Mud-club

Chat & Social => The Bar - General Chat => Topic started by: thermidorthelobster on December 21, 2004, 19:08:01

Title: forums.disco2.com
Post by: thermidorthelobster on December 21, 2004, 19:08:01
I notice the DiscoII Forums site has been hacked.  It's now un-hacked but offline.

This is interesting to me as I also run phpBB in a couple of places.  But I notice they're using Apache web server - I use IIS.  I'd be interested to know whether the hacking was a weakness in Apache, or in phpBB...?
Title: forums.disco2.com
Post by: muddyweb on December 21, 2004, 19:33:55
There are a number of vulnerabilities in all of the aforementioned software.

phpBB based sites have been hit heavily just of late, you need to keep them up to date to try and keep ahead of the hackers.

Sadly, they usually find a way if they are determined enough.

Apache is generally pretty secure, depending on the version, IIS needs to be kept bang up to date for patches else you *will* be hit sooner or later.
Title: forums.disco2.com
Post by: thermidorthelobster on December 21, 2004, 21:09:47
I can't remember the message that was there, but it appeared to be a bot / script, rather than a determined individual hacker.  That's why I feel particularly vulnerable!
Title: forums.disco2.com
Post by: Thrasher on December 22, 2004, 11:04:19
http://news.zdnet.com/2100-1009_22-5499725.html?tag=nl.e589

That gives the details ;-)
SimplePortal 2.3.5 © 2008-2012, SimplePortal