vb.org Archive
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   After install security (https://vborg.vbsupport.ru/showthread.php?t=149673)

stroud 06-13-2007 11:35 PM
After install security
 
I just installed my first VB and I'd like to know what settings to change right out of the gate that will increase security and anything else I need to know.

I've been reading everything so far.

thanks

Shazz 06-13-2007 11:37 PM
Use the password protect with .htaccess in /admincp
Don't use unsafe mods that might have a possible exploit.

stroud 06-14-2007 11:17 PM
Where is that file?

cyberphr 06-14-2007 11:51 PM
It's easy, really:
- Password protect your admincp and modcp directories with .htaccess, or with cPanel if available. Also renamed the directories, for example "forumacp" rather than "admincp". After doing so, edit your includes/config.php file.
- Only give administrator/moderator permissions to people you trust.
- Install as few modifications as possible, and only install stable ones you feel you need.
- Don't spam other forums or rip content (you never know who might take offense).
- Turn on CAPTCHA, and consider a hack such as "NoSpam!" for further protection.
- Learn basic PHP and MySQL; If there is a problem, you need to at least understand the error message.
- Always upgrade to the latest version as soon as it becomes available, and consider taking the board offline briefly if you do not have time.
- Check up regularly on vulnerability sites such as milw0rm.com for possible vBulletin security issues.

And of course, after installation remember to remove the install directory.



Hope it helps. :)

stroud 06-15-2007 12:37 AM
Quote:
Originally Posted by cyberphr (Post 1268692)
Hope it helps. :)
Yes, thanks! Is there a good book that covers basice PHP and MySQL for beginners so I can get my feet wet?

Carlos X 06-15-2007 01:38 AM
What's CAPTCHA, what's it do?

And how you get there? :confused:

I'm curious. This thread made me curious about some things.

UltimateOreo! 06-15-2007 01:40 AM
Captcha is default enabled by vbulletin, you can find all of its options in the vbulletin options. It is the numbers you enter upon registration.

Carlos X 06-15-2007 01:43 AM
Ohh, that.

I turned it on.

So, why should you password protect the mod and AdminCP? I mean, you want admins to enter passwords twice? :confused:

Dismounted 06-15-2007 07:19 AM
What happens when there is an exploit in the ACP? You're screwed. That's why you use the htaccess protection. Also, I would suggest having different passwords for the htaccess and user itself.

Carlos X 06-15-2007 08:32 AM
Alright, I do see your point.

I'll fix it.


All times are GMT. The time now is 11:35 PM.
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01020 seconds
  • Memory Usage 1,727KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete