Help!!! PHPBB getting hacked 300 times a day

This is an archive of the phpBB 2.0.x support forum. Support for phpBB2 has now ended.
Forum rules
Following phpBB2's EoL, this forum is now archived for reference purposes only.
Please see the following announcement for more information: viewtopic.php?f=14&t=1385785
Locked
bettyklang
Registered User
Posts: 2
Joined: Mon Oct 02, 2006 9:58 pm

Help!!! PHPBB getting hacked 300 times a day

Post by bettyklang » Mon Oct 02, 2006 10:03 pm

I installed this board 4 years ago...

Over the last 3 months it has been hacked mor and more...its now hacked 3+ times a day and my provider said they can only find a database without a hack from july.

I installed the newest version a few weeks ago and it still got hacked.


they delete all the forums and you can't just put in new ones, they don't show up. the hackers also somehow get a hold of the password, no matter if you change it 3 times a day... can someone help me out here with this??

http://www.mashup.org/potato

User avatar
Marshalrusty
Project Manager
Project Manager
Posts: 29253
Joined: Mon Nov 22, 2004 10:45 pm
Location: New York City
Name: Yuriy Rusko
Contact:

Post by Marshalrusty » Mon Oct 02, 2006 10:07 pm

How exactly did you update to the latest version? If your host has a non compromised backup from July, load it and upload fresh copies of the 2.0.21 files. Then load the config.php that is currently on the server and rin install/update_to_latest.php.

In reality, if this was installed 4 years ago, you will be unable to tell whether the database backup is compromised or not, which is how the hacker could be getting in, in the first place.
Have comments/praise/complaints/suggestions? Please feel free to PM me.

Need private help? Hire me for all your phpBB and web development needs

espicom
Registered User
Posts: 17905
Joined: Wed Dec 22, 2004 1:14 am
Location: Woodstock, IL

Re: Help!!! PHPBB getting hacked 300 times a day

Post by espicom » Mon Oct 02, 2006 10:39 pm

bettyklang wrote: I installed the newest version a few weeks ago and it still got hacked.


If so, why does your forum say "Powered by phpBB 2.0.2 © 2001, 2002 phpBB Group"? To have the version number shown at all means you're over a year behind on security updates...
Jeff
Fixing 1016/1030/1034 Errors | (obsolete link) | MySQL 4.1/5.x Client Error | phpBBv2 Logo in ACP
Support requests via PM are ignored!
"To be fully alive is to feel that everything is possible." - Eric Hoffer

User avatar
Dog Cow
Registered User
Posts: 2495
Joined: Fri Jan 28, 2005 12:14 am
Contact:

Post by Dog Cow » Mon Oct 02, 2006 10:53 pm

your 4 year old board needs to be updated to the latest version!
Moof!
Mac GUI Vault: Retro Apple II & Macintosh computing archive.
Inside Allerton bookMac GUIMac 512K Blog

User avatar
Marshalrusty
Project Manager
Project Manager
Posts: 29253
Joined: Mon Nov 22, 2004 10:45 pm
Location: New York City
Name: Yuriy Rusko
Contact:

Post by Marshalrusty » Mon Oct 02, 2006 10:57 pm

Dog Cow wrote: your 4 year old board needs to be updated to the latest version!

Was it necessary to state this after espicom and I both already said it?
Have comments/praise/complaints/suggestions? Please feel free to PM me.

Need private help? Hire me for all your phpBB and web development needs

alvo
Registered User
Posts: 712
Joined: Thu Jun 22, 2006 3:57 am

Post by alvo » Tue Oct 03, 2006 5:37 am

Also keep in mind that a hacker getting into your forum didn't necessarilly get in through the pgpBB script, but might have gained access through a flaw in something else the site or server is running, so don't overlook checking out other things as well.

bettyklang
Registered User
Posts: 2
Joined: Mon Oct 02, 2006 9:58 pm

Post by bettyklang » Wed Oct 04, 2006 11:59 pm

Ahh...well it started getting massively hacked around July.

After which I updated to the newest version and changed my passwords.

It lasted for about 2 weeks before they hacked into it again.

should i just delete the whole thing and start from scratch if the database might be compromised... :|

splatterhouse
Registered User
Posts: 1
Joined: Thu Oct 05, 2006 12:04 am

Post by splatterhouse » Thu Oct 05, 2006 12:07 am

Im having the same problem...I found the Hacker made his/her own forum section and sends the page elsewhere when that is loaded. I cant find any other way to delete that section. Right now I have that section to be viewed as mod only but it interferes with normal usage. I may end up updating and deleting the whole database.

http://www.disturbance.us/forum

GreyDogz
Registered User
Posts: 200
Joined: Tue May 16, 2006 11:59 am

Post by GreyDogz » Thu Oct 05, 2006 12:22 am

Splatterhouse,

Don't delete your DB...just update your board to 2.0.21

Let me acknowledge that Marshalrusty and espicom mentioned this earlier but I wanted to stop you from deleting your DB for no reason.

Also didn't want Marshalrusty to bash me. :wink:

Locked

Return to “2.0.x Support Forum”