Page 1 of 5
Posted: Thu Feb 14, 2002 8:46 am
by MikeJ
Ok so obviously the phpboard is sploit city. ?hacked how many times? ?Anywhays apparently xaitax = some german hacker. ?We don't know if its the "real" xaitax or just some crased myg0t fool or maby even d-smiley. ?Anywhays we do know he does not have server or FTP access because he would have defaced the main site by now. ?This board is slightly more secure but no BBs are perfect. ?I've gone over the settings with lyth and we are making it as secure as possible. ?If we get hacked again then oh well, i'm not gonna lose sleep over some losers wasted time to deface a small clans BB. ?Anywhays enjoy these new forums sorry but you will have to re register...I'm not really an admin here i just installed it and configured it, talk to someone else about getting your modship/features/gaylover, etc back.
Posted: Thu Feb 14, 2002 9:08 am
by Lythium
Posted: Thu Feb 14, 2002 9:35 am
by MikeJ
bam
i found the exploit
New phpBB 1.4.x exploit
phpBB, is an open source bulletin board created by
the
phpBB group. Version 1.4.x of phpBB has a variable
input
validation problem that can lead to limited arbitrary sql
querys including gaining administrative access to the
board.
The problem lies in the fact that phpBB 1.4.x includes
an
algorithm in the auth.php file which removes
backslashes
ah
well that is that ;\
its been known for 8 months
well that explains that.
Posted: Thu Feb 14, 2002 12:42 pm
by Shorty Shitstain
As for the guy, the retarded wording that this guy put on on the old forums and his website is similar. Googling his nick bing up a load of german hacking related sites. As with the last time the forums were messed around it was probably just another script kiddie looking for a random phpbb board to exploit. In both cases I don't think this was anything do do with our aquaintences on gamesnet or cs.net.
Posted: Thu Feb 14, 2002 12:44 pm
by MikeJ
As for the guy, the retarded wording that this guy put on on the old forums and his website is similar. Googling his nick bing up a load of german hacking related sites. As with the last time the forums were messed around it was probably just another script kiddie looking for a random phpbb board to exploit. In both cases I don't think this was anything do do with our aquaintences on gamesnet or cs.net.
agreed, some people have nothing better to do than look around for trouble...
:shifteyes:
Posted: Thu Feb 14, 2002 1:17 pm
by mr_lee
spot on shorty.
nice all :)
Posted: Thu Feb 14, 2002 2:47 pm
by nemo
I need the AIM icon for dirty sanchez as an avatar
Posted: Thu Feb 14, 2002 2:55 pm
by Kerpal
Posted: Thu Feb 14, 2002 3:01 pm
by MikeJ
I need the AIM icon for dirty sanchez as an avatar
i got slacker at www.ballericons.com
Posted: Thu Feb 14, 2002 3:13 pm
by Shorty Shitstain
<--- bwahahahaha check the breakdancin' banana!!!