Go Back   vb.org Archive > Community Discussions > Forum and Server Management
Reload this Page [problem] How did they do it?
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 09-08-2009, 06:54 PM
djheart djheart is offline
 
Join Date: Aug 2007
Posts: 9
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default [problem] How did they do it?
Hello guys,
If this is the wrong forum please let me know.....


Am facing a strange thing, Some kids calling themselves "hackers" are messing up with my clients vbulletin forums.. I dont know how they change the index page of the forum with another page and they write bad words and their emails...ect

To return the forums back i usualy enter the "admincp" and all what i do is downloading the style xml file and then re upload it again.. Thats all! and everything return normal..

That kids is playing around and change the index again and again...

My question is: What can i do to stop these kids?
PS: all forums have the latest vbulletin version, and the server's Perl is switched off..


Please let me know what to do asap.. since am losing customers



Thanks in advance..
-Moe
Reply With Quote
  #2  
Old 09-08-2009, 06:58 PM
HMBeaty's Avatar
HMBeaty HMBeaty is offline
 
Join Date: Sep 2005
Posts: 4,141
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Have a look here: https://vborg.vbsupport.ru/showthrea...ighlight=email

And also change the passwords to everything if they keep getting back in and doing it again
Reply With Quote
  #3  
Old 09-08-2009, 07:00 PM
djheart djheart is offline
 
Join Date: Aug 2007
Posts: 9
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
thanks alot
Reply With Quote
  #4  
Old 09-10-2009, 04:42 AM
djheart djheart is offline
 
Join Date: Aug 2007
Posts: 9
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Did everything you told me, The hack came again today...
Reply With Quote
  #5  
Old 09-10-2009, 09:02 PM
kevcj's Avatar
kevcj kevcj is offline
 
Join Date: Mar 2007
Location: East Texas
Posts: 334
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Are you sure its the forums fault? Maybe its a hole in the server allowing them to upload files? Is the server and all of the server services up to date? Meaning, are all of the latest security patches installed on the server? Is apache up to date, is the ftp server up to date, is the database server up to date,,,,.

Have you asked the host to do a security audit? Have you changed the root password and the admin passwords? Do you have brute force protection installed?

If you do not have something to stop a brute force attack on the server level, they can throw tens of thousands of passwords at the server until the finally break the root password.

Is this a shared hosting plan, VPS or a dedicated server?

There are a lot of questions that need to be looked at outside of vbulletin.
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 12:56 AM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.08719 seconds
  • Memory Usage 2,193KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (5)post_thanks_box
  • (5)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (5)post_thanks_postbit_info
  • (5)postbit
  • (5)postbit_onlinestatus
  • (5)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete