Squatter forum hacked.

[Malabus]

http://cof.tigerroar.co.uk/showthread.p ... rum-reboot" onclick="window.open(this.href);return false;

Poor regular maintenance and supervision by the administrator is more likely the reason for the site to be attacked by hackers. Thank goodness our Andrew knows how to look after a public forum correctly.

[taxidave]

http://www.robinsnestforum.co.uk/viewto ... =3&t=14477" onclick="window.open(this.href);return false;

[asl]

Perhaps they could rent a forum page on the Nest? Best make 'em pay up front, Andy!

[Malabus]

Perhaps they could rent a forum page on the Nest? Best make 'em pay up front, Andy!

Perhaps they don't bother at all...3 posts added in a normal week.

[Ralph]

Perhaps they could rent a forum page on the Nest? Best make 'em pay up front, Andy!

good idea.. lets help them.. again

i'd suggest Mal being an admin on it too.

[RegencyCheltenhamSpa]

Hacking...using a site you don't pay for to offer a service below the standard the intended purpose. The on-line equivalent of a ground hire at a Football League club by a Parkball team who don't pay!

[Neil]

Is the proper plural for moron actually mora?

[Admin]

I actually sympathise here with Neil Im afraid - a lot of hard work goes into running and maintaining a forum and I can say we have had problems with this forum - albeit at the time I was employing the services of someone to look after my business websites and subsequently this one so it was quickly recovered from a recent backup at the time.

Just to let you know though that from (possibly) this weekend I will no longer be Admin / owner / maintaining the forum as plans are in place to move things over soon.

Last nights maintenance unfortunately was required because of new servers by my current hardware host but glad to say things went smoothly by the looks of it.

Good luck Neil in getting things back up and running (after all we dont want you all coming over here and posting ).

[RegencyCheltenhamSpa]

Is the proper plural for moron actually mora?

No, you're thinking of fora - but that requires more than one forum being operational.

[taxidave]

Perhaps Neil's forum has been hit by someone posting pornographic images on it.

[Admin]

Neil,

Have you seen this:

http://www.vbulletin.org/forum/showthread.php?t=301904" onclick="window.open(this.href);return false;


Andy.

[Malabus]

Perhaps Neil's forum has been hit by someone posting pornographic images on it.

At least somebody is posting on there.

[Neil]

Neil,

Have you seen this:

http://www.vbulletin.org/forum/showthread.php?t=301904" onclick="window.open(this.href);return false;


Andy.

Yep, he's the blighter. It's all well and good trying to tidy up the mess but they also say he's installed a back door so I'm just going to go for a clean start.

[Admin]

Good luck with it Neil - by a clean install I assume you mean database as well so everyone will have to re-register - only saying that because apparently the hacker manages to set up an admin account within the database by looking at the comments on that thread.

[Neil]

Yep. I'm thinking that that's the only full way of kicking him out.

[Admin]

If I wasnt so busy with other things (eldest off to Uni, work etc), I would have offered to assist if you needed it but cant sorry.

Hope it goes well.

Andy.

[ctfc-fan]

Good luck with it Neil - by a clean install I assume you mean database as well so everyone will have to re-register - only saying that because apparently the hacker manages to set up an admin account within the database by looking at the comments on that thread.

You should be able to find one if they have.

Neil if you need any assistance, let me know.

[Neil]

I wouldn't even want to try, most of that language is over my head. I can install and keep the forum up to date but don't see the harm in flushing it now and again.

[ctfc-fan]

What control panel do you use on your hosting, CPanel?

[Neil]

I believe it is, I don't really play around with it too much.

[ctfc-fan]

If you haven't sorted it yet, you can easily see if there is an additional db user added in your control panel.

[Neil]

Done that, there were two additional users.

[ctfc-fan]

Now deleted Neil?

I'm assuming your main password has been changed and to something very strong?

You could also download all the files to your hard drive and then list them by date modified to see what was changed around the date it happened.

[Daveangel]

Well I must say this is all very civil

[Admin]

Makes for an easy first day in charge

I think when it comes to football everyone can be friends deep down.

[C.V]

I think its very admirable of Admin/Paul to offer his help to Neil.

[Neil]

Now deleted Neil?

I'm assuming your main password has been changed and to something very strong?

You could also download all the files to your hard drive and then list them by date modified to see what was changed around the date it happened.

They didn't hack my account, they signed up and made themselves administrators through a hack in the forum software.

[taxidave]

Why is it down again ??

[ctfc-fan]

Yes but what they do when they're in to your server is put hidden code within your existing files and new pages in deep folders. That way, when they want to call it, they can use it for further devious purposes, such as distributing viruses etc.

So you need to first update your core code from the developers, remove any offending code, remove him as a forum admin and remove him as a db user.

[RegencyCheltenhamSpa]

Why would someone want to hack a small football forum?

[Andy]

Why would someone want to hack a small football forum?

Its not always the size of the item attacked but the fact that you have caused complete mass mayhem on a vast amount of forums using the same software - they just write the code for the bot to then search out and attack any site that runs the particular version of forum code you know had a vulnerability.

[RegencyCheltenhamSpa]

Fair enough.

[ctfc-fan]

Why would someone want to hack a small football forum?

Its not always the size of the item attacked but the fact that you have caused complete mass mayhem on a vast amount of forums using the same software - they just write the code for the bot to then search out and attack any site that runs the particular version of forum code you know had a vulnerability.

And the collective damage they could then cause.

[Daveangel]

It's bloody annoying, I'll give it that. Trying to arrange coaches to away games is hard enough as it is without being unable to advertise them properly. Resorting to a bloody great blackboard by the turnstile on Sunday, but knowing our luck the fecking thing will probably get infected with woodworm!

[Malabus]

Trying to arrange coaches

Why are you using a plural....?