»Whats wrong with m-x«
|
|||
 well...explain yourself admin boy posted by the anomaly |
|||
|
|||
| in-my-opinion.orgMiscAnything that doesn't fit in any other categorywhats wrong with m-x |
|
|||
 the anomaly: well...explain yourself admin boy Already asked him, apparently it got hacked! He's fixing it right now! 
posted by hungarian kid |
|||
|
|||
|
|||
|
fookin 'ell...its time to launch a campaign...all mxers and imoians gear yourself for battle posted by the anomaly |
|||
|
|||
|
|||
 Muthafuckaz! let them come, we shall repel all boarders! posted by Crossfade |
|||
|
|||
|
|||
 MeX got hacked? How? Why? posted by GP |
|||
|
|||
|
|||
 i was there yesterday seemed fine. posted by Agent Zero |
|||
|
|||
|
|||
 Agent Zero: i was there yesterday seemed fine. Yes, was hacked today. Was a "friendly" hacker. Hacked in for fun. Made that the following words were replaced: or => and
and => or i => myself matrix => real world neo => steven smith => troy reloaded => unloaded agents => fbi agents agent => fbi agent So kinda funny. But it actually points out that phpbb has some serious bugs. If you can change something like that you could erase everything else. Since Matrix-Explained.com isn't a highly modded forum it raises questions about general phpbb.com security. Dammit. 
posted by knn |
|||
|
|
|||
|
|||
|
yeah, weird eh? well at least he didn't erase everything...that would of sucked, although, that place is pretty repetitive, i bet people wouldnt of noticed posted by Agent Zero |
|||
|
|||
|
|||
 knn: But it actually points out that phpbb has some serious bugs. Could you point out what those bugs/holes are and how you stopped/plugged them? Has this happened to alot of other phpbb sites? posted by volonteshiva |
|||
|
|||
|
|||
|
volonteshiva: Could you point out what those bugs/holes are and how you stopped/plugged them? Has this happened to alot of other phpbb sites? If there is one such bug you could even shut the whole server down. There was one recently where you could delete the whole website (= all FILES, not only the database) by a single link  And I am 100% sure that there are a lot of forum websites that didn't fix it yet.
A typical hack is the abuse of SQL injections: If you are an expert, read  posted by knn |
|||
|
|||
|
|||
|
knn: Expert. Check. So are you going to parse through all the phpbb mysql queries and do some more indepth validation? Or has phpbb released any updates? posted by volonteshiva |
|||
|
|||
|
|||
 volonteshiva: Or has phpbb released any updates? Nope. But the problem is not only phpbb itself but also all the add-ons from other programmers. But MeX is pretty unmodified, thus such hacking attacks should not be successful. Unfortunately I was proven wrong today. posted by knn |
|||
|
|||
|
|||
|
Moreover the guys from phpbb.com refuse to tell all exploits. 
I asked them whether they have a list of each such bug. Nope, they don't. They offer only automated batch updates which don't work with modded forums.
When I pointed out that they either don't take security serious or modded forums, my topic was locked and I have been warned. 
And you guys complain when I shout "offtopic"  posted by knn |
|||
|
|||
|
|||
|
Just check this bug:  With this bug you were able to delete whole servers. How do you fix that? They won't tell. Even in the better description at  posted by knn |
|||
|
|||
|
|||
 volonteshiva: Has this happened to alot of other phpbb sites? A good while ago this non matrix phpbb forum I was on was hacked, they managed to lock the admin out, deleted loads of stuff and they even put a matrix image up in place of the fourms
They had to close the forums for a good number of months until they got it fixed. posted by zesja |
|||
|
|||
1, 2, 3, 4, 5 Next
Goto page
1, 2, 3, 4, 5 Next
 Register Log in |
The time now is 4 December 2008, 01:35 php B.B. |