Announcement

Collapse
No announcement yet.

Getting hacked very badly

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Getting hacked very badly

    http://nexusportal.net/index.php

    Basically, something, someone, somehow has registered 8000 times on our forum. We have 800 online user, showing 9000 online today. MySQL slowed to a crawl. They are also mailbombing us badly.

    Looks like they made a script to create users automatically. We are still running 2.3.0 but I've applied all the security fixes that have been released up to 2.3.4. Any defence against this?
    • Laurence Flynn – In our EIGTH year of great hosting!
    HostNexus - #1 Web Hosting Provider
    • Plesk 8 LINUX Hosting Solutions brought to you by HostNexus - the Multi-Domain Specialists!

  • #2
    I can't check this right now, but does 2.3.x include image verification/ If so, turn this on - that way the bots can't read out and you can just prune users who registered since the attack or match the patern. You could also just close the forum until the attack is over.

    This looks like an attack and probably by some member who had issues with the site or staff. It doesn't hurt to log their IP's and report those as either compromised systems to their internet service providers or as an DoS attack against your network. Hopefully those lines will get dropped to.

    Comment


    • #3
      I don't thing VB2 has the image verification feature unfortunately. We found the IP and firewalled it. Was coming from Turkey....

      Anyway, cleaned out the mail queue and I'm just cleaning out the forum now.
      • Laurence Flynn – In our EIGTH year of great hosting!
      HostNexus - #1 Web Hosting Provider
      • Plesk 8 LINUX Hosting Solutions brought to you by HostNexus - the Multi-Domain Specialists!

      Comment


      • #4
        Image verification for vBulletin 2 is available at vbulletin.org as a hack
        vB Drupal Community Plumbing | vB Survey | vBusy | vB Spell | vBouncer

        Comment


        • #5
          Originally posted by tamarian
          Image verification for vBulletin 2 is available at vbulletin.org as a hack
          It is also a standard feature in vB2.3.3 or 2.3.4.

          Comment


          • #6
            I just read the announcement from version 2.3.0 and that included a image verification bug fix, so .. it was probably introduced in 2.3.0 earlier test versions
            Last edited by Floris; Sun 14th Mar '04, 8:59am.

            Comment


            • #7
              It was introduced in 2.3.0 RC2.

              Comment


              • #8
                Yep, it's there but not working. Checking to see if we have GD installed onn this server as that is a requirement.....
                • Laurence Flynn – In our EIGTH year of great hosting!
                HostNexus - #1 Web Hosting Provider
                • Plesk 8 LINUX Hosting Solutions brought to you by HostNexus - the Multi-Domain Specialists!

                Comment


                • #9
                  You could check with phpinfo();

                  Comment


                  • #10
                    GD is in there but the image verification doesn't show up. I have the option enabled in the adminCP though. Any ideas?
                    • Laurence Flynn – In our EIGTH year of great hosting!
                    HostNexus - #1 Web Hosting Provider
                    • Plesk 8 LINUX Hosting Solutions brought to you by HostNexus - the Multi-Domain Specialists!

                    Comment


                    • #11
                      Did you turn on GD options in the vboptions page? And select the version number? 1.6.x or 2.x ?

                      Comment


                      • #12
                        You beauty - that was it. Amazing that you can know software so well and still find more featues after all this time. Kicking myself for not having found it earlier though. This just ate 2 hours of my sunday night.

                        Thanks all for your help.
                        • Laurence Flynn – In our EIGTH year of great hosting!
                        HostNexus - #1 Web Hosting Provider
                        • Plesk 8 LINUX Hosting Solutions brought to you by HostNexus - the Multi-Domain Specialists!

                        Comment


                        • #13
                          I am sorry that vBulletin is such an amazing product!

                          Comment

                          widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                          Working...
                          X