MyBB Community Forums

A few months ago my forum was hacked which resulted in me putting it offline. I want to get it going again.

Since the hackers most probably have the DB, how should I go about resetting users passwords?

Should I try to leave them and when they come back they can just 'forgot password' and get it emailed to them?

Should I try mass changing them via MYSQL, then emailing them the pw?

Is there any tools that can aid me in this regard?

Thanks alot

edit: so far I found this http://mods.mybb.com/view/force-password-change although I doubt it works as it's so old, and i'm not sure if its viable for a large amount of users

I would actually do a random password generation on all accounts and send them the new password.
And that plugin still works.

(2013-09-12, 10:06 PM)Rakes Wrote: [ -> ]I would actually do a random password generation on all accounts and send them the new password.
And that plugin still works.

How would you recommend I do that?

---

bump,

bump, please help.

(2013-09-12, 10:13 PM)trmybb Wrote: [ -> ]

(2013-09-12, 10:06 PM)Rakes Wrote: [ -> ]I would actually do a random password generation on all accounts and send them the new password.
And that plugin still works.

How would you recommend I do that?

---

bump,

http://mods.mybb.com/view/force-password-change

Going to try and do this.

Do you know how this was accomplished? Is it patched? Do the devs know about this?

(2013-09-17, 01:53 PM)randomdudehere Wrote: [ -> ]Do you know how this was accomplished? Is it patched? Do the devs know about this?

It was caused cause I hadn't updated my software in a while and there was an open vuln. It is patched now.

Going to try and do this today.

http://mods.mybb.com/view/force-password-change
Is not compatible with mybb 1.6.10.

WOW.

Did you try using it?