SpudDogg wrote:
When you say "fairly quickly" do you mean within hours? Or days? I have been using phpBB for a long time and have never had an attack of any kind, and I really like the the operation of the board. The real selling point for me is this community. I know you guys will take care of any problems, but remember, I have a board right now that is growing VERY quickly, and I don't even want this thing to go down for a few hours. Maybe I'm just being paranoid, but whatever.
Depends on how fast you bring it to phpBB's attention and the type of attack. You must also remember that this is a free service: we all have jobs, lives and other commitments. The phpBB group takes security as it's top priority and will do it's best to address every situation in a quick and efficient manner to get you back up and to make sure it is not replicated.
Bots don't hack forums. At most, bots are an annoyance and not a security threat.
safe_reader wrote:
I once got hacked by Turkish Hackers...
Another time, (this is a familiar case), just about everyone who had a phpBB forum on IPowerWeb (a host provider) had their forums compromised and had to be trashed. This was due to a worm which actualy got on the inside of their servers and affected the whole network. I remember this one in detail, caues if you look back you'll find 100 post threads on all moderators with IPowerWeb who were repeatedly told that the attacks were coming from the outside. Took the provider almost 2 weeks before they realized it was their own infected servers causing the problem!
Funy to bring this up, as they are having technical problems again as I write this...
Hosts that have phpBB setup for users to register to create forums are not a standard phpBB product. If their server setup is not properly done or they are using an outdated version with outdated MODs, or whatever, there is a significantly increased risk of an attack.