Snitz Forums 2000 - Persistant Spamming under existing members usernam

Snitz Forums 2000

Username:	Password:
Save Password
Forgot your Password?

All Forums

Help Groups for Snitz Forums 2000 Users

Help: General / Classic ASP versions(v3.4.XX)

Persistant Spamming under existing members usernam

New Topic

Topic Locked

Printer Friendly

Author

Topic

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 04 March 2010 : 13:01:58

Since changing my DB to MySQL I have suffered several SPAM attacks at night, but what is strange is the posts appear to be from existing members.

Have there been any other instances of this ?

What should I look for in the server log's for SQL injection (if it came in this way ?)

Thanks

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 04 March 2010 : 13:21:48

Any specific user id?

Believe me, if they were using SQL Injection, you would get a lot more than spam.

Snitz 3.4 Readme | Like the support? Support Snitz too

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 04 March 2010 : 14:35:42

It was a user from 2004, not above normal user

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

AnonJr
Moderator

United States
5768 Posts

Posted - 04 March 2010 : 14:58:10

But what is their member ID? We ask because in an older version of the forum there was an odd bug where under certain specific conditions you could post under member ID #2.

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 04 March 2010 : 15:13:41

It was member 4.

Anyway, going through server logs there are some SQL entries from China -

id=2633%20'%20and%20exists%20(select%20*%20from%20sysobjects)%20and%20''='|18|80040e37|[MySQL][ODBC_3.51_Driver][mysqld-5.0.51b-community-nt]Table_'resortdb.sysobjects'_doesn't_exist

And lots of other stuff

IP of 123.5.92.47 if anyone else would like to ban it

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 04 March 2010 : 18:11:08

That injection thing is for SQL Server, won't work with MySQL.

What Snitz version are you using?

Snitz 3.4 Readme | Like the support? Support Snitz too

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 05 March 2010 : 01:56:13

3.4.04

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

AnonJr
Moderator

United States
5768 Posts

Posted - 05 March 2010 : 07:43:07

I would highly recommend an upgrade.

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 05 March 2010 : 09:31:01

There is a bug fix to avoid spamming like that, which likely is connected to the lost of app variable values. You may try that.

Snitz 3.4 Readme | Like the support? Support Snitz too

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 05 March 2010 : 11:33:14

Anon, I wish I could. I have custom coded so much into the site, it would be a nightmare to upgrade

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

AnonJr
Moderator

United States
5768 Posts

Posted - 05 March 2010 : 11:52:46

I understand completely. In the spirit of following the advice I've given since 3.4.07 has been released, I've been in the process of re-doing a ton of customizations so I can get a handful of sites up to the 3.4.07 goodness. At some point you just have to bite the bullet and move on up.

Edited by - AnonJr on 05 March 2010 11:53:16

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 05 March 2010 : 13:57:30

If I am correct, this may be the solution for your spam issues: http://forum.snitz.com/forum/topic.asp?TOPIC_ID=67497&whichpage=2

Snitz 3.4 Readme | Like the support? Support Snitz too

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 05 March 2010 : 14:52:32

Thanks, I have put the code in and will see how things go.

To AnonJr - I know I should, I just guess I cant face it and really down have the time as my SEO business is really picking up now and I have very little time as it is - One day - Or maybe I will just offer the job out for a princely sum :-(

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

AnonJr
Moderator

United States
5768 Posts

Posted - 05 March 2010 : 16:51:46

I guess I'd rather have the problem of too much business than too much spare time.

What customizations are we talking about?

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 08 March 2010 : 10:15:00

- Complete custom points system integrating restrictions on certain forum priveldges depending on status (think this would be the biggest problem)
- Adsense
- Banner system
- IP Gate
- Other IP Filtering
- Automatic Topic Filtering / Moderation
- Custom Email Notifications
- PM (Including welcome PM / custom notifications / custom storage)
- Search Log's
- Custom written newsletter (auto subscription, email creation & sending)
- Custom coding of page headers for improved SEO
- A whole load of other "tweaks" here and there
- Classifieds
- Link Directory
- 20+ custom pages of content

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

endomorph
Junior Member

United Kingdom
128 Posts

Posted - 08 March 2010 : 10:20:07

... and

- Custom CAPTCHA for registration, posting, PM, email

Need help with your Snitz ? Most Snitz & ASP custom coding undertaken. Email for info | Search Engine Optimisation

Topic

New Topic

Topic Locked

Printer Friendly

Jump To:

Snitz Forums 2000

This page was generated in 0.37 seconds.