What???

Discussion in 'Forum Operations Center' started by rhuntington3, Jul 15, 2015.

  1. smbaker

    smbaker Well-Known Member

    25,765
    2,388
    May 24, 2003

    Advertisements

    There's goes my shot at becoming the new spotlight member... :(

    Can we get clarification on whether there was a hack? Should be all be changing our passwords?
     
  2. timckelley

    timckelley run of the mill TCFer

    31,665
    1,237
    Oct 15, 2002
    Brushy...
    Too late in my case...

    The bullet has already left the chamber, and I'm speaking here from the floor of my bedroom. :D :p Good job, hacker.
     
  3. Langree

    Langree The Gimp

    17,431
    74
    Apr 29, 2004
    Freezinmyass...
    Can I have your (non blood soaked) stuff?


    :p
     
  4. David Bott

    David Bott Administrator Staff Member Administrator

    2,853
    246
    Jan 1, 1999
    Hi All...

    Short Answer...Yes, we got hacked. How? No idea as they got into my account and were able to change my email address and that is the weird part. Weird because my account, being the master admin account, is locked out in the config file from being able to be edited. So, this happened some other way.

    So...Well...This was my fear running such old software and why I really want to move to some new software for the site. After all, you know this code is quite old and no longer patched.

    All in all, not sure if it will happen again as I am not sure how it happened.

    Sorry all.

    (I have been away as we have been building a new dedicated site for our coach in a RV park. Been quite busy.)
     
  5. smbaker

    smbaker Well-Known Member

    25,765
    2,388
    May 24, 2003

    Advertisements

    I hope you're able to do some forensic analysis of the server (I'm assuming you're running on some kind of virtual server platform) to check and see if the hacker gained access without having to go through the forum software. Also look for any exploits where they may have attacked the database directly and altered your user record. Weak mysql or pgsql passwords, insufficient firewalling of the db, etc.

    Anyhow, glad everything is alright (or at least as alright as it can be given we don't know precisely how the hacker did what he did).
     
  6. LoREvanescence

    LoREvanescence Always Autocorrected

    11,419
    2,887
    Jun 19, 2007
    Salem, MA
    Did we get hacked again this morning?

    From 11:46am until 12:08pm all I was able to get is a 502 Bad Gateway error when trying to access the forums.
     
  7. Mike Lang

    Mike Lang Administrator Staff Member Administrator TCF Club

    8,705
    1,632
    Nov 17, 1999
    No, that wasn't a hack.
     
  8. RegBarc

    RegBarc Well-Known Member

    16,427
    111
    Feb 18, 2003
    Should we be changing our forum passwords? Was there any compromise of that information, or of user information?
     
  9. Mike Lang

    Mike Lang Administrator Staff Member Administrator TCF Club

    8,705
    1,632
    Nov 17, 1999
    While I haven't heard any evidence of getting into any accounts but his, changing passwords is never a bad idea.
     
  10. David Bott

    David Bott Administrator Staff Member Administrator

    2,853
    246
    Jan 1, 1999
    Nope...That was all me. Opps! :)
     
  11. eddyj

    eddyj SeƱor Member TCF Club

    75,597
    15,973
    Jun 20, 2002
    South Florida
    You hacked your own board? :eek: :eek:


    :p
     
  12. Turtleboy

    Turtleboy Well-Known Member TCF Club

    56,906
    3,341
    Mar 24, 2001
    Ft. Lauderdale
    In retrospect, it's kind of a harmless prank. Someone with that much access could have really farked things up pretty badly. But instead they just banned smeek and wrote a scary message.

    (Not that hacking is ever good).
     
  13. Mike Lang

    Mike Lang Administrator Staff Member Administrator TCF Club

    8,705
    1,632
    Nov 17, 1999
    They did more than that & jsmeeker wasn't the only ban, but it could have been worse.
     

Share This Page

spam firewall

Advertisements