The Arcive of Official vBulletin Modifications Site.

afmarko99 · #11 10-22-2011, 07:25 AM

Quote:

Originally Posted by souperman

It's normally not vb that has security issues, it's actually badly coded plugins. Not all, but some. Some plugins are small enough so you can review their code.

Like everyone suggested, just upgrade to 3.8.7pl2

The mods I have installed are as follows:

NoSpam!
Stop the Registration Bots
vBadvanced CMPS

As far as updating to 3.8.7pl2 I stated earlier in this thread that I have done that.

--------------- Added [DATE]1319271985[/DATE] at [TIME]1319271985[/TIME] ---------------

I will check the above suggestions today. Thanks all. I will update soon.

TheLastSuperman · #12 10-22-2011, 07:03 PM

vBadvanced CMPS - Check and ensure your on the most recent version, it has and will continue to have it's own exploits from time to time just like any other script although the most current from what I've read is secure

.

afmarko99 · #13 10-22-2011, 08:20 PM

Have control again....

afmarko99 · #14 10-24-2011, 04:03 AM

Ok all. Get this. I performed all the suggestions from above. Changed the admin and mod cp. Added my name to the unalterable in the config file. My site ran fine for awhile. Then this afternoon it said 'database error' when I tried to load it. I 'viewed source' and it stated a 1049 error. I contated my host and they said the database was corrupt. It looks like they had to restore it to my prior changes.

So apparently they had to restore it to the changes that were in place to when the hacker had control.???!!!!?????

I mean really I am at a loss for words now. Does this person somehow have a way to corrupt my database now if I prevent them from getting in my CP? or is this a coincedence?

This has got me losing my mind.

--------------- Added [DATE]1319435892[/DATE] at [TIME]1319435892[/TIME] ---------------

Hello Mark,
We understand your frustration.
We would like to inform you that your domain is hosted on a shared server. There were slight load issues with the MySQL server and was the reason for it got corrupted.
We have restored the database from the latest available backup dated Oct 21 2011. If you have a more recent backup for the database "thepubli_forum", you may kindly upload the same to your home directory and let us know, so that we will restore the same for you.
Also, if you think that your domain has faced some hacking attempts, we would recommend you to :
1. change your cPanel password often
2. set default permission for files and folders , ( i.e. 644 for files and 755 for folders ) from File Manager in Cpanel
3. not to set 777 permission for any file/folder including public_html
4. not to set ownership of any file/folder to "nobody" under public_html
Thanks & Regards,
Jase

Lynne · #15 10-24-2011, 03:44 PM

Databases sometimes get corrupt. Not very often but sometimes. That is why it is always recommended to make database backups before/after you do major changes.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.06873 seconds Memory Usage 2,199KB Queries Executed 11 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (1)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (5)post_thanks_box (5)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (5)post_thanks_postbit_info (5)postbit (5)postbit_onlinestatus (5)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!