phpbb.com hacked

Help and Discussion

Moderator: The Mod Squad

phpbb.com hacked

Postby Oylpann » Fri Feb 11, 2005 12:38 pm

http://www.phpbb.com/

www.phpbb.com
Creating Communities

Last updated: 11th February 2005, 13:24 GMT

Hi everyone, me again

Latest information ... two parts to this. First we have a temporary solution now racked up and being checked over. So, all being well the main site will return in the next few hours or at latest tomorrow (Saturday 12th ... the dates are right this time!). That's the good news ...

The bad news is the attack on our "proper" box was clearly more than a mere "defacement". Our server admin has now received the box and started to recover it. The persons who attacked the site deleted all web access logs, all system logs and the root user log. Other critical system folders/files were also deleted, hence the difficulties in trying to remotely access the box. This is at odds with what the "group" who claim responsibility told us, i.e. a single password change had been made nothing else was touched. And while I can believe they may delete logs to cover their tracks, deleting other folders/files seems overkill for mere defacement.

So that's the situation guys ... hopefully we'll be back soon. Meanwhile users in need of support with phpBB 2.0.x can continue to visit our development board, area51.phpbb.com. We're quite pleased thus far with how that board has coped given it's running a pre-beta version of phpBB 3.0, particuarly given the hardware it's running on (given it's not our box we will no disclose such information). We believe it bodes well for the future of phpBB (fingers crossed!).

psoTFX - phpBB Group
"You cant hug your family with Nuclear Arms"

Asus F2A85-V Pro
AMD A10-5800K APU @ 4.5GHz
8GB G. Skill 1866
550w PSU
Hyper 212 Evo
Oylpann
Black Belt 3rd Degree
Black Belt 3rd Degree
 
Posts: 3844
Joined: Wed Nov 10, 2004 7:42 pm
Location: Oklahoma City, OK

Postby snap355 » Fri Feb 11, 2005 12:45 pm

The persons who attacked the site deleted all web access logs, all system logs and the root user log. Other critical system folders/files were also deleted, hence the difficulties in trying to remotely access the box


Dangerously stuff there
[url=http://www.motherboards.org/folding/index.html] Lend a hand and help with the folding project. Come join our 33258 team!

Image
[/url]
snap355
Black Belt 5th Degree
Black Belt 5th Degree
 
Posts: 9258
Joined: Mon Sep 13, 2004 3:22 pm
Location: 33258

Postby Toby B. » Sat Feb 12, 2005 10:53 pm

For those who have not been following the story from the beginning. Access was gained from an open security hole in the stats software. As of now there is still no indication that the access was gained via any holes in the phpBB software itself...
Toby B.
Lead Mobo-fu Master
Lead Mobo-fu Master
 
Posts: 14277
Joined: Sun Dec 16, 2001 1:01 am
Location: Maine


Return to Virus/Spyware/Security

Who is online

Users browsing this forum: No registered users and 2 guests