Announcement

Collapse
No announcement yet.

vbportal?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • #46
    I've always used Safe Mode to restrict a bunch of seriously dangerous functions.
    http://www.php.net/manual/en/feature....functions.php

    But now, in their wisdom, the PHP developers have decided to remove safe mode in PHP 6.0.0
    http://www.php.net/~derick/meeting-notes.html#safe-mode

    *sigh*
    - Tommy
    MCP / MCSA / MCSE / MCT
    A few eggs short of a complete easter basket

    vB 4.0.5+ CMS (No hacks), Windows Server 2008 R2 Ent, IIS 7.5, PHP 5.3+ (FastCGI), WinCache, Memcached, MySQL 5.1.45

    Comment


    • #47
      Originally posted by firewire View Post
      I am amazed to see nobody is worried about their email address and password has got into the hands of a hacker...
      As soon as I got the email, and realising what was happening I made sure I went to all other sites/communities I belong to and changed password!

      Comment


      • #48
        Originally posted by CreedFeed View Post
        You should have agreed to pay the money and obtained their e-gold information and then report them to the authorities...
        You're absolutely right....and they should have come to you for the $20k too.
        Rob

        Comment


        • #49
          Really sucks Bill! I'm sure it goes without saying that most in this community are in full support of you and your business! Thanks for sharing the hardening info as I use LiquidWeb as well. They also recommended to me that ModSecurity (Apache addon) be installed.
          Last edited by smackLAN; Thu 27th Jul '06, 5:21am.
          RazorThemes ~ Cutting Edge Designs

          Comment


          • #50
            A dark day indeed... You guys work way too hard for this. It kills me to know that alot of these forein countries are above any laws.

            On the other hand, it's wonderful to see everyone working together to resolve this and prevent any further destruction.

            Oh and "Mrs. Scotmist"...thanks for keeping the coffee on

            Comment


            • #51
              UGH! Can't say I envy you.

              Wish you the best in finding this quickly, no need to lose more sleep than needed eh?

              Comment


              • #52
                Hope you get things sorted Bill/Stuart also appreciate any info on how it was done, what we should be checking for on our own servers, also what country these retards launched the attack from if known. I already had to block all IP addresses from Brazil once over.

                Comment


                • #53
                  what we need to do?

                  hello,
                  i receive - and all, by the way - a email with explain of vulnerabilities of vb.
                  really i'm fell .... confused.
                  this occours only with vpportal installations? or any vb sites ....
                  i hope give instructions to fix any problem.
                  tks
                  barroca
                  Community vBulletin Brasil & Portugal

                  Comment


                  • #54
                    i receive - and all, by the way - a email with explain of vulnerabilities of vb.
                    can some dev. or vbulletin officials post to this please ?
                    TechArena - TechArena Community - News - Download - Video - Guide - Review

                    Comment


                    • #55
                      Scotsmist, Wajones I am always on-line fellas.
                      - Hit me on IM.

                      There is nothing like donating time and resources to put people in prison.
                      Last edited by Zachariah B; Thu 27th Jul '06, 9:11am.
                      http://www.szone.us | http://www.gzhq.net
                      Twitter | Facebook | My:Hacks @ vBulletin.org
                      Member of Kiwanis Club of Chatsworth

                      Comment


                      • #56
                        don't understand - sorry

                        hello,
                        - Hit me on IM.
                        sorry, but I don't understand this.
                        tks
                        barroca
                        Community vBulletin Brasil & Portugal

                        Comment


                        • #57
                          Originally posted by barroca View Post
                          hello,
                          i receive - and all, by the way - a email with explain of vulnerabilities of vb.
                          really i'm fell .... confused.
                          this occours only with vpportal installations? or any vb sites ....
                          i hope give instructions to fix any problem.
                          tks
                          barroca
                          We are signed up to all the lists you are signed up to, plus a little infiltration into "hacking" groups to keep tabs on whats going on. We investigate every single claim against vBulletin as well as those for other pieces of software that might affect us.

                          The last 4-5 vBulletin "exploits" have been in 3rd party code, non vBulletin related or completely made up.

                          This includes:
                          Being able to "steal" cookies from another site just by linking.
                          SQL Injection to a clearly sanatised field.
                          Being able to insert HTML into the template system :O

                          and so forth...

                          I've looked at the vB Portal code and recommended some changes for them to implement, mainly around the use of user provided data into include / require statements. We only do this is one occasion in vBulletin (payment_gateway.php) but you are forced to use whats in the database and not the user output.

                          If you think you've found something that we've not addressed then post it in the bug tracker and we'll get it looked at.
                          Scott MacVicar

                          My Blog | Twitter

                          Comment


                          • #58
                            Originally posted by SaN-DeeP View Post
                            can some dev. or vbulletin officials post to this please ?
                            There are no known security issues with vBulletin, this thread is about the vbportal web site being hacked by a low life extorist. Scott MacVicar has been kind enough to help us identify some issues and we should have a fix out on the vbportal site later this evening.

                            BTW: This intrusion is the same as has been happening all over the web lately, even the Apache web site has been hacked into several times. http://www.apache.org/info/20010519-hack.html There just isn't enough to be said about security. All we can do is keep fighting these people.

                            Sorry Scott, I posted without reading your post and Thank you very much for the help.
                            Last edited by wajones; Thu 27th Jul '06, 9:58am.

                            Comment


                            • #59
                              Originally posted by barroca View Post
                              hello,

                              sorry, but I don't understand this.
                              tks
                              barroca
                              "Hit me on IM"

                              Contact me via. Instant Message - (Yahoo, AIM, ICQ)

                              http://www.szone.us | http://www.gzhq.net
                              Twitter | Facebook | My:Hacks @ vBulletin.org
                              Member of Kiwanis Club of Chatsworth

                              Comment


                              • #60
                                Full support

                                As a corporate user of vBulletin and the Portal, I fully support the efforts being made to address these issues. Just make sure we all do full backups ....

                                Comment

                                widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                                Working...
                                X