrible????? Can it Be
 
I am very upset. I run a forum with 7 thousand members and 240K posts. I am getting hacked every day now. Is this really how crappy vbulletin is? I mean You can not fix security holes in the software. Very unhappy. I may have to go to IPB. Terribly disappointing.

Adrian Schneider 06-20-2006 02:55 AM
There are many ways of your board being 'hacked' that have nothing to do security holes. Which version are you running?

ConqSoft 06-20-2006 02:57 AM
I'd be looking into server security if you're having that much of a problem.

Damian 06-20-2006 02:59 AM
Are you looking for assitance, or just making a comment?

Paul M 06-20-2006 03:04 AM
Assuming that you are running 3.5.4 (which the site in your sig is) then you really need to look elsewhere on your server, there are no known 'holes' in that version, but there are lots of other ways to break into a server.

Andromeda2875 06-20-2006 03:22 AM
Quote:
Originally Posted by SirAdrian
There are many ways of your board being 'hacked' that have nothing to do security holes. Which version are you running?

I am running 3.5.4. Someone keeps logging in under one of my Super Mods account, changing himself to admin and moving everysingle post to the trash section of my board. Noone is getting intot the server. there are using this how I do not know but they are:

17116 N/A 14:08, 19th Jun 2006 css.php edit style id = 1 206.149.148.27
17115 N/A 14:08, 19th Jun 2006 css.php update style id = 1 206.149.148.27
17114 N/A 14:08, 19th Jun 2006 css.php edit style id = 1 206.149.148.27
17113 N/A 14:08, 19th Jun 2006 css.php edit style id = 4 206.149.148.27
17112 N/A 14:08, 19th Jun 2006 css.php update style id = 4 206.149.148.27
17111 N/A 14:08, 19th Jun 2006 css.php edit style id = 4 206.149.148.27
17110 N/A 14:07, 19th Jun 2006 css.php edit style id = 3 206.149.148.27
17109 N/A 14:07, 19th Jun 2006 css.php update style id = 3 206.149.148.27
17108 N/A 14:06, 19th Jun 2006 css.php edit style id = 3 206.149.148.27
17107 N/A 14:06, 19th Jun 2006 template.php modify 206.149.148.27



If you see, this is from the control panel. There is no name given and this is what they do and then they have access to everything. Somehow they are taking that SuperMod and making it say admin under it and moving everything.

This is what they do after they login and change the password to the SuperMod and make him admin:

17106 13:28, 19th Jun 2006 thread.php dothreadsall 83.149.72.74
17105 13:28, 19th Jun 2006 thread.php dothreads 83.149.72.74
17104 13:27, 19th Jun 2006 thread.php move 83.149.72.74
17103 13:27, 19th Jun 2006 moderate.php posts 83.149.72.74

Rickie3 06-20-2006 06:09 AM
you got to be joking right???? your blaming vBulletin software for being hacked,I have been running vBulletin for 2 years and have not had an ounce of trouble,I'm the only one that has access to my server and am super admin
1. who else has access to your server???
2.how many admins do you have???

could be a admin logging in using a proxy and playing games

Revan 06-20-2006 09:11 AM
Quote:
Originally Posted by Andromeda2875
I am running 3.5.4. Someone keeps logging in under one of my Super Mods account, changing himself to admin and moving everysingle post to the trash section of my board. Noone is getting intot the server. there are using this how I do not know but they are:

17116 N/A 14:08, 19th Jun 2006 css.php edit style id = 1 206.149.148.27
17115 N/A 14:08, 19th Jun 2006 css.php update style id = 1 206.149.148.27
17114 N/A 14:08, 19th Jun 2006 css.php edit style id = 1 206.149.148.27
17113 N/A 14:08, 19th Jun 2006 css.php edit style id = 4 206.149.148.27
17112 N/A 14:08, 19th Jun 2006 css.php update style id = 4 206.149.148.27
17111 N/A 14:08, 19th Jun 2006 css.php edit style id = 4 206.149.148.27
17110 N/A 14:07, 19th Jun 2006 css.php edit style id = 3 206.149.148.27
17109 N/A 14:07, 19th Jun 2006 css.php update style id = 3 206.149.148.27
17108 N/A 14:06, 19th Jun 2006 css.php edit style id = 3 206.149.148.27
17107 N/A 14:06, 19th Jun 2006 template.php modify 206.149.148.27



If you see, this is from the control panel. There is no name given and this is what they do and then they have access to everything. Somehow they are taking that SuperMod and making it say admin under it and moving everything.

This is what they do after they login and change the password to the SuperMod and make him admin:

17106 13:28, 19th Jun 2006 thread.php dothreadsall 83.149.72.74
17105 13:28, 19th Jun 2006 thread.php dothreads 83.149.72.74
17104 13:27, 19th Jun 2006 thread.php move 83.149.72.74
17103 13:27, 19th Jun 2006 moderate.php posts 83.149.72.74
The css.php log entries aren't the same IP as the thread.php ones. Therefore it's not the same person.

Zachery 06-20-2006 10:18 AM
Quote:
Originally Posted by Andromeda2875
I am very upset. I run a forum with 7 thousand members and 240K posts. I am getting hacked every day now. Is this really how crappy vbulletin is? I mean You can not fix security holes in the software. Very unhappy. I may have to go to IPB. Terribly disappointing.
Have you tried

1. Disabling all of your hacks and addons
2. Updating all of your passwords(ftp etc), and forcing all staff to update their passwords?
3. password or ip protecting your admincp and includes directories?
4. Scanned for foreing files?
5. Contacting your hosting provider?
6. Contacting vBulletin support for assistance?

amykhar 06-20-2006 11:32 AM
Also, is it the same supermod's account that they keep getting into? Keep in mind that the biggest security holes are the people we have on our teams. If it's the same person, you may need to demote them.

Also, check the permissions that you have set for your supermods. Make sure you didn't give them rights to the control panel and the ability to change member status.


All times are GMT. The time now is 10:07 AM.
Page 1 of 6 1 23 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01127 seconds
  • Memory Usage 1,740KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete