Web Wiz - Green Windows Web Hosting
Web Wiz Homepage Search Web Wiz

  New Posts New Posts RSS Feed - Hacker destroyd my forum
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

Hacker destroyd my forum
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
kees View Drop Down
Newbie
Newbie


Joined: 23 December 2002
Status: Offline
Points: 7 		Post Options Post Options   Thanks (0) Thanks(0)   Quote kees Quote  Post ReplyReply Direct Link To This Post Topic: Hacker destroyd my forum
    Posted: 02 March 2003 at 3:14pm
Do anyone know how I can prevent my forum against hackers? The hacker changed my admin password and had replaced all the topics. One of the users even claims that she was receiving an virus mail after she sent an email to me? Is there anyone who can help me with this?
Back to Top
Ignorance View Drop Down
Newbie
Newbie


Joined: 23 February 2003
Status: Offline
Points: 28 		Post Options Post Options   Thanks (0) Thanks(0)   Quote Ignorance Quote  Post ReplyReply Direct Link To This Post Posted: 02 March 2003 at 3:21pm
One thing that they say alot of people don't do is rename the database file to something other than wwForum.mdb. Just make sure to change line 165 in "common.asp" and line 95 in "admin/common.asp" to reflect the new name you've given it. Hope this helps.
Back to Top
faubo View Drop Down
Senior Member
Senior Member
Avatar

Joined: 30 May 2002
Location: Brazil
Status: Offline
Points: 560 		Post Options Post Options   Thanks (0) Thanks(0)   Quote faubo Quote  Post ReplyReply Direct Link To This Post Posted: 02 March 2003 at 4:42pm

again...

Read the documentation people.

Suggestion for Borg:

Borg, maybe you could not complete the path in the common.asp files... leave with another DB name, make people open the file to write themselves and there put a comment line saying to change the DB name...

Or... put a thread and a post in the DBs already, so when people upload and see the forums for the first time there will be a thread "Security - ATENTION - MUST READ" and inside you put what you have in the documentation...

actually you could put a thread for each documentation topic... at least people will see them, and later they can just delete it.
I don't know how to make you click here
Back to Top
xeerex View Drop Down
Senior Member
Senior Member


Joined: 19 November 2002
Location: United States
Status: Offline
Points: 601 		Post Options Post Options   Thanks (0) Thanks(0)   Quote xeerex Quote  Post ReplyReply Direct Link To This Post Posted: 02 March 2003 at 5:59pm

=======================================
"For higher security it is highly recommeneded that you at least rename the forum database and/or if possible move the location of the database to a folder above the root directory of your web site, good web hosts will have a directory set up for this called private."
=======================================

Were any of these basic steps taken?
Back to Top
djscout View Drop Down
Senior Member
Senior Member
Avatar

Joined: 16 February 2002
Location: United States
Status: Offline
Points: 242 		Post Options Post Options   Thanks (0) Thanks(0)   Quote djscout Quote  Post ReplyReply Direct Link To This Post Posted: 02 March 2003 at 10:40pm
or simply did you change the default admin passwords?
++ jim..
Back to Top
kees View Drop Down
Newbie
Newbie


Joined: 23 December 2002
Status: Offline
Points: 7 		Post Options Post Options   Thanks (0) Thanks(0)   Quote kees Quote  Post ReplyReply Direct Link To This Post Posted: 03 March 2003 at 3:32am

Thanks for the suggestions it is a great help for me. I will read the documentation now (little bit late  ) and rename and move the database.

The name of the admin and his password was already changed by me.

 
Back to Top
djscout View Drop Down
Senior Member
Senior Member
Avatar

Joined: 16 February 2002
Location: United States
Status: Offline
Points: 242 		Post Options Post Options   Thanks (0) Thanks(0)   Quote djscout Quote  Post ReplyReply Direct Link To This Post Posted: 03 March 2003 at 6:30am
remember it's there for a reason and PLEASE read the security, the man who wrote the security is the one who built the forums.  He knows best
++ jim..
Back to Top
Mikael View Drop Down
Groupie
Groupie
Avatar

Joined: 16 November 2002
Status: Offline
Points: 151 		Post Options Post Options   Thanks (0) Thanks(0)   Quote Mikael Quote  Post ReplyReply Direct Link To This Post Posted: 03 March 2003 at 10:14am
Originally posted by faubo faubo wrote:

again...

Read the documentation people.

Suggestion for Borg:

Borg, maybe you could not complete the path in the common.asp files... leave with another DB name, make people open the file to write themselves and there put a comment line saying to change the DB name...

Or... put a thread and a post in the DBs already, so when people upload and see the forums for the first time there will be a thread "Security - ATENTION - MUST READ" and inside you put what you have in the documentation...

actually you could put a thread for each documentation topic... at least people will see them, and later they can just delete it.

This is a very good idea, and it will save a lot of time for you borg!
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.08
Copyright ©2001-2026 Web Wiz Ltd.

Become a Fan on Facebook Follow us on X Connect with us on LinkedIn Web Wiz Blogs
About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.

Copyright ©2001-2026 Web Wiz Ltd. All rights reserved.