2009-02-03, 09:46 AM
2009-02-03, 09:59 AM
2009-02-03, 10:10 AM
2009-02-03, 12:26 PM
Hopefully they wont die out because of this, having your forums hacked must be depressing.
@Labrocca: This excludes you.
@Labrocca: This excludes you.
2009-02-03, 01:19 PM
2009-02-03, 02:11 PM
2009-02-03, 02:23 PM
2009-02-03, 02:32 PM
2009-02-03, 02:32 PM
2009-02-03, 02:35 PM
(2009-02-03, 02:11 PM)Mareshal Wrote: [ -> ]MyBB staff please check...could this be a MyBB bug?
What do you expect anyone to 'check'??
We have no idea how they gained entry. It could be what rh1n0 said and be insecure passwords, ergo, nothing we can do to stop it. If it was a MyBB problem we'd need info on it, but again, as rh1n0 said, if there was a known MyBB exploit, I reckon these forums would be top of their list.(2009-02-03, 01:19 PM)Combo Wrote: [ -> ]They should of released all the skins from premium. MyBB is piss easy to hack via the database.
I'm not sure what you mean here about releasing the themes... and if someone has database access, they can do anything... it's how they get to the database that's the problem. If they get to it through a MyBB exploit it's bad for us, if they get to it through insecure passwords, it's just bad luck for the admin.
(2009-02-03, 02:32 PM)Mareshal Wrote: [ -> ]What about installed plugins? Do you recommend to keep mybb as clean as possible?
[offtopic]what are recommended permissions for config.php and settings.php? 644 is ok or 444?
settings.php has to be 666 so it can be written to but config.php can be 444.