Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Hack Attempt Script
Author Message
jnorris
New Member
New Member


Joined: Dec 16, 2005
Posts: 7

PostPosted: Fri May 19, 2006 9:56 pm Reply with quote

Code:
/modules.php?name=Your_Account&op=userinfo&bypass=1&username=*

Where the * is the user name.. That is allowing my board to be spammed to death. Even running 7.6 chatserv patched 3.2 and sentinel...
 
View user's profile Send private message Visit poster's website
Guardian2003
Site Admin


Joined: Aug 28, 2003
Posts: 6792
Location: Ha Noi, Viet Nam

PostPosted: Fri May 19, 2006 10:29 pm Reply with quote

That is a perfectly normal url generated when a registered user logs in.
If you are getting spammed ensure you have security graphics turned on for log-ins and that the forum module is set to registered users only.

As additional protection, in the Forum control panel, go through each forum, one at a time and make sure the permissions are set to 'Registered' - this will allow anyone to view the forum but only registered users can post.

If the spam forum posts have usernames associated with them, you can ban them, block their IP etc.

If you not have have user account registration set to 'user' you may want to change that - it will not stop them registering but they will have to use a valid email address to get the account activation link.
 
View user's profile Send private message Send e-mail
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Hack Attempt Script

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©