[phpBB Debug] PHP Warning: in file [ROOT]/feed.php on line 173: Cannot modify header information - headers already sent by (output started at [ROOT]/feed.php:1)
[phpBB Debug] PHP Warning: in file [ROOT]/feed.php on line 174: Cannot modify header information - headers already sent by (output started at [ROOT]/feed.php:1)
[phpBB Debug] PHP Warning: in file [ROOT]/feed.php on line 180: Cannot modify header information - headers already sent by (output started at [ROOT]/feed.php:1)
IntegraMOD Home of phpBB Integrated Modifications 2006-08-29T07:55:06-07:00 http://www.integramod.com/forum/feed.php?f=12&t=1964 2006-08-29T07:55:06-07:00 2006-08-29T07:55:06-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14470#p14470 <![CDATA[Hacking attempts...]]> Statistics: Posted Author: Michaelo — Tue Aug 29, 2006 7:55 am

]]> 2006-08-29T07:11:53-07:00 2006-08-29T07:11:53-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14461#p14461 <![CDATA[Re: Hacking attempts...]]>
Already tried using other folder names.

Also use mixed characters in passwords... alpha (upper and lower case) and numeric.

Thanks though for the suggestion.

I also am working on image links to replace the text in the overall footer.
with names that have nothing to do with phpBB ot IM to stopgap the search till his can be ironed out.

Statistics: Posted Author: BMD — Tue Aug 29, 2006 7:11 am

]]> 2006-08-29T06:40:16-07:00 2006-08-29T06:40:16-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14458#p14458 <![CDATA[Hacking attempts...]]>
"BMD";p="14454" wrote:
I have stripped the integramod folders and started clean... I have started with a fresh DL from here..... I have changed passwords (different for FTP, MySQL, my host account and my admin account....

nothing matters...they still get in.


The hacking script, c99 shell, also has the ability to cross-infect on a shared server. The best defence against this kind of attack is to change your folder names. Simply changing the root of the forum from "..../forum" to "..../<another_name>" will be a big help. You can redirect web access to the new folders using your .htaccess file.

- John

Statistics: Posted Author: jwernerny — Tue Aug 29, 2006 6:40 am

]]> 2006-08-29T06:03:16-07:00 2006-08-29T06:03:16-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14456#p14456 <![CDATA[Hacking attempts...]]>
In the mean time check the security forum (second post) for latest updates... these must be instaled!

Mike

Statistics: Posted Author: Michaelo — Tue Aug 29, 2006 6:03 am

]]> 2006-08-29T05:41:27-07:00 2006-08-29T05:41:27-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14454#p14454 <![CDATA[Re: Hacking attempts...]]>
I had my site backed up so I have not lost any data, but it is a pain to spend time reconstructing the site each time.

I have stripped the integramod folders and started clean... I have started with a fresh DL from here..... I have changed passwords (different for FTP, MySQL, my host account and my admin account....

nothing matters...they still get in.

I am going to try starting with phpbb2.0.21 and add work from there.

Is there a version of IM that has the 2.0.21 already incorporated?

Statistics: Posted Author: BMD — Tue Aug 29, 2006 5:41 am

]]> 2006-08-28T16:05:21-07:00 2006-08-28T16:05:21-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14344#p14344 <![CDATA[Hacking attempts...]]> Statistics: Posted Author: Michaelo — Mon Aug 28, 2006 4:05 pm

]]> 2006-08-28T05:36:49-07:00 2006-08-28T05:36:49-07:00 http://www.integramod.com/forum/viewtopic.php?t=1964&p=14302#p14302 <![CDATA[Hacking attempts...]]>
When checking my own ACP, I was astonished to see that many visitors came on my forum after searching the following in google or msn:

- /search?q=Powered+by+KisMod
- /search?q=+%22Powered+by+integramod
- /results.aspx?q=Powered+by+IntegraMOD

More than 20 just for the last 24 hours!

Which gave me an idea that I can unfortunately not implement by myself: what about automatically baning visitors that reach our forum while searching those keywords?

This could be a very efficient way to limit the risk of an attack...

Any comment welcomed.

sanji

Statistics: Posted Author: sanji — Mon Aug 28, 2006 5:36 am

]]>