https://forums.webwiz.net/ Copyright (c) 2006-2013 Web Wiz Forums - All Rights Reserved. Thu, 09 Apr 2026 05:50:27 +0000 Fri, 18 Aug 2006 09:27:51 +0000 http://blogs.law.harvard.edu/tech/rss Web Wiz Forums 12.08 360 https://forums.webwiz.net/RSS_post_feed.asp?TID=21062 https://forums.webwiz.net/forum_images/web_wiz_forums.png https://forums.webwiz.net/ https://forums.webwiz.net/cyberspy5_topic21062_post112800.html#112800 Author: WebWiz-Bruce
Subject: 21062
Posted: 18 August 2006 at 9:27am

If you are using 8.03 SQL Server version then they won't have got in through Web Wiz Forums they would have got into the server some other way, unless you have allowed the uploading of ASP files.

You would need to look at your server log files to workout how they got the cyberlink5 file on the server and thats if it wasn't placed in their months ago.

However, if you want to make sure your site and server are safe you shouldn't allow file uploads for users, and if you do you should make sure all other folders and files on your web site have read only permissions.
]]> Fri, 18 Aug 2006 09:27:51 +0000 https://forums.webwiz.net/cyberspy5_topic21062_post112800.html#112800 https://forums.webwiz.net/cyberspy5_topic21062_post112773.html#112773 Author: javi712
Subject: 21062
Posted: 17 August 2006 at 1:00pm

Thanks Borg... that's what surprises me since I know that web wiz is the safest out there. I am currently using 8.03 and MS SQL. I'll look into removing read/write rmissions on oher folders.]]> Thu, 17 Aug 2006 13:00:28 +0000 https://forums.webwiz.net/cyberspy5_topic21062_post112773.html#112773 https://forums.webwiz.net/cyberspy5_topic21062_post112752.html#112752 Author: WebWiz-Bruce
Subject: 21062
Posted: 17 August 2006 at 8:53am

Web Wiz Forums is one of the most secure forum systems you can get, with security sites monitored all the time for any vulnerabilities not already bought to my attention and any that are found patched and a new release within 12 hours.

Make sure that you are running the latest version (8.03 at the present time) and if you are using the Access version that you have secured your Access database and all admin/moderator passwords are strong alpha/numeric.

Uploading should be fine, but for extra security I would recommend that you remove write and modify permissions from all other folders on your site except the upload folder and the Access database folder. Also ensure that you only allow 'safe' file types to be uploaded.


Edited by -boRg- - 17 August 2006 at 8:55am]]> Thu, 17 Aug 2006 08:53:42 +0000 https://forums.webwiz.net/cyberspy5_topic21062_post112752.html#112752 https://forums.webwiz.net/cyberspy5_topic21062_post112750.html#112750 Author: javi712
Subject: 21062
Posted: 17 August 2006 at 6:50am

Hello,

So this is the second time in a week that I get hacked by the same CyberSpy5 people. After google'ing the name and looking around.. it appears that they are able to hack into the sites using Web Wiz. Borg... is there any way to prevent this? I currently only allow .jpg and .gif files to be uploaded onto my forum. Do I need to disable that also so the hacking stops?

Thanks in advance!]]> Thu, 17 Aug 2006 06:50:20 +0000 https://forums.webwiz.net/cyberspy5_topic21062_post112750.html#112750