Go Back   vb.org Archive > vBulletin 4 Discussion > vB4 General Discussions
Reload this Page Forum Security Questions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 05-14-2011, 08:41 PM
thermax04 thermax04 is offline
 
Join Date: Apr 2011
Posts: 81
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Forum Security Questions
I have a paid VB 4.1.3 and paid hosting with GoDaddy.com

Iam a very new in forums and need some informations, Iam going to write what i know , and please confirm if it is write or wrong or add more info please

I know that forum files are stored at hosting site, so the forum secuirty depends on hosting site secuirty. is it true? the more reliable the hosting site, the more security for forum!

since forum files stored on hosting site, no normal hacker can reach your forum files, what about uploading something throughe attachments in forum threads or posts?

Any other things should I take in consideration regarding forum security?
Reply With Quote
  #2  
Old 05-14-2011, 08:50 PM
TheLastSuperman's Avatar
TheLastSuperman TheLastSuperman is offline
Senior Member
  
Join Date: Sep 2008
Location: North Carolina
Posts: 5,844
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Well it all depends really, truly it does and that is sometimes the issue for some. So what you need to do is research about your host, it's not always about pricing and the cheapest the old saying holds true, you get what you pay for.

Attachments, if you allow .exe to be attached for example and they upload a virus named registry_cleaner_v1.exe and tell others it's a free registry cleaner and they download and install then yes in that instance otherwise no unless they have already gained access to your server and modified some of the files etc etc.

As for forum security... you can rename the admincp and modcp folders, install modifications against spam, use the search feature on vbulletin.com and here plus check out the Articles and other related forums on vb.com for more information there's tons of it or alternatively suhosin and more, picking and choosing what's best for you and least inconvenient for your members is what's key.
Reply With Quote
  #3  
Old 05-14-2011, 08:53 PM
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Location: Des Moines, IA (USA)
Posts: 15,776
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Quote:
Originally Posted by TheLastSuperman View Post
As for forum security... you can rename the admincp and modcp folders
It's easier, and more secure, to password protect those directories than rename them, especially for upgrades. It doesn't take very much to find out what they have been renamed to.
Reply With Quote
  #4  
Old 05-14-2011, 08:55 PM
thermax04 thermax04 is offline
 
Join Date: Apr 2011
Posts: 81
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Dear TheLastSuperman
Thanks for your very fast reply
*.exe files are not allowed to be uploaded, so Iam rest for now
But how to rename the admincp and modcp folders?

--------------- Added [DATE]1305410216[/DATE] at [TIME]1305410216[/TIME] ---------------

Quote:
Originally Posted by Boofo View Post
It's easier, and more secure, to password protect those directories than rename them, especially for upgrades. It doesn't take very much to find out what they have been renamed to.
Dear Boofo:
Thank you for your comment
How to password protect those directories ?
Reply With Quote
  #5  
Old 05-14-2011, 08:59 PM
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Location: Des Moines, IA (USA)
Posts: 15,776
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I use a program to do it (Coffeecup's Website Access Manager), but it needs to be done in the htaccess. I'm sure there are other programs out there that will do the same thing, though.
Reply With Quote
  #6  
Old 05-14-2011, 09:35 PM
thermax04 thermax04 is offline
 
Join Date: Apr 2011
Posts: 81
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Quote:
Originally Posted by Boofo View Post
I use a program to do it (Coffeecup's Website Access Manager), but it needs to be done in the htaccess. I'm sure there are other programs out there that will do the same thing, though.
Looks like needs a pro to do it
Is there any other method for beginners
Reply With Quote
  #7  
Old 05-14-2011, 09:57 PM
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Location: Des Moines, IA (USA)
Posts: 15,776
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I'm not anywhere near a pro at that stuff. That is why I use a program to do it.
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 02:10 AM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.03908 seconds
  • Memory Usage 2,217KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (7)post_thanks_box
  • (7)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (7)post_thanks_postbit_info
  • (7)postbit
  • (7)postbit_onlinestatus
  • (7)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete