Hacking message board?

[MindTrix]

I always see posts about peoples message boards beeing hacked into and deleted. I dont want to know how to do it obviously that doesnt interest me, just more or less why it happens. I mean, i know someone who goes around bragging he hacks and deletes boards, and he registered at my forums and got an instant ban etc. But can he really hack and delete my board? Or does this usualy only happen when u let people have admin access or ftp info?

Just wondering thats all :surprised:

[Dean C]

Well there are vulnrabilities in older versions of vB but right now it's pretty secure so I doubt anyone will be able to hack their way in

[Zero Tolerance]

My site got hacked a couple of months ago, this was using httpd, he managed to upload install.php into my install/ directory, and authenticate.php (so the member number required to access to install could be whatever he wanted). Upon doing so he did a fresh installation of my forum, about 1000 members, 20,000 posts wiped. To stop this been repeated i simple deleted the install/ directory.

Why he/her did it? Not a clue, pissed me off a great deal too. But to them it's just fun over and over to see forum's crumble at there handy work.

Quite sad id say, those people need attention, fast.

- Zero Tolerance

[MindTrix]

So people cannot hack into your forums unless they have like admin access or ftp access?

[Zero Tolerance]

Yes, the guy who hacked me had no access to my site or ftp, he used a form of hacking known as httpd, that's all i know. He used a browser to uplaod a script to my site...

But this method cannot add folders, so by deleting the folder the process couldn't be repeated.

- Zero Tolerance

[MindTrix]

So i can delete INSTALL folder safely and it wont mess up vbulletin? and then i will be safer from attacks?

[Zero Tolerance]

I would greatly advise it, it will stop the method of hacking that happened to me, and i wouldn't want it to happen to anyone else.

- Zero Tolerance

[MindTrix]

Ok ill do it now then ( or just rename it ) oh check your pms pleaseee

[Tony G]

Quote:

Originally Posted by Zero Tolerance

My site got hacked a couple of months ago, this was using httpd, he managed to upload install.php into my install/ directory, and authenticate.php (so the member number required to access to install could be whatever he wanted). Upon doing so he did a fresh installation of my forum, about 1000 members, 20,000 posts wiped. To stop this been repeated i simple deleted the install/ directory.

Why he/her did it? Not a clue, pissed me off a great deal too. But to them it's just fun over and over to see forum's crumble at there handy work.

Quite sad id say, those people need attention, fast.

- Zero Tolerance

If the reason for hacking a forum isn't for revenge or hate, it usually is just the type of hacker that finds fun in watching sites and forums crumble and break down. Those people, they need lives.

[FleaBag]

I run a local community music board [which I think is now the biggest in my country], but alas there are many 'rivals' - I try to keep as up to date as possible. Two of my 'rivals' have recently been hacked... One was running Inivison and was completely wiped - I noticed two days ago that another using PHPBB as a Nuke module has been hacked, it seems, by a 'muslim activist' - I say that in quotes because obviously I have no idea who actually did it, but there was lots of anti Jewish/American and pro Palastinian/Muslim info on there. Obviously a site in Wales about rock music has nothing to do with this cause, it seems people don't even need a reason to hack you.