| Author |
 Topic  |
|
CodeName
Junior Member
296 Posts |
 Posted - 23 August 2002 : 05:53:29
|
Richard - HuwR and anothers..
I installed Snitz 3.4 With Active Users 4.14 and after 5 hours he or she hacked my forums ..
So How He Or She can Hack The NEW Snitz 3.4 ?? ... |
|
|
Hamlin
Advanced Member
United Kingdom
2386 Posts |
Posted - 23 August 2002 : 06:04:17
|
What exactly was done?
can we have a link to your forum to see what was done? |
Edited by - Hamlin on 23 August 2002 06:08:46 |
 |
|
|
CodeName
Junior Member
296 Posts |
Posted - 23 August 2002 : 06:14:37
|
Sure..
But i removed my forum at forum directory ..
On Default.asp All Subjects and Category s are Deleted and 1 Mesaage was there..
So New snitz 3.4 isnt safety ? :(( ..
And when my forum hacked ý checked the Logs and i saw this.. ;
From this That hacker is hacked my forum ?? |
Edited by - CodeName on 23 August 2002 06:23:41 |
|
|
|
Hamlin
Advanced Member
United Kingdom
2386 Posts |
Posted - 23 August 2002 : 06:17:48
|
doh - maybe I should not have asked what was done, please remove that stuff from the last post, if it works as you say it does it should not be broadcast  |
|
|
|
CodeName
Junior Member
296 Posts |
Posted - 23 August 2002 : 06:20:24
|
I dont know .. But My New Snitz 3.4 is hacked...
But how ? Snitz 3.4 Has New Security bug ? ..
|
|
|
|
laser
Advanced Member
Australia
3859 Posts |
Posted - 23 August 2002 : 06:21:33
|
| CodeName, please remove the code from your post - we don't want others exploiting the same security hole |
|
|
|
CodeName
Junior Member
296 Posts |
Posted - 23 August 2002 : 06:24:36
|
| Ok I removed.. so Ýf I put New Snitz 3.4 again it will be hacked again ? .. |
|
|
|
Hamlin
Advanced Member
United Kingdom
2386 Posts |
Posted - 23 August 2002 : 06:30:01
|
I dont understand what was done, that little bit of code looked like the way they used to explot 3.3.03 but the passwords are all encrypted now so you would not get anything useful.
I'm not saying it did not happen to your forum, your best bet would be to email one of the admins, with the information you have, i.e. what page they did this on, the info from your log files and let them look into it. |
|
|
|
CodeName
Junior Member
296 Posts |
Posted - 23 August 2002 : 06:42:11
|
| To Which Admins ? |
|
|
|
laser
Advanced Member
Australia
3859 Posts |
Posted - 23 August 2002 : 06:44:48
|
| Richard Kinser, or someone at that level is your best bet |
|
|
|
Deleted
deleted
4116 Posts |
Posted - 23 August 2002 : 06:47:08
|
Send it to Richard please... Also, did you have an older forum version (i.e. v3.3.x) there?
|
 Stop the WAR! |
|
|
|
kirgy
New Member
Germany
95 Posts |
Posted - 23 August 2002 : 06:51:49
|
| Maybe, could be a good idea to take a look at the log files, if you have access to. |
Kirgy
-------------
http://www.kirgy-web.de |
|
|
|
CodeName
Junior Member
296 Posts |
Posted - 23 August 2002 : 06:54:17
|
| ok I m Sending Everything to Richard Kinser |
|
|
|
btekcan
Junior Member
Turkey
112 Posts |
Posted - 23 August 2002 : 07:10:28
|
CodeName
Did you change Default Admin Password ? |
|
|
|
Rasco
Advanced Member
Germany
3192 Posts |
Posted - 23 August 2002 : 07:18:40
|
quote:
Did you change Default Admin Password ?
V3.4 doesn`t have an default Admin name + password |
German Snitz Forum
|
|
|
|
btekcan
Junior Member
Turkey
112 Posts |
Posted - 23 August 2002 : 07:23:13
|
Oppps
Sorry my question,old forum has a default admin password,maybe CodeName set to old Admin password ? |
|
|
|
Topic |
|
Topic Locked
