The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
||||
|
||||
Yesterday's brute force attempts at password hacking
Yesterday afternoon, it seems there was somebody (or a group of somebodies) who decided to try to brute force their way to hacking vbulletin.org user accounts. Several of you got emails about being locked out of your accounts after the five attempts were made. Unfortunately, there is no one IP, or even an IP range, that we can block to stop this as the IPs came from all over.
I would strongly suggest that users change their passwords. You should pick a password that is at least fourteen characters long and utilize both lower and upper case letters as well as numbers and other keyboard characters There is a password generator here that you may use to create a random, strong, password - http://strongpasswordgenerator.com/ |
#2
|
|||
|
|||
ahh i wondered why i got the message, my site had been hacked recently and we have introduced a heck of a lot of new security measures and ive made my passwords 30 chars long.
Thank god it wasnt just me |
#3
|
|||
|
|||
But what happened to me was different, even after entering the right password it said incorrect. After 15mins i got the account locked email . .But i manually entered my password for all the 5times.
|
#4
|
|||
|
|||
Then you should PM an admin for help.
|
#5
|
||||
|
||||
Quote:
|
#6
|
||||
|
||||
I got the email
Quote:
Now my passwords 33 characters |
#7
|
||||
|
||||
Quote:
1) vbulletin.org Lost Password Recovery Form generates base 10 only passwords (0-9), 8 characters long. PHP suggests the following characters for higher bases: *base 16: (0-9, a-f) *base 32: (0-9, a-v) *base 64: (0-9, a-z, A-Z, "-", ",") You should adopt the base 64 for generated passwords and make it 16 chars long. 2) Wysisyg mode on Google Chrome will prevent you from replying to this thread and your message will be lost. I had to write it again. |
#8
|
||||
|
||||
Quote:
|
#9
|
||||
|
||||
82.145.242.38
201.22.130.226 120.136.20.91 Those are the IPs I got for my old "Revan" account, in case you wanted to ban them or write them down or whatever Fillip |
#10
|
|||
|
|||
The person trying to log into your account had the following IP address: 200.181.109.18
add this IP to the list... |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|