| Author |
Message |
tenntrips
Nuke Cadet
Joined: Oct 15, 2004
Posts: 4
|
 Posted:
Fri Oct 15, 2004 8:08 pm |
  |
I've received a private message from myself (interesting enough) with the following
Subject _UPCHANGE
Message body
lacy - 24.233.154.97 _HCHANGEP
Is this a hack attempt??
I found the commands on the following page
http://aips2.nrao.edu/docs/reference/System/node91.html#SECTION001285000000000000000
and they appear to have the ability to globally change my files ! ! !
Is this something that is protected against ? ?
Being relatively new, I don't know what this can mean or what it can do..... |
Last edited by tenntrips on Fri Oct 22, 2004 8:17 pm; edited 1 time in total |
|
   |
|
tenntrips
Nuke Cadet
Joined: Oct 15, 2004
Posts: 4
|
| Posted:
Fri Oct 22, 2004 7:53 pm |
|
Is anybody out there?? I'm now receiving MORE of these, and would really like to know what is going on ! ! ! |
|
|
|
|
Getyousomeofthis
Sergeant
Joined: Jan 18, 2004
Posts: 128
Location: Tulsa Oklahoma
|
| Posted:
Fri Oct 22, 2004 8:08 pm |
|
There are some vulnerabilities using Private messages . Are you updated with the latest patches?? You should make sure your BBTONuke is upto date version 2.1.0 is the lates build for the forums |
_________________
Click Here To Join Our CS:Source Game Server!
[img]http://www.dtsbase.com/files/logo.gif[/img] |
|
 |
|
tenntrips
Nuke Cadet
Joined: Oct 15, 2004
Posts: 4
|
| Posted:
Fri Oct 22, 2004 8:20 pm |
|
I just looked and I'm on 2.0.5 I won't get a chance to upgrade until next week !!
What will they be able to do with this??
I just disabled Private Messages (don't use them anyway).
Hopefully that will help untill I can get the upgrade done.. |
|
|
|
|
Getyousomeofthis
Sergeant
Joined: Jan 18, 2004
Posts: 128
Location: Tulsa Oklahoma
|
| Posted:
Fri Oct 22, 2004 8:33 pm |
|
have you been able to get their IP?? whos Ip was that posted above??
i would suggest tracking their IP and ban it for now untill you get time to upgrade
Hopefully disableing the Module will work .. maybe even change the Private Messages modules folder name so they cant acess it directly incase that is what is going on also
Peace and good luck .. |
_________________
Click Here To Join Our CS:Source Game Server!
[img]http://www.dtsbase.com/files/logo.gif[/img] |
|
|
|
tenntrips
Nuke Cadet
Joined: Oct 15, 2004
Posts: 4
|
| Posted:
Mon Oct 25, 2004 8:23 pm |
|
Well, deactivating the Private Messages didn't help 
Was STILL getting new messages (couldn't see them, but still got them)
Since I don't use that anyway, I just completely removed the module for now.
When deleting I DID FIND that there was a HIDDEN .htaccess file in the Language directory of Private Messages (which I didn't get to look at).
I figured it was better to delete is as quickly as possible just in case one of the little buggers was on line...... |
|
|
|
|
Getyousomeofthis
Sergeant
Joined: Jan 18, 2004
Posts: 128
Location: Tulsa Oklahoma
|
| Posted:
Thu Oct 28, 2004 2:49 am |
|
.htaccess files are good security files .. you can set rules in those files to deny users from accessing the files and folders directly .. Deleting those may not be a wise thing to do
peace |
_________________
Click Here To Join Our CS:Source Game Server!
[img]http://www.dtsbase.com/files/logo.gif[/img] |
|
|
|
|
|
