Announcement

Collapse
No announcement yet.

haX0red?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • haX0red?

    Something interesting just happened today. This user on my forum (who's account's been deleted now) had some sort of a cookie tracker/whatever in his signature which redirected you automatically to some other site on viewing his profile or opening any of his threads.. and it somehow logged/sniffed your username and password on the forum.

    One of my moderators fell for it.

    Anyway, he did us no harm.. and that mod has changed his password too. I also just realized that I hadn't turned off HTML in signatures (which I have now )..

    What security measures should I take to prevent stuff like this from happening?

  • #2
    This may help http://www.vbulletin.com/forum/showthread.php?t=194701 using a .htaccess file to password protect your mod and admin folders would be good and renaming them.

    Comment


    • #3
      Read these threads:

      http://www.vbulletin.com/forum/showthread.php?t=211647
      http://www.vbulletin.com/forum/showthread.php?t=194701
      Jason Litka - Utter Ramblings

      Comment

      widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
      Working...
      X