Go Back   vb.org Archive > vBulletin 4 Discussion > vB4 Programming Discussions

Reply
 
Thread Tools Display Modes
  #11  
Old 10-29-2013, 08:27 AM
Digital Jedi's Avatar
Digital Jedi Digital Jedi is offline
 
Join Date: Oct 2006
Location: PopCulturalReferenceLand
Posts: 5,171
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by tinoco2 View Post
I dont know how can i solve this.

I can?t edit a message or go to advance editor.

I tried change the style to test if that was the problem but nothing.
But what's in the default style when you look at it? Is the toggle button missing there, too? Not the toolbar. The toggle button.
Reply With Quote
  #12  
Old 10-29-2013, 08:52 AM
tinoco2 tinoco2 is offline
 
Join Date: Jul 2011
Posts: 39
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Hi Digital Jedi, you can see the photos on first post of i can see.

I can?t see the toolbar, i say this:



But i can?t edit a message, when i tried i cant save it.
Reply With Quote
  #13  
Old 10-29-2013, 06:31 PM
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Location: California/Idaho
Posts: 41,180
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Create a new style with no parent:
  • Styles & Templates > Style Manager > Add New Style
  • Parent Style: No Parent Style
  • Title: Default vBulletin
  • Allow User Selection: Yes
  • Save
Then browse the site using that totally default vbulletin style - do you still have the same problem?
Reply With Quote
  #14  
Old 10-29-2013, 06:34 PM
tinoco2 tinoco2 is offline
 
Join Date: Jul 2011
Posts: 39
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

OH MY GOD!!

I HAVE A SERIOUS PROBLEM!!

I HAVE THIS -> https://vborg.vbsupport.ru/showthread.php?t=303111
Reply With Quote
  #15  
Old 10-29-2013, 06:49 PM
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Location: California/Idaho
Posts: 41,180
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

There are four steps to securing your site. If you don't do them all or you do them in the wrong order than you're still susceptible to being attacked again.

Close the hole...
This has three subparts in this instance.
1. Delete your install folder
2. Review your admin users and delete any that don't belong. Don't ban them. Don't make them regular users. Delete them.
3. Close access to your AdminCP using .htaccess. Use either user authorization with a different username and password or IP address restrictions.

Fill the Hole...
There are seven subparts in this instance.
1. Review your files for changes. You can do this under Maintenance -> Diagnostics.
2. Delete any Suspect Files.
3. Replace any files marked as "Does not contain expected contents"
4. Scan your plugins for malicious code (exec, base64, system, pass_thru, iframe are all suspect keywords). Delete any you find.
5. Repair any templates. Any templates that you don't have notes on changing, you need to revert. If you're using a custom style, it is best to delete your existing style and reimport from a fresh download.
6. Update your Addon Products.
7. Rebuild your datastores. You can use tools.php in the "do not upload" folder to do this. Upload it to your admincp directory, delete when done.

Secure the Hole
Parts of this were done by closing the hole but there are still things to do here.
1. Keep notes of all changes you make to the system - what templates and phrases you change, what files belong to which addons, what plugins do the addons install.
2. Consider using a separate Super Admin who has access to admin logs in the AdminCP. There should be only one Super Admin.
3. Create a lower permission Administrator for every day use.
4. Review your permissions in the system.
5. Block off access to the includes, modcp, packages and vb folders via .htaccess. Deny All can work here, unless you use the ModCP. You need user authorization there.
6. Move your attachments outside the forum root directory.
7. Create a complete backup of your site. Make database backups weekly.

Vigilance
You need to keep active on the security of the site.
1. Give out the fewest permissions necessary for anyone to do their job
2. Make sure your hosting provider updates the software.
3. Update to the latest vBulletin when it is released.
4. Make sure your addons are always up to date.
Reply With Quote
  #16  
Old 10-29-2013, 06:56 PM
tinoco2 tinoco2 is offline
 
Join Date: Jul 2011
Posts: 39
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Thanks so much really.

How can i do the step 3?

I would like to close access to my AdminCP using .htaccess and add only 2 ips (i work in 2 places )but i dont know how can i do it.

--------------- Added [DATE]1383075927[/DATE] at [TIME]1383075927[/TIME] ---------------

When i try unistall a plugin, it appears this error:

PHP Code:
Database error in vBulletin 4.2.0:

Invalid SQL:

            
DELETE cms_widgettypecms_widgetcms_widgetconfig
            FROM package 
AS package
            LEFT JOIN cms_widgettype 
AS cms_widgettype
                ON cms_widgettype
.packageid package.packageid
            LEFT JOIN cms_widget 
AS cms_widget
                ON cms_widget
.widgettypeid cms_widgettype.widgettypeid
            LEFT JOIN cms_widgetconfig 
AS cms_widgetconfig
                ON cms_widgetconfig
.widgetid cms_widget.widgetid
            WHERE package
.productid 'dp_positionads';

MySQL Error   Table 'admin_elrincon.cms_widgettype' doesn't exist
Error Number  : 1146
Request Date  : Tuesday, October 29th 2013 @ 02:44:18 PM
Error Date    : Tuesday, October 29th 2013 @ 02:44:18 PM
Script        : http://elrincondelcomprador.com/admincp/plugin.php?do=productkill
Referrer      : http://elrincondelcomprador.com/admincp/plugin.php?do=productdelete&productid=dp_positionads&s=
IP Address    : 95.XXXX.12
Username      : XXXXXX
Classname     : vB_Database
MySQL Version : 5.5.33-31.1 
Reply With Quote
  #17  
Old 10-29-2013, 09:16 PM
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Location: California/Idaho
Posts: 41,180
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Do you have the CMS installed? That error is implying you are missing a cms table.

Google gave me this for IP restriction using .htaccess - http://docs.joomla.org/How_do_you_re...ng_htaccess%3F
Reply With Quote
  #18  
Old 10-29-2013, 09:43 PM
tinoco2 tinoco2 is offline
 
Join Date: Jul 2011
Posts: 39
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Oh my god!

I created a new style, change to my new style and back to the old style and recovered the toolbar and the normally editor.

Thanks so much Lynne, Ozzy47 and Digital Jedi.
Reply With Quote
  #19  
Old 04-06-2014, 10:15 PM
Iari Iari is offline
 
Join Date: Feb 2011
Posts: 9
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I know the Threat is old but i have the same problem
Ive tried everythink suggested in the thread but i still dont have any toolbar about the editors or a toggle button
im using 4.2.2 Patch 1
Reply With Quote
  #20  
Old 04-07-2014, 02:24 AM
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Location: California/Idaho
Posts: 41,180
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I'd suggest you start your own thread with all the relevant information so we can help you.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:17 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05333 seconds
  • Memory Usage 2,257KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_php
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete