Announcement

Collapse
No announcement yet.

My Forum Hacking Every time

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    My Forum Hacking Every time

    Hi;

    i have big forums 8 gb database.

    i host my db in windows 2003 server and i use mysql 4.1

    my all tables droped i changed my db password but again droped . and every time drop.

    what is my problem please help.
    Tags: None
  • #2
    Sounds like someone gained access to your server. I suggest you contact your host and let them check.
    Want to take your board beyond the standard vBulletin features?
    Visit the official Member to Member support site for vBulletin Modifications: www.vbulletin.org

    Comment

    • #3
      Make sure the servers and services you are running are up to date, with this I mean your web server, ftp server, mysql server, php version, and the other stuff on the server. Including your vbulletin version.

      Add .htaccess to your admincp/ and modcp/ dir and rename these dirs.

      Don't turn on html on your forum.

      Change all the staff passwords to hard to guess passwords

      Delete the install/ directory

      Don't leave tools.php on the server

      Change your ftp passwords to hard to guess passwords

      Change your mysql passwords to hard to guess passwords

      Check your server and forum user accounts for unauthorized logins and usernames and delete any that you don't need or are unknown.

      Check for rootkits and trojans on the windows machine.

      Consider moving to linux based operating system.

      Check this thread: http://www.vbulletin.com/forum/showthread.php?t=194701

      And check you server logs on HOW they got in, and fix that hole

      Comment

      • #4
        If you have Flashchat 4.5.7 or a near version installed; then you are under great danger. I just avoided owner of mytc.net gaining access to my account using c99shell with help of an exploit found in FlashChat's integration modules.

        Take care!

        Comment

        • #5
          i dont have Flashchat.

          i have big problem. i changed all ftp passwords hackers cant find my mysql password but he drop or delete my tables.

          Comment

          • #6
            Check if you don't got any new mysql users or change all the mysql users passwords.
            Dutch vBullletin users social group!

            Comment

            • #7
              Go through my post and that thread. And contact your host and find out HOW they got in. If you dont find that out they will be abel to do it over and over.

              Comment

              • #8
                i upgraded last version i changed all password, i setted all permisions but again hack my forum.

                hacker can delete forumns, can change thread headlines, they can make anything but i cant see in logs. i thing they change with mysq command.

                what is my problem help me please.

                Comment

                • #9
                  Obviously through something else but vbulletin they gain access to the forum or database. Again .. contact your hosting provider and check for access logs to find out how they get in. There are no known security issues with 3.6.4

                  Comment

                  • #10
                    Same thread as this again http://www.vbulletin.com/forum/showthread.php?t=211890

                    Obviously this guy has a problem with his server being exploited, or still running software that allows them to keep exploiting it.

                    Comment

                    Previous template Next
                    widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                    Working...
                    X