| Author |
Message |
Sym0n 
|
|
Post subject:
 Posted: Dec 29, 2010 - 11:41 AM
|
|
First post: Dec 20, 2009
Total posts: 545
Location: Nottingham
Status: Offline
|
|
|
BillyBenbo wrote:
In less than 5 minutes ive managed to ascertain who is hosting the domain where the server is located in the uk, What ports are open what OS the box is running and what apache version is running. I could probably find the data center room given another 15 and rack location.
LOL it took you five minutes to get that? Getting the datacenter and rack ID in under 15 minutes would be impressive.
A large scale community site I used to admin would often suffer from DB connection issues whilst using phpBB on some crappy shared server due to the amount of concurrent users online, once it locked it was down until rebooted. Moving server helped but didn't cure the problem, that was done by upgrading to my beloved vBulletin.
I'm dubious about this being a hack, possibly like above a DDoS but personally I just think the db had a paddy and fell over as per usual. But only Dunx/server provider will be able to offer up any real information. phpBB hashs and salts passwords by default, so even if it were a hack they'd have to get the hash too which whilst not impossible it's more than most script kiddies can manage; although running such massively out of date software there's no doubt exploits available and like others I'm surprised it's not hit more often.
Hopefully this won't be a problem with SCUK2...  |
|
|
| |
|
|
|
 |
|
nickmotture
|
|
|
Post subject:
Posted: Dec 29, 2010 - 12:18 PM
|
|
First post: Jan 09, 2006
Total posts: 10414
Location: Washington DC USA
Status: Offline
|
|
|
|
|
|
fatsuperman
|
|
|
Post subject:
Posted: Dec 29, 2010 - 12:33 PM
|
|
First post: Nov 19, 2009
Total posts: 124
Status: Offline
|
|
|
Insano_Deyno wrote:
I'm afraid they'll steal my good looks, quick wit, and great ideas.
I reckon you're safe from that Deyno  |
_________________
Riders Front of Judea
|
| |
|
|
|
|
|
Sym0n
|
|
|
Post subject:
Posted: Dec 29, 2010 - 02:40 PM
|
|
First post: Dec 20, 2009
Total posts: 545
Location: Nottingham
Status: Offline
|
|
|
nickmotture wrote:
English?
The site broke and needed fixing. |
|
|
| |
|
|
|
|
|
nickmotture
|
|
|
Post subject:
Posted: Dec 29, 2010 - 02:43 PM
|
|
First post: Jan 09, 2006
Total posts: 10414
Location: Washington DC USA
Status: Offline
|
|
|
|
|
|
|
Sym0n
|
|
|
Post subject:
Posted: Dec 29, 2010 - 02:49 PM
|
|
First post: Dec 20, 2009
Total posts: 545
Location: Nottingham
Status: Offline
|
|
| Die Website brach und benötigt Befestigung. |
|
|
| |
|
|
|
|
|
nickmotture
|
|
|
Post subject:
Posted: Dec 29, 2010 - 03:04 PM
|
|
First post: Jan 09, 2006
Total posts: 10414
Location: Washington DC USA
Status: Offline
|
|
|
|
|
|
|
dunx
|
|
|
Post subject:
Posted: Dec 30, 2010 - 11:07 PM
|
|
First post: Oct 07, 2004
Total posts: 9314
Location: Herts, UK
Status: Offline
|
|
The database password had been set to null and I initially thought the root password had been changed too, but that wasn't the case. The db password change was why the site stopped working. The hosts are looking into what actually happened, but as any large site is - we do have the occasional brute force DOS attack, which the site stands up very well too.
Passwords are not stored in plain text. We don't process credit cards ourselves. The only things people could gain access to is names and addresses, which are available on the electoral register anyway and email addresses, so they'd only be of use for people actively wanting to spam snowboarders.
I'll wait to hear back about what the cause was though before my knee starts to jerk.
I work for the MoD, so I'm happy that the security we have in place for the site and server is suitable for the content. The site software is old, but as far as I know secure, but this is one reason we're moving to a different CMS. The server itself is dedicated and we have a separate db server too. Both those are regularly patched to maintain security.
Good advice generally above about passwords though. Never use the same one for everything!
Daughter knows a spot of German, so I'll get her to translate tomorrow. |
_________________
SCUK Editor • Me on Facebook • Neverland
|
| |
|
|
|
|
|
craignixon
|
|
|
Post subject:
Posted: Dec 31, 2010 - 10:53 AM
|
|
First post: Oct 07, 2007
Total posts: 3307
Location: Nottingham
Status: Offline
|
|
Thanks for letting us know Dunx ^_^
I'm happy with that  |
_________________
Bok! Bok!
|
| |
|
|
|
|
|
|
Snowboard Club 
FAQ
Search
Register
Log in to check your private messages
Log in
Maximize
RSS Feed
