hmmm... am I the only that is having trouble with the currently online section??
I always see 0 now-a-days. Normal I would have at least seen myself on there...
currently online section broke?
- Paul_Tatum
- Posts: 51
- Joined: Thu Nov 23, 2006 8:00 pm
- Location: United States/North Carolina
- Contact:
- Tyler
- Site Supporter
- Posts: 2376
- Joined: Thu Nov 23, 2006 8:00 pm
- Location: Farmersville, TX
- Contact:
Thanks for the heads up guys!
I'm not sure what is going on, but I know that there is a very mean virus out right now that targets sites like this one. Someone tried to hack the site yesterday, in fact, but my security caught them. I don't know if this is coincidental, but I have eliminated the two scripts that are acting strange.
I'm heading out of town for a few days...hopefully the site will still be up when I get back! 8O
Tyler
I'm not sure what is going on, but I know that there is a very mean virus out right now that targets sites like this one. Someone tried to hack the site yesterday, in fact, but my security caught them. I don't know if this is coincidental, but I have eliminated the two scripts that are acting strange.
I'm heading out of town for a few days...hopefully the site will still be up when I get back! 8O
Tyler
Tyler Lane Pipes
http://www.tylerlanepipes.com
http://www.tylerlanepipes.com
- KurtHuhn
- Site Admin
- Posts: 5326
- Joined: Thu Nov 23, 2006 8:00 pm
- Location: United States/Rhode Island
Yup, it's a worm that targets PHPbb specifically. If PHPbb is used on a website anyhere, the entire site is vulnerable to attack from this worm. What it will do is use the vulnerability of PHPbb to gain access to the rest of the system and deface the main page as well as propogate itself to other systems running PHPbb.
I don't know if the PHPbb inclued with PHPNuke is vulnerable or not, but more information can be found at SANS, as as well how you can reduce your vulnerability.
I don't know if the PHPbb inclued with PHPNuke is vulnerable or not, but more information can be found at SANS, as as well how you can reduce your vulnerability.
How is the worm propagating itself? Normaly the fixes for such things are not so slow in coming... What's the vulnerability? Normaly you find the door and you close the door. Unless it's like a memory buffer which has to be changed in a few thousand places they are usually somewhat easy to deal with. Is that the what we owe the error to that I get every once in a while when trying to access the site? I can't remember the exact error but when I get it usually cps is down too.
- KurtHuhn
- Site Admin
- Posts: 5326
- Joined: Thu Nov 23, 2006 8:00 pm
- Location: United States/Rhode Island
Check out SANS for the lowdown. I won't rehash it here since those good folks have already spent considerable time writing up the details.
http://isc.sans.org/diary.php?date=2004-12-21
http://isc.sans.org/diary.php?date=2004-12-21