Welcome, Guest. Please Login or Register.
October 01, 2024, 07:19:49 AM
Home Help Search Log in Register
News: SMF is the next generation in forum software, almost completely re-written from the ground up, make sure you don't fall for cheap imitations that suffer from feature bloat!

YaBB SE Community  |  English User Help  |  English Help  |  Hacked 1.5.1rc « previous next »
Pages: [1] Reply Ignore Print
Author Topic: Hacked 1.5.1rc  (Read 539 times)
chad
Jr. Member
**
Posts: 77


I'm a llama!
Hacked 1.5.1rc
« on: March 17, 2003, 08:56:36 AM »		 Reply with quote
not sure where this should go but.... my board was hacked tonight.... he got in thru yabbse is what my server is telling me.. i run the newest version of yabb.. also somehow i wasnt able to access my error logs afterwards!!


Chad
Logged
[Unknown]
Global Moderator
YaBB God
*****
Posts: 7830


ICQ - 179721867unknownbrackets@hotmail.com WWW
Re:Hacked 1.5.1rc
« Reply #1 on: March 17, 2003, 09:09:56 AM »		 Reply with quote
If you could provide any further information please do.

For example, PHP version, 1.5.1 build, url.. access logs...

-[Unknown]
Logged
chad
Jr. Member
**
Posts: 77


I'm a llama!
Re:Hacked 1.5.1rc
« Reply #2 on: March 17, 2003, 11:23:24 PM »		 Reply with quote
sure,

its the newest release i upgraded last week
DAAH.INFO is the url and the logs were wipped clean somehow....... They came in i think threw my username... i cought them online traced the IP to sprint dial up... they were on as me and had changed my admin pass. They really just changed the board topics names  and removed all the banned members... nothing big........... php version is 2.2.7 iam running on a virtual private server


Chad
Logged
Spaceman-Spiff
Mod Team
YaBB God
*****
Posts: 3689


My $txt[228]
Re:Hacked 1.5.1rc
« Reply #3 on: March 17, 2003, 11:33:24 PM »		 Reply with quote
did u use easy to guess password before?
like admin/admin or something like that?
Logged
   My mods, ysePak, codes, tutorials
    Support question IMs = bad.
David
Destroyer Dave
Global Moderator
YaBB God
*****
Posts: 5761


I'm not a llama!

WWW
Re:Hacked 1.5.1rc
« Reply #4 on: March 17, 2003, 11:35:08 PM »		 Reply with quote
By saying your logs were wiped clean do you mean your Apache logs.  If so I highly doubt they hacked your YaBBSE board but rather hacked your account and delelted the YSE board in the process.
Logged

Forum-Forum.com, A Forum For Forum Owners and Enthusiasts!
chad
Jr. Member
**
Posts: 77


I'm a llama!
Re:Hacked 1.5.1rc
« Reply #5 on: March 17, 2003, 11:45:16 PM »		 Reply with quote
bear with me i am a noobie at this..... ok from inside the admin pannel their is error log link... it doesnt show... get a time out error... not sure how to look at the appache logs.


Pass and log in were admin/chase
now has been changed.....LOL

Chad
Logged
David
Destroyer Dave
Global Moderator
YaBB God
*****
Posts: 5761


I'm not a llama!

WWW
Re:Hacked 1.5.1rc
« Reply #6 on: March 17, 2003, 11:55:25 PM »		 Reply with quote
You need to have your host help you look at Apache logs in order to find out exactly what happened.
Logged

Forum-Forum.com, A Forum For Forum Owners and Enthusiasts!
chad
Jr. Member
**
Posts: 77


I'm a llama!
Re:Hacked 1.5.1rc
« Reply #7 on: March 18, 2003, 04:55:12 AM »		 Reply with quote
they see nothing in the apache logs..... they say its probably the board having some holes somewhere??


Chad
Logged
David
Destroyer Dave
Global Moderator
YaBB God
*****
Posts: 5761


I'm not a llama!

WWW
Re:Hacked 1.5.1rc
« Reply #8 on: March 18, 2003, 05:02:35 AM »		 Reply with quote
Quote from: chad on March 18, 2003, 04:55:12 AM
they see nothing in the apache logs..... they say its probably the board having some holes somewhere??


Chad
Of course there is something in access logs, either actions from YaBBSE, or some other script.  If there is nothing there then it leads me to believe they got in via FTP or SSH.
Logged

Forum-Forum.com, A Forum For Forum Owners and Enthusiasts!
[Unknown]
Global Moderator
YaBB God
*****
Posts: 7830


ICQ - 179721867unknownbrackets@hotmail.com WWW
Re:Hacked 1.5.1rc
« Reply #9 on: March 18, 2003, 05:36:30 AM »		 Reply with quote
Quote from: chad on March 18, 2003, 04:55:12 AM
they see nothing in the apache logs..... they say its probably the board having some holes somewhere??


Chad

If it has holes somewhere, they were exploited.  If they were exploited, it was done through GET/POST requests.  If it was done through such requests it's in the log.

If it's not in the log, it's not a hole in the forum.

-[Unknown]
Logged
Pages: [1] Reply Ignore Print 
YaBB SE Community  |  English User Help  |  English Help  |  Hacked 1.5.1rc « previous - next »
 


Powered by MySQL Powered by PHP YaBB SE Community | Powered by YaBB SE
© 2001-2003, YaBB SE Dev Team. All Rights Reserved.
SMF 2.1.4 © 2023, Simple Machines
 Valid XHTML 1.0! Valid CSS

Page created in 0.036 seconds with 21 queries.