vb.org Archive
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   News and Announcements (https://vborg.vbsupport.ru/forumdisplay.php?f=2)
-   -   Yesterday's brute force attempts at password hacking (https://vborg.vbsupport.ru/showthread.php?t=264376)

Lynne 05-29-2011 01:33 PM
Yesterday's brute force attempts at password hacking
 
Yesterday afternoon, it seems there was somebody (or a group of somebodies) who decided to try to brute force their way to hacking vbulletin.org user accounts. Several of you got emails about being locked out of your accounts after the five attempts were made. Unfortunately, there is no one IP, or even an IP range, that we can block to stop this as the IPs came from all over.

I would strongly suggest that users change their passwords. You should pick a password that is at least fourteen characters long and utilize both lower and upper case letters as well as numbers and other keyboard characters

There is a password generator here that you may use to create a random, strong, password - http://strongpasswordgenerator.com/

wraggster 05-29-2011 03:42 PM
ahh i wondered why i got the message, my site had been hacked recently and we have introduced a heck of a lot of new security measures and ive made my passwords 30 chars long.

Thank god it wasnt just me

gamerzhut 05-29-2011 04:12 PM
But what happened to me was different, even after entering the right password it said incorrect. After 15mins i got the account locked email . .But i manually entered my password for all the 5times.

AdrianH 05-29-2011 04:46 PM
Quote:
Originally Posted by gamerzhut (Post 2201328)
But what happened to me was different, even after entering the right password it said incorrect. After 15mins i got the account locked email . .But i manually entered my password for all the 5times.
Then you should PM an admin for help.

Alfa1 05-29-2011 05:28 PM
Quote:
Originally Posted by Lynne (Post 2201265)
Unfortunately, there is no one IP, or even an IP range, that we can block to stop this as the IPs came from all over.
You can block the useragent and other aspects with vB Bad Behavior.

Adem GEN? 05-29-2011 05:37 PM
I got the email
Quote:
The person trying to log into your account had the following IP address: 196.1.70.202
Now I changed my password, vbulletin.org & vbulletin.com
Now my passwords 33 characters

Lumina 05-29-2011 11:00 PM
Quote:
Originally Posted by Lynne (Post 2201265)
I would strongly suggest that users change their passwords. You should pick a password that is at least fourteen characters long and utilize both lower and upper case letters as well as numbers and other keyboard characters

There is a password generator here that you may use to create a random, strong, password - http://strongpasswordgenerator.com/
Dear administrator,

1) vbulletin.org Lost Password Recovery Form generates base 10 only passwords (0-9), 8 characters long. PHP suggests the following characters for higher bases:
*base 16: (0-9, a-f)
*base 32: (0-9, a-v)
*base 64: (0-9, a-z, A-Z, "-", ",")
You should adopt the base 64 for generated passwords and make it 16 chars long.

2) Wysisyg mode on Google Chrome will prevent you from replying to this thread and your message will be lost. I had to write it again. :mad:

Lynne 05-29-2011 11:43 PM
Quote:
Originally Posted by Lumina (Post 2201440)
Dear administrator,

1) vbulletin.org Lost Password Recovery Form generates base 10 only passwords (0-9), 8 characters long. PHP suggests the following characters for higher bases:
*base 16: (0-9, a-f)
*base 32: (0-9, a-v)
*base 64: (0-9, a-z, A-Z, "-", ",")
You should adopt the base 64 for generated passwords and make it 16 chars long.
You should not be keeping the generated password. You should only use it to login and then you should be setting it yourself.

DragonByte Tech 05-30-2011 09:08 AM
82.145.242.38
201.22.130.226
120.136.20.91

Those are the IPs I got for my old "Revan" account, in case you wanted to ban them or write them down or whatever :p


Fillip

qryztufre 05-30-2011 04:58 PM
The person trying to log into your account had the following IP address: 200.181.109.18

add this IP to the list...


All times are GMT. The time now is 06:34 AM.
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01328 seconds
  • Memory Usage 1,736KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (5)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete