MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.4 > MyBB 1.4 General Support > MySQL - Hacked
Full Version: MySQL - Hacked
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pages: 1 2

Combo

2008-12-15, 03:55 PM
I'm running on the latest MyBB 1.4.4 security and maintenance patch.
However somehow I keep getting hacked into. They seem to be able to access my config.php and get my database details, change my password to my forum account and change my index to redirect to there website.

Therefore I think they can access phpmyadmin with my database user and its really annoying me.

Anyone know what this is and if you already know about this is there a patch to prevent this happening or anyway I can secure my config.php file.

Thanks.
I think its a MySQL injection, a way to prevent these?

Martin M.

2008-12-15, 04:24 PM
The configs aren't in the database at all.
If they did inject your database it would really help with an server log to check it out, also time when it happend.
You can get these logs via cpanel or anything like that if you have it on your host, or you can contact your host and they'll provide it.

Ryan Gordon

2008-12-15, 07:53 PM
What plugins are you running?

Dennis Tsang

2008-12-16, 08:59 AM
Change your MySQL user password, FTP password, SSH password, cPanel Password, etc.

Matt

2008-12-16, 10:18 AM
And make very regular backups (i.e. one a day) in case they do any damage.

terrymason

2008-12-16, 03:14 PM
If it were me, I'd look for other admins that have been added, then backup everything, and upload all new html files.

Matt

2008-12-16, 03:19 PM
What would uploading new files do?? And they're PHP, not HTML Wink If you do indeed mean the MyBB files...

Are there any other people with database access, Combo??

CHMOD ./inc/config.php to 444 just 'in case' they're managing to write different details to it (not that writing new stuff to config.php would change the actual database details but still...).

terrymason

2008-12-16, 04:27 PM
(2008-12-16, 03:19 PM)MattR Wrote: [ -> ]What would uploading new files do?? And they're PHP, not HTML Wink If you do indeed mean the MyBB files...

if you wipe the existing files, then upload new html / php / jpg / cgi files, then any backdoors / file uploaders / viruses that the hacker has left will be deleted.

I've been exploited before (I'm talking online here Rolleyes ) and had undeletable files uploaded, normally in the cgi-bin.

My point is that you have no idea what files have been changed - better to start fresh.

Bubka3

2008-12-16, 04:48 PM
You Might Wanna Take A Look At This
CHMOD_Files

Matt

2008-12-16, 04:48 PM
Ah of course... if you do delete files though, don't delete ./inc/config.php or ./inc.settings.php, and maybe save plugin files etc...
Pages: 1 2
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.4 > MyBB 1.4 General Support > MySQL - Hacked