Lets say I was hacked

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • singsign
    New Member
    • Mar 2010
    • 13
    • 4.0.0

    [Forum] Lets say I was hacked

    Lets say I was hacked, my forum that is.. what would I have to change to keep them out? Would changing admins password do much? So far I've noticed because they are changing user titles of users and finally they changed my user title. I upgraded to 4.0.4 and changed my password. What should I do?
  • kontagio.us
    Senior Member
    • Aug 2009
    • 241
    • 4.0.0

    #2
    change your ftp password
    change your mysql password
    change your admin password
    look for admins in the admin usergroup
    find the ip address of his and ban
    vBulletin Rules!

    Comment

    • singsign
      New Member
      • Mar 2010
      • 13
      • 4.0.0

      #3
      I've looked through the access logs and I'm not sure what to look for. A constant amount of ips... but I see that with a bunch of people.

      Comment

      • pod
        Senior Member
        • Jun 2007
        • 311

        #4
        You could also try to change the password to the control panel of your hosting, then password protect the admincp and modcp directories (with passwords that are different to your vb account).
        "War doesn't determine who is right. Only who is left" Bertran Russel.

        Comment

        • Boofo
          Senior Member
          • Apr 2002
          • 2033
          • 4.1.x

          #5
          And also be a little choosier who you allow in your admin and mod cp areas. Disgruntled es-staff can cause a world of hurt if they choose to.
          vBulletin - Sometimes, I'm just like, Wow, and then I'm like, Whoa, and then I'm like, Damn.

          vBulletin.org's ol' Moderator

          I have a lifetime terrorist hunting permit - #091101

          chmod a+x /bin/laden -- Allows anyone the permission to execute /bin/laden

          Comment

          • singsign
            New Member
            • Mar 2010
            • 13
            • 4.0.0

            #6
            Currently no one has access but me and the password wasn't so easy to bruteforce. I have changed my plesk pw. I'm just wondering if they are still in the system somehow, and still have access to the db..(no clue on how to know)

            Comment

            Related Topics

            Collapse

            Working...