Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 General Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #11  
Old 03-21-2008, 06:09 PM
agitated agitated is offline
 
Join Date: Jan 2005
Location: U.K.
Posts: 141
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I had a look at the forum before you disabled it and unfortunately it looked as if they had removed your admin status.
This means that even if you manage to log in, you'll not be able to get into the ACP.

I'd consider submitting a support ticket at vBulletin.com
Reply With Quote
  #12  
Old 03-21-2008, 06:26 PM
snunhuck snunhuck is offline
 
Join Date: May 2007
Posts: 157
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I see you got the forum back?
Reply With Quote
  #13  
Old 03-21-2008, 06:27 PM
DivisionByZero's Avatar
DivisionByZero DivisionByZero is offline
 
Join Date: Dec 2002
Location: South Bend, Indiana
Posts: 485
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

when you do get back up, do this:

add an .htaccess file in your vBulletin attachments directory with the following in it:

<Directory /this/directory>
Options None
AllowOverride None
</Directory>

This will prevent rogue scripts from being uploaded as attachments and then executed. This CAN be done, despite what anyone thinks they know
Reply With Quote
  #14  
Old 03-21-2008, 06:29 PM
ownerblade ownerblade is offline
 
Join Date: Feb 2008
Posts: 25
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Yay, I have hacked back my website as I used tools.php and made my friend a super admin. He un ip banned me and the website is back up. I changed the name of index.php to secret.php the whole time so no one could get onto the website in between the times I was fixing it.
Reply With Quote
  #15  
Old 03-21-2008, 06:32 PM
DivisionByZero's Avatar
DivisionByZero DivisionByZero is offline
 
Join Date: Dec 2002
Location: South Bend, Indiana
Posts: 485
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

changing index.php does no good. you can still call any file directly.

I really REALLY ReAlLy need to write a security tutorial article here.
Reply With Quote
  #16  
Old 03-21-2008, 06:35 PM
ownerblade ownerblade is offline
 
Join Date: Feb 2008
Posts: 25
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Please write one....

--------------- Added [DATE]1206128164[/DATE] at [TIME]1206128164[/TIME] ---------------

The guy is saying to everyone that I am nullified...
Reply With Quote
  #17  
Old 03-21-2008, 06:37 PM
snunhuck snunhuck is offline
 
Join Date: May 2007
Posts: 157
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I know - and I've asked vb to check it out to prove them wrong.
Reply With Quote
  #18  
Old 03-21-2008, 06:40 PM
DivisionByZero's Avatar
DivisionByZero DivisionByZero is offline
 
Join Date: Dec 2002
Location: South Bend, Indiana
Posts: 485
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

what i would do right now (and i mean right now) is the following:

1. change any control panel passwords
2. change any FTP passwords
3. change your mysql username and password that's in the config.php script
4. COMPLETELY DELETE ALL FILES from your webroot directory and reupload all your vBulletin files and any mod files you have.
Reply With Quote
  #19  
Old 03-21-2008, 06:47 PM
ownerblade ownerblade is offline
 
Join Date: Feb 2008
Posts: 25
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

They never got my password for ftp.... Is there a 24/7 service for vBulletin? I want to talk to them....
Reply With Quote
  #20  
Old 03-21-2008, 06:56 PM
snunhuck snunhuck is offline
 
Join Date: May 2007
Posts: 157
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I know they do have a service: but you'd better send a support ticket if you don't live if Canada - where is theor phone number?
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 11:52 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05871 seconds
  • Memory Usage 2,247KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete