Well the forum was hacked last night or this morning sometime. Finally got it back together I'm hoping. If there are some problems here and there please let me know in this thread and I'll try and get this up and running as usual.
Not sure why someone would hack this forum - but anyway.

Hey Rich, it is happening more and more. People like that need to get a life.

Also - I would suggest anyone that went to the root directory of this site i.e. www.construction-resource.com to run a quick virus check. My virus tool kept coming up with something about a javascript exploit. If you don't have virus checker - too bad.

i tried to get in this morning,couldn't was geting an error, thouth it was my pc, so i scan my pc, virus,spy,ad,etc...it's a OK...

Phew!! I was wondering what happened.
First I couldn't even get the site then I was forbidden to go onto the forum.

roger

\

tried to open pics file getting this..
Sat Nov 27 2004 12:25:19 pm EST
24.37.195.207 tried to load www.construction-resource.com/error.php
User Agent = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
The file you are looking for can not be found on the server

steeve - what post are you looking at?

Oh - nevermind.. it's the album mod..
Should be fixed.
Thanks steeve.

Did they hack the site via one of trhe server services ftp httpd etc...? Or did they hack this site via the phpbb software?

Rich, opening attachements; doesn't work..same error...

Not via phpbb.. the server itself.

Thanks again steeve.. forgotten how many hacks I've put on this thing. Should be working now.

"a" OK...nice work :D

My understanding is that the security flaw exists in 2.0.10 (which the board still says it is), but is fixed in 2.0.11. Sometimes the version # doesn't update during an upgrade, but if you haven't updated already, you might want to.

http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=240636

As I stated earlier they didn't hack through the software - it was through the server... but yes I need to upgrade to the most current version.

As I stated earlier they didn't hack through the software - it was through the server... but yes I need to upgrade to the most current version.

Obviously I didn't read ;)

So you didn't get the PM I sent you last night at about 9-10 pm?

No I didn't..

Geesh - what a pain. I think I'm going back to re-install everything and then remod the forums..

Rich, are you sure they didn't hack the software? Another construction (roofing actually) phpBB forum that I am a member of got hacked tonight.

This is what it said:
H4ck3rsBr uid=0 root gid=0 root ehehehe by MaTrIzz

Just seems like too much of a coincidence.

Typically if the software is hacked it effects the database directly - this was only files deleted in the forum root and the main root folder - as well as the shop folder.

In fact the server shows that he/she was even logged into the server...grr..

Back up often.

Yep - just updated to 2.011 from scratch. Not bad for time - only took about 3 hours to update all the 2011 files with all the mods. Except I just noticed I missed one - the quick reply.

Ah well I never use that anyway.

Old habits die hard.

I always use quick reply. Always.

<--- Lazy