You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Author: tenntripsPostPosted: Fri Oct 22, 2004 7:53 pm    Post subject:
Is anybody out there?? I'm now receiving MORE of these, and would really like to know what is going on ! ! !
Author: GetyousomeofthisLocation: Tulsa OklahomaPostPosted: Fri Oct 22, 2004 8:08 pm    Post subject: Re: Hack attempt ??
There are some vulnerabilities using Private messages . Are you updated with the latest patches?? You should make sure your BBTONuke is upto date version 2.1.0 is the lates build for the forums
Author: tenntripsPostPosted: Fri Oct 22, 2004 8:20 pm    Post subject: Re: _UPCHANGE ??? what is this (how worried do I need to be?
I just looked and I'm on 2.0.5 I won't get a chance to upgrade until next week !!

What will they be able to do with this??

I just disabled Private Messages (don't use them anyway).
Hopefully that will help untill I can get the upgrade done..
Author: GetyousomeofthisLocation: Tulsa OklahomaPostPosted: Fri Oct 22, 2004 8:33 pm    Post subject: Re: _UPCHANGE ??? what is this (how worried do I need to be?
have you been able to get their IP?? whos Ip was that posted above??

i would suggest tracking their IP and ban it for now untill you get time to upgrade

Hopefully disableing the Module will work .. maybe even change the Private Messages modules folder name so they cant acess it directly incase that is what is going on also

Peace and good luck ..
Author: tenntripsPostPosted: Mon Oct 25, 2004 8:23 pm    Post subject: Re: _UPCHANGE ??? what is this (how worried do I need to be?
Well, deactivating the Private Messages didn't help Sad

Was STILL getting new messages (couldn't see them, but still got them)

Since I don't use that anyway, I just completely removed the module for now.

When deleting I DID FIND that there was a HIDDEN .htaccess file in the Language directory of Private Messages (which I didn't get to look at).

I figured it was better to delete is as quickly as possible just in case one of the little buggers was on line......
Author: GetyousomeofthisLocation: Tulsa OklahomaPostPosted: Thu Oct 28, 2004 2:49 am    Post subject: Re: _UPCHANGE ??? what is this (how worried do I need to be?
.htaccess files are good security files .. you can set rules in those files to deny users from accessing the files and folders directly .. Deleting those may not be a wise thing to do

peace
Nuke Cops -> Nuke Security

All times are GMT - 8 Hours

Page 1 of 1

Powered by phpBB © 2001,2002 phpBB Group
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 286 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Nuke Cops :: View topic - _UPCHANGE ??? what is this (how worried do I need to be??) _UPCHANGE ??? what is this (how worried do I need to be??)

 Nuke Cops -> Nuke Security
Author: tenntrips PostPosted: Fri Oct 15, 2004 8:08 pm    Post subject: _UPCHANGE ??? what is this (how worried do I need to be??)
I've received a private message from myself (interesting enough) with the following

Subject _UPCHANGE

Message body
lacy - 24.233.154.97 _HCHANGEP

Is this a hack attempt??

I found the commands on the following page
http://aips2.nrao.edu/docs/reference/System/node91.html#SECTION001285000000000000000
and they appear to have the ability to globally change my files ! ! !

Is this something that is protected against ? ?

Being relatively new, I don't know what this can mean or what it can do.....

Last edited by tenntrips on Fri Oct 22, 2004 8:17 pm; edited 1 time in total
Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.172 Seconds - 465 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
added by Evaders - DO NOT REMOVE
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::