We've been hacked a third time!
We lost about 13 1/2 hours of posts
This attack is obviously very targetted. We've upset someone - perhaps in the drop catching thread. I figure if you can program a good catching script, you probably know enough to hack a website.
Somehow I don't like VB anymore!Anyhow, I've made a number of changes to the forum. I know that there are a number of rough edges that need to be fixed still, but at this point I'm primarily concentrating on security.
I completly agree.. Someone is very upset.......We've upset someone - perhaps in the drop catching thread....
I could not disagree more with above statement.. General Drop Catching Scripts are less than 300 lines, and the one based on resellerclub APIs are even smaller.. But hacking a website?? For the sake of security testing, I have tried many times to give wrong input or wrong data entry to my scripts from a user-end, and in no way I could see my PHP code or even make the server crash.. Hacking is a mix of lot of knowledge of Unix systems, of the forum platforms used, of the particular server to host forum.. and the most important evil intent.. none of which is required in making drop-catch script......I figure if you can program a good catching script, you probably know enough to hack a website....
V bulletin is never a secured platform. There are few underground private exploits which are not known to even vbulletin core developers. I have 7 licenses for vbulletin as i run different forums. In last 2 years i got hacked many times with those exploits and finally i lost interest on vbulletin. Jeff if you need any help contact me.
I am worried about your web hosting. There are hosts which provide CDP or Continuous Data Protection and that's a part of their hosting packages without additional fee. And it does not mean they cost a fortune. $40 per year (shared hosting) .PM me if you want to get such hosting.
Somehow I tend to disagree on that. I know a very little about PHP and can say that it's fairly easy to program a catching script.A simple one may have even less than 50 lines. Hacking is a much more bigger field and one needs to be a master in Linux and networking in order to crack a website.
Glad to see you finally upgraded to the latest version. Hopefully it won't happen again!
That was due to your suggestion - thanks!
As to the design, we need to get a new one made, so that will take a bit of time. I agree that right now the forum looks a bit uninspiring!
Some of the plugins (e.g. itrader, post thanks) are temporarily turned off for testing purposes and will be re-added again soon.
We've been hacked a third time!
We lost about 13 1/2 hours of posts
This attack is obviously very targetted. We've upset someone - perhaps in the drop catching thread. I figure if you can program a good catching script, you probably know enough to hack a website.
Anyhow, I've made a number of changes to the forum. I know that there are a number of rough edges that need to be fixed still, but at this point I'm primarily concentrating on security.
Just seen a redirect loop when browsing through Inforum.
May be the hacker trying to hack again
Working fine for me.
This skin is a HUGE improvement over the previous one.
Please Update mobile version .. This theme is nt work well in Mobile Phone..
I like this style.
May be this time you should use FB Connect for login.
The logo is still default vBulletin logo. I think you may not have much time to update this one.
If you need one logo I can provide you. (It would be my small support to Inforum, if you accept).