Actually, neither one of those will work, they'll just deny access to everyone
. Really the only way to fix this problem is to upgrade your boards, or edit the vulnerable piece of PHP code, neither of which is really a viable solution.
The best idea is to disable registration for the time being. Simply rename register.php to some random combination of letters and numbers, and create a new register.php containing the following code:
Code: Select all
<p>Registration is temporarily disabled. Sorry!</p>
That will prevent any new registrations. Just delete the existing troublemakers, and they can't register again!