vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   Forum hacked :( (https://vborg.vbsupport.ru/showthread.php?t=249316)

shibby2 08-25-2010 06:17 PM
Forum hacked :(
 
Is there any known security issues with 3.8.4? My forum was hacked this morning, and I just wish I knew how.

Thanks for any help.

borbole 08-25-2010 07:19 PM
Quote:
Originally Posted by shibby2 (Post 2089457)
Is there any known security issues with 3.8.4? My forum was hacked this morning, and I just wish I knew how.

Thanks for any help.
Ask your host to check their access logs. That will them what exactly went down.

BirdOPrey5 08-25-2010 07:53 PM
There were 2 security patches of 3.8.4, but if you were running 3.8.4 PL2 the forum itself was likely safe... if you were really running 3.8.4 with no patches you were vulnerable.

shibby2 08-29-2010 05:40 AM
How do I know if I am running PL2?

I restored from a backup, but now, a couple days later, they have hacked into it again. WTF?

maxie 08-29-2010 09:13 AM
change your databse password
change you admin login password
change your server password
user the generator password and keep it in same please. http://strongpasswordgenerator.com/

check your system for some robot aplication install. may be they install robot to your system thats why all your personal password has recorded.

don't use keyloger to your system.. or try to setup your data base for your personal PC or another PC, if you dont have extra pc, reformat your PC and install your databse again to sure that no tpboot on your system. so that no body know what you are doing to your site

borbole 08-29-2010 01:12 PM
Quote:
Originally Posted by shibby2 (Post 2090967)
How do I know if I am running PL2?

I restored from a backup, but now, a couple days later, they have hacked into it again. WTF?
Did you ask your host to check their access logs? You must find out the point of entry and patch up the hole otherwise you can restore your db backup all you want. The same thing will happen again and again.

BirdOPrey5 08-29-2010 04:44 PM
In your admin CP it should tell you what version you are running on top of each page...
It should say:
Admin Control Panel (vBulletin 3.8.4 Patch Level 2)

If there's no patch level listed then you're not running it.


All times are GMT. The time now is 06:44 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01040 seconds
  • Memory Usage 1,720KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (7)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete