| Author |
Message |
oldfart
New Member
Joined: Jul 15, 2007
Posts: 11
Location: Australia
|
 Posted:
Wed Aug 29, 2007 8:02 pm |
|
Hi guys,
I recently received a veiled threat against our clan's website/forums, from a disgruntled adversary (from another clan).
I have also read in either PHPNuke, NukeCop or these forums that someone with knowledge could "crack" a forum in a matter of minutes.
Is this possible, where are the "holes" and how can I "plug" them?
I am happy to take PM's in regards to this topic, as I am not sure of your attitude in relation to "Security by Obsurity".
Do you have any external tests that will check a sites security/vulnerabilities etc.
My site is not commercial and I back-up daily, I also have the (RavenPHP) code under source control.
Your advice would be appreciated.
cheers
Will Beattie aka OldFart
(Computing since 1972  ) |
| |
|
 
|
|
evaders99
Former Moderator in Good Standing
Joined: Apr 30, 2004
Posts: 3221
|
| Posted:
Wed Aug 29, 2007 8:19 pm |
|
There are no known holes with the latest version of RavenNuke.
That does not cover every addon, theme, etc that you use for phpNuke. Plus there are many applications besides phpNuke. |
_________________
- Only registered users can see links on this board! Get registered or login! -
Need help? Only registered users can see links on this board! Get registered or login! |
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 9457
Location: Arizona
|
| Posted:
Wed Aug 29, 2007 8:26 pm |
|
In addition, the forums have not had a new patch release in quite some time from phpBB, so it seems pretty stable. But, there could always be a new one found... just have not heard about it yet. |
_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! |
|
|
|
|
oldfart
|
| Posted:
Thu Aug 30, 2007 12:08 am |
|
Hi guys,
Here is his last installment
| Sharky wrote: |
lol a i am a Web Professional b the site may look half finished to you but you don't know how complex they are they look good they operate good true i may test alot of stuff on them but they are still up are they not c if i wasn't good why the hell am i administrator of the php-fusions mods sites and why am i part of there development team.
P.S. You should look at your website it's the one that is half finished and frames not aligned properly
|
I have underlined a part I find astounding - is this possible ?
I have banned 9 x IP Addresses from this guy and his last one was this ..
| Quote: |
H:\>ping /a 72.232.138.34
Pinging 34.138.232.72.static.reverse.ltdomains.com [72.232.138.34] with 32 bytes
of data:
|
Any suggestions ?
(I am revving him a little to try and get some kind of handle of where he is based - looks like Queensland in Australia).
cheers
Will Beattie |
| |
|
|
|
|
fkelly
Former Moderator in Good Standing
Joined: Aug 30, 2005
Posts: 3312
Location: near Albany NY
|
| Posted:
Thu Aug 30, 2007 8:34 am |
|
|
|
|
|
evaders99
|
| Posted:
Thu Aug 30, 2007 4:26 pm |
|
He just seems to be baiting you. Just his typing indicates he's not that mature.
Ignore him, block his attacks, keep an eye on your server and logs.
If you're really concerned about modules and other software you are running, let me know. I take payment for my time, I will point to anything that I notice - no guarentess that its 100% secure. |
| |
|
|
|
|
oldfart
|
| Posted:
Mon Sep 03, 2007 6:52 pm |
|
Hi Guys,
Thanks for your help - he seems to have been halted!
cheers
OldFart
P.S. Evaders99 - elucidate on "payment" please! (Ball park figures are ok.) |
| |
|
|
|
|
|
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
