Go Back   vb.org Archive > Community Central > vBulletin.org Site Feedback
  #61  
Old 03-05-2008, 02:50 AM
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Location: Des Moines, IA (USA)
Posts: 15,776
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by nexialys View Post
thanks to not mention my name... lol

actually, the goal to have a "Quarantine" place where to put the mods with inserts or security issues is one of the reasons why hacking mods may not be discussed here... when you announce that the hack XYZ have an exploit ABC, that is the way to break all the securities... you just need one moron to ask "hey, i have that hack and that version on my site, what can i do to secure my site"... 30 seconds after that post, someone would exploit his site...

that's why the guys on vb.org are NEVER discussing exploits of any hack here... neither would Jelsoft on vb.com ... so why start a place for the opposite means ?!
Yes and no. I agree we shouldn't discuss what the exploits are and give any script-kiddies any information on exploits, but I think it's OK to discuss how to fix things when they are exploited. That would be valuable information to new Admins that haven't experienced that and for when and if he ever does run into that. Knowledge is never a bad thing.
  #62  
Old 03-05-2008, 08:10 AM
nexialys
Guest
 
Posts: n/a
Default

no need for a specific place to discuss how to fix these exploits... when an exploit is found on vb.org, you receive a notation on email to tell you how to deactivate or replace the hack when something have to be done...

each time we will have a new element to add to the reasons why starting such a service, we will have an existing solution here on vb.org... this was debated already... and i don't know why this thread and the other are running over ...
  #63  
Old 03-05-2008, 08:45 AM
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Location: Des Moines, IA (USA)
Posts: 15,776
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Not all exploits are found on the org. And security covers more than just exploits, too. Put yourself in the shoes of a new Admin who has just been hit by a hacker or an exploit and not knowing what to do or where to go for help. The com sends you to the org and the org sends you to the com. Where does it all end?
  #64  
Old 03-05-2008, 09:06 AM
Magnumutz's Avatar
Magnumutz Magnumutz is offline
 
Join Date: Feb 2006
Location: Romania
Posts: 731
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Wanna know what happened to the forum in the first post?
The TEMPLATE got modified... nothing more.

I mean, some idiot got access to the AdminCP and emptied a few templates and wrote "Hacked by n00b".

That's all.
  #65  
Old 03-05-2008, 06:06 PM
iogames's Avatar
iogames iogames is offline
 
Join Date: Jan 2007
Location: Las Vegas, NV.
Posts: 1,433
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Magnumutz View Post
Wanna know what happened to the forum in the first post?
The TEMPLATE got modified... nothing more.

I mean, some idiot got access to the AdminCP and emptied a few templates and wrote "Hacked by n00b".

That's all.
That's is one of the problems that we can discuss on the new section, can you tell us how can be avoided?
  #66  
Old 03-05-2008, 09:48 PM
HUMMERh3 HUMMERh3 is offline
 
Join Date: Oct 2005
Posts: 71
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Thanx for the mention here guys and yea, we got it again today wholly crap, what'd we do,
oh yea Blackhat.
We will definitely learn from this, and too many user mods can cause probs.
  #67  
Old 03-05-2008, 10:32 PM
Wabuf Wabuf is offline
 
Join Date: Feb 2006
Location: Poland Ohio
Posts: 78
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I'm all for a Security Section, I've gotten hacked once with vBulletin, and it defaced my forums a while ago... also a few of my users were hacked recently by the same team.
  #68  
Old 03-05-2008, 10:38 PM
iogames's Avatar
iogames iogames is offline
 
Join Date: Jan 2007
Location: Las Vegas, NV.
Posts: 1,433
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Well I think this goes well since I can see a change on Nexialys


Security Section
  #69  
Old 03-05-2008, 11:36 PM
Lpspider Lpspider is offline
 
Join Date: Oct 2005
Posts: 164
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I don't think there's a need for a security section. (most problems with security are on the server end and not related to vbulletin software)
  #70  
Old 03-06-2008, 03:56 PM
nexialys
Guest
 
Posts: n/a
Default

iogames, i would drop that page and all the things you copied from my username and avatar please... for your own sakes...
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 03:42 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05617 seconds
  • Memory Usage 2,255KB
  • Queries Executed 12 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (2)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (8)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete