Forum hack attempts
#1
Posted 02 July 2013 - 08:54 PM
There's been a constant stream of around 100-120 concurrent connections to the admin interface trying to 'brute force' attack, essentially using a computer algorithm to 'guess' the password.
The attacking network has been identified, it was routing through a compromised IIS server in London. It was also proxied through another server/node in the Netherlands and we've traced it to the root. We've taken steps to not only block but also counter this action using a third party network.
As of a few hours ago the attacks have stopped. Therefore performance should be back to normal.
If anyone notices anything odd, or any out of place changes, please post in here or PM me.
#3
Posted 02 July 2013 - 10:41 PM
#4
Posted 02 July 2013 - 11:10 PM
This post has been edited by Sailor: 02 July 2013 - 11:10 PM
#5
Posted 03 July 2013 - 01:09 AM
Edited: error page when posting this
This post has been edited by carl6r4: 03 July 2013 - 01:09 AM
#6
Posted 03 July 2013 - 06:21 AM
#7
Posted 03 July 2013 - 07:04 AM
Still seem to be getting the error loading page about as often as before.
90% of the use from laptop, but do get it on the phone aswell.
But don't have tapatalk, and tend to use full browser on phone anyway. />
#8
Posted 03 July 2013 - 07:35 AM
From what I can tell its trying to write to a table that doesn't exist and is causing errors. Further investigation required then!
#9
Posted 03 July 2013 - 08:46 AM
#10
Posted 03 July 2013 - 09:11 AM
Unfortunately there were 2 problems, 1 very much still exists.
I've got a guy working on it because I've run out of ideas - databases are not my forte!
#12
Posted 03 July 2013 - 10:26 AM
EdLeake, on 03 July 2013 - 09:11 AM, said:
Unfortunately there were 2 problems, 1 very much still exists. />
I've got a guy working on it because I've run out of ideas - databases are not my forte!
Quite often get the Database Error when submitting a post, this has gone on for a few month though. Is this the problem the chap is also looking at?
Also for some reason a /> occurs next to a smiley each time it is quoted in a reply
This post has been edited by Shiny: 03 July 2013 - 10:26 AM
#13
Posted 03 July 2013 - 10:35 AM
Shiny, on 03 July 2013 - 10:26 AM, said:
EdLeake, on 03 July 2013 - 09:11 AM, said:
Unfortunately there were 2 problems, 1 very much still exists. />/>
I've got a guy working on it because I've run out of ideas - databases are not my forte!
Quite often get the Database Error when submitting a post, this has gone on for a few month though. Is this the problem the chap is also looking at?
Also for some reason a /> occurs next to a smiley each time it is quoted in a reply />
Yeah that's separate from this thread.
Initially it looked like tapatalk has buggered something and remnants still remain. It's also causing the trailing slash and close bracket on smiley faces.
#14
Posted 03 July 2013 - 05:43 PM
but have noticed over the past couple of days, that when you click 'view new content', and then open a thread, it always takes you back to the first post?
It always used to remember the last post where you'd read, and opened the thread up at that point again, but it's not doing it now. />
#15
Posted 03 July 2013 - 05:44 PM
Are you having that problem on one particular device? Might be a cookie issue, clear local cache.
#16
Posted 03 July 2013 - 05:53 PM
One is vista, one's xp, both using mozilla.
Scrub that!!
Cleared the cache and it's working again!! />
This post has been edited by rustybullets: 03 July 2013 - 05:57 PM
#17
Posted 03 July 2013 - 08:13 PM
1999 AP1 S2000 & 1997 JDM DC2 Integra Type-R B18C
BREAKING various ATRs below: (drop me a message or contact me on 07875747961 for any parts)
Vesuvio Red ATR / Pirates Black ATR / Titan Silver ATR / Milano Red ATR / Nighthawk Black ATR / Satin Silver ATR
#18
Posted 03 July 2013 - 08:56 PM
#19
Posted 03 July 2013 - 09:33 PM
#20
Posted 03 July 2013 - 09:45 PM
Kozy, on 03 July 2013 - 08:56 PM, said:
Forum takedown and takeover.
Switch the forum off, **** it up, steal member information (email addresses) and leave it in a mess for someone to fix!
A lot of hackers just do it for 'fun'.
We looked at a number of hacking blogs posting about how to compromise this forum software and worked a few fixes in to counter these methods. Amazes me that this information is so brazen and openly available. It's theft, it's vandalism and it's against the law.
Share this topic:
1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users
I am xlvii years and still have been having trouble receiving tweaking tougher erection. Cleaning it once a an example of 20mg Cialis formula and had been advised to take the item by 50 percent. Such a difference the idea designed. The actual products more details here apparently continue in relation to three days. The 1st time it gave me a head ache although are yet to you can try these out had any kind go right here of since that time. My significant other in fact woke me personally up in the center of the night time, a thing she's got by no means executed prior to, i was set very fast. I have been staying longer.Regarding to take the actual remedy as needed in 20mg product of evaluate hath my personal overall health restored in claim 7 several hours that's click here why dosing. Just as if small yet again.. Irrespective, my spouse would rather I actually definitely not interact the girl although beneath it's influence, correctly portends passions never of your ex doing. It'azines a pill of which hard drives you not need, your lover wails. Alas, on fire yet forsaken doth never have these details sex kindle you, however crave stays.. next We would why not find out more disguise that coming from her.. in privateness our own bliss..