vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB4 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=251)
-   -   How to Protect your Forum from Malware Insertion (https://vborg.vbsupport.ru/showthread.php?t=289667)

rmani84 10-26-2012 08:14 AM
How to Protect your Forum from Malware Insertion
 
My forum got hacked for the second time in last 12 months ... I was able to recover from backup restore and good help from my hosting folks ...

They gave me the below log this time ...

Quote:
91.121.177.53 - - [23/Oct/2012:09:31:30 -0500] "POST /vbseocp.php HTTP/1.1" 200 1326 "-" "Mozilla/5.0 (Windows; I; Windows NT 5.1; ru; rv:1.9.2.13) Gecko/20100101 Firefox/4.0"
I need to work on permissions on the below one, which is my mistake which i should have foreseen,
Quote:
Your config.xml is writable. Don't forget to update permissions after you finish updating the configuration for security purposes.
Below's what i want to discuss really in this thread from a security perspective,

Quote:
Is our forum more vulnerable to Hackers, when our VBulletin version and VBSEO version is displayed in public ... Does it make it too easy a job for them to hack ?
For example, when i display my VBulletin version as 4.x at footer in copyright and the hacker sees it and knows its a vulnerable version ... He then works on it and eventually hacks it ...

If i can pay off for the copyright removal, then the Hacker needs to put in additional effort to figure out ways to hack (Is my assumption) ....

I am ready to pay off for copyright removal for VB and VBSEO if it means my chances of getting hacked gets reduced even a little ...

Quote:
Experts on Security, please comment ....

CAG CheechDogg 10-26-2012 08:41 AM
There is no need to go that far, just do the following and it will remove the Version of vBulletin you are using and this is allowed.

go to "language and phrase" and search "Powered by" On the first phrase (powered_by_vbulletin) delete "Version {1}"

Brandon Sheley 10-26-2012 12:36 PM
It sounds like you got "hacked" because you didn't secure your site..
You're also running an old version of vbulletin, and I'll assume your plugins need updated as well..

Quote:
Your config.xml is writable. Don't forget to update permissions after you finish updating the configuration for security purposes.
It has nothing to do with the version being displayed, but you can hide that stuff without paying for copyright removal.


All times are GMT. The time now is 01:21 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01139 seconds
  • Memory Usage 1,717KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (5)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (3)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete