Welcome, Guest. Please Login or Register.
November 23, 2024, 04:23:28 PM
Home Help Search Log in Register
News: SMF is the next generation in forum software, almost completely re-written from the ground up, make sure you don't fall for cheap imitations that suffer from feature bloat!

YaBB SE Community  |  YaBB SE Info  |  News From the YaBB SE Team  |  SECURITY FIX! Users using any version prior to 1.5.1 « previous next »
Pages: 1 ... 4 5 [6] 7 8 ... 12 Reply Ignore Print
Author Topic: SECURITY FIX! Users using any version prior to 1.5.1  (Read 99677 times)
Ratman
Noobie
*
Posts: 5


Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #75 on: February 03, 2003, 03:26:18 AM »
Reply with quote

Hey, I just fixed my 1.4.1 board and now I'm getting an error within the Admin Center, right on top of the Forum Preferences and Settings section I get a message: "Failed to make backup of Settings.php" which wasn't there before -- e.g. about 30 seconds before uploading the patched file. Has anyone got such an error or is it just me? ??? Maybe I should upgrade to 1.5, but anyway...
Well, and I got 9 mails too, I think it's better safe than sorry! :D
Logged

I speaks broken English very good!
Alex Rolko
Almighty
Global Moderator
YaBB God
*****
Posts: 4624


Fury of Me

Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #76 on: February 03, 2003, 03:33:46 AM »
Reply with quote

just chmod your directory and files again.
Logged


ThinkGeek.com Wishlist | Just call me Xander...
I'm sorry but I don't answer support requests
eknee
Noobie
*
Posts: 3


I'm a llama!

Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #77 on: February 03, 2003, 03:35:48 AM »
Reply with quote

I've just looked at my database and it seems fine.  What did this hacker do?  

And more importantly, what can I do to fix it?

Best,
Eric
Logged
Peter Crouch
Occasional guy
YaBB Crony
Full Member
***
Posts: 231


ICQ - 82033372 WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #78 on: February 03, 2003, 04:00:22 AM »
Reply with quote

Well considering I usually ignore most announcements the 9 emails pricked my interest enough to actually check it out, and heaven forbid, POST!!  :o
Logged
Jeff Lewis
Global Moderator
YaBB God
*****
Posts: 10149


I'm a llama!

WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #79 on: February 03, 2003, 04:15:22 AM »
Reply with quote

Hehe welcome back for if even for a few moments ;)
Logged

Jeff Lewis
Global Moderator
YaBB God
*****
Posts: 10149


I'm a llama!

WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #80 on: February 03, 2003, 04:17:51 AM »
Reply with quote

For any of you that HAVE been hit by this, if you have access to your logs and can send me a block of them where the person did something stupid, please do send them my way...
Logged

Patty
Full Member
***
Posts: 249


Drat. I caught Darth Llama.

Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #81 on: February 03, 2003, 05:57:33 AM »
Reply with quote

Actually, I'm wondering the same as eknee ... I saw the "google" search and that IP in my logs on Friday, but nothing screwy happened to the board. I applied the patch, but what, if anything, did the hacker do beforehand?

Oh, and I've no problems with the multiple emails -- except that the link displays a blank page when I click it. Regardless, the multiple emails just drove the "UPGRADE NOW OR ELSE" point home. Thanks for letting everyone know about this.
« Last Edit: February 03, 2003, 06:02:26 AM by Patty » Logged
rickc
Jr. Member
**
Posts: 55


My Tsi rules!

WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #82 on: February 03, 2003, 09:02:22 AM »
Reply with quote

what can they do to your board with this "leak"??
 ???
Logged
[Unknown]
Global Moderator
YaBB God
*****
Posts: 7830


ICQ - 179721867unknownbrackets@hotmail.com WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #83 on: February 03, 2003, 09:08:40 AM »
Reply with quote

Quote from: rickc on February 03, 2003, 09:02:22 AMwhat can they do to your board with this "leak"??
 ???

Anything and everything they want.

-[Unknown]
Logged
Alan Roy
Noobie
*
Posts: 8


My monitor is an llyama!

WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #84 on: February 03, 2003, 10:47:55 AM »
Reply with quote

What exactly did this fix fix?
Logged
sensovision
Full Member
***
Posts: 100


WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #85 on: February 03, 2003, 10:54:14 AM »
Reply with quote

people if you get click from Google with keywords "Powered by YaBB SE" and nothing happen don't worry it was me(if you got member phoenix it's also me) or Mike, we just searching for forums check them for error and send alert e-mail to admin if forum was in danger we don't use info for anything more I give you my word. just ask your members if possible to change passwords as security measure it's good idea to change passwords from time to time anyway. and sorry once again if we scare anyone.
Quote from: Patty on February 03, 2003, 05:57:33 AMActually, I'm wondering the same as eknee ... I saw the "google" search and that IP in my logs on Friday, but nothing screwy happened to the board. I applied the patch, but what, if anything, did the hacker do beforehand?

Oh, and I've no problems with the multiple emails -- except that the link displays a blank page when I click it. Regardless, the multiple emails just drove the "UPGRADE NOW OR ELSE" point home. Thanks for letting everyone know about this.
« Last Edit: February 03, 2003, 10:57:14 AM by sensovision » Logged

Denis

Are you good with the graphic? check out our design logo contest!
tricky
Guest
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #86 on: February 03, 2003, 11:55:19 AM »
Reply with quote

Hi jeff, its tricky from mp3dreaming, i'm afraid we were too late and like countless others we were hacked yesterday! the good news is that our host is also one of our admins and has the server logs! they deleted everything! luckily we have restored a server backup which took only a few minutes! i think this was passed around as the hackers that did us were hollandfxp, the real good news is we have all the details of the hacker from the server log, he was a member of our board and didn't even connect through a proxy? i was wondering what everyone else that got hacked is planning to do about it?

tricky
Logged
Jeff Lewis
Global Moderator
YaBB God
*****
Posts: 10149


I'm a llama!

WWW
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #87 on: February 03, 2003, 11:58:14 AM »
Reply with quote

Sorry to hear that...and from a member? Ugh, that bothers me so much...care to send a log block to me to look over?
Logged

tricky
Guest
Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #88 on: February 03, 2003, 11:58:53 AM »
Reply with quote

hi jeff, its tricky from mp3dreaming,
we were not so lucky and got hacked yesterday! we have all the hackers details from the server logs, our host is also an admin on the board! the hackers were posting rammell about hollandfxp but is probably just a rouse? what are the rest of the ppl who got hacked doing about it?

is there someone collating ip info etc... the guy that hacked us was also a member of the board so we have a little history?

tricky

Logged
Agelmar
YaBB God
*****
Posts: 931


Takako Matsu = Goddess

Re:SECURITY FIX! Users using any version prior to 1.5.1
« Reply #89 on: February 03, 2003, 02:54:33 PM »
Reply with quote

There are still some people who have not yet applied the patch :(...

Jeff, perhaps you should add something into the .xml file that displays when you go to the admin center? Not all users of YSE are members of this board, but most will see the news in the .xml file displayed in the admin center...

edited for clairty
« Last Edit: February 03, 2003, 02:55:05 PM by Agelmar » Logged

Pages: 1 ... 4 5 [6] 7 8 ... 12 Reply Ignore Print 
YaBB SE Community  |  YaBB SE Info  |  News From the YaBB SE Team  |  SECURITY FIX! Users using any version prior to 1.5.1 « previous - next »
 


Powered by MySQL Powered by PHP YaBB SE Community | Powered by YaBB SE
© 2001-2003, YaBB SE Dev Team. All Rights Reserved.
SMF 2.1.4 © 2023, Simple Machines
Valid XHTML 1.0! Valid CSS

Page created in 0.071 seconds with 20 queries.