CyberSpy5????
Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=21062
Printed Date: 09 April 2026 at 5:48am
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: CyberSpy5????
Posted By: javi712
Subject: CyberSpy5????
Date Posted: 17 August 2006 at 6:50am
Hello,
So this is the second time in a week that I get hacked by the same CyberSpy5 people. After google'ing the name and looking around.. it appears that they are able to hack into the sites using Web Wiz. Borg... is there any way to prevent this? I currently only allow .jpg and .gif files to be uploaded onto my forum. Do I need to disable that also so the hacking stops?
Thanks in advance!
|
Replies:
Posted By: WebWiz-Bruce
Date Posted: 17 August 2006 at 8:53am
Web Wiz Forums is one of the most secure forum systems you can get, with security sites monitored all the time for any vulnerabilities not already bought to my attention and any that are found patched and a new release within 12 hours.
Make sure that you are running the latest version (8.03 at the present time) and if you are using the Access version that you have secured your Access database and all admin/moderator passwords are strong alpha/numeric.
Uploading should be fine, but for extra security I would recommend that you remove write and modify permissions from all other folders on your site except the upload folder and the Access database folder. Also ensure that you only allow 'safe' file types to be uploaded.
-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting
|
Posted By: javi712
Date Posted: 17 August 2006 at 1:00pm
|
Thanks Borg... that's what surprises me since I know that web wiz is the safest out there. I am currently using 8.03 and MS SQL. I'll look into removing read/write rmissions on oher folders.
|
Posted By: WebWiz-Bruce
Date Posted: 18 August 2006 at 9:27am
If you are using 8.03 SQL Server version then they won't have got in through Web Wiz Forums they would have got into the server some other way, unless you have allowed the uploading of ASP files.
You would need to look at your server log files to workout how they got the cyberlink5 file on the server and thats if it wasn't placed in their months ago.
However, if you want to make sure your site and server are safe you shouldn't allow file uploads for users, and if you do you should make sure all other folders and files on your web site have read only permissions.
-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting
|
|