My Vbulletin Forum Hacking
May 30, 2007that my vbulletin forum redirect to another site
i upgrade to last version but i still have the same error
i have root access and want to know how i can restrict direct to another server
ADVERTISEMENT
VBulletin Forum On Vps
Oct 25, 2009My site has outgrown my current host and I'm strongly leaning towards a vps. I am relatively inexperienced with web hosting as for the last 18 months I've had very few issues with my current host (Stream101.com). They are currently saying my site is very memory and processor intensive which is why I'm going to have to leave them soon(I can't pay the dedicated server prices that would give my site the stability I desire).
About my site:
My site has 18,000+ users, its about 18 months old. 5,632 threads, 78,967 posts. It used about 150gig of bandwidth last month. The site is growing quickly (IMO). The site makes some money, but not enough to justify spending what it would cost for a dedicated server.
I'm happy to provide any other information, but what I am looking for is suggestions on:
1) Is a VPS the right choice for my site in your opinion.
2) What hosting company's would you suggest I look into.
3) How much ram/processor speed should I be looking for
4) any other information you feel I should know about this.
Want To Run A SMALL Vbulletin Forum
May 3, 2008I want to run a SMALL vbulletin forum with a maximum of 500-1000 people.
Is hostingpuppy the right host service for me? they are cheap plus they have good uptime and alot of people love them.
Exceeding Lunarpages With VBulletin Forum
Dec 10, 2007Hello,
Lunarpages and jerked me around enough times that I'm considering other options. I won't go into too many details, but they recently moved me to a new server that was configured completely different and my forum ended up being down for 4 days. During that time, their support was non-existent. Now, they keep sending me emails that I'm exceeding my alloted CPU usage. They want me to upgrade.
Admittedly, I am using their lower end hosting, which I think I paid $100 for the year or something.
After the way I've been treated, I can't imagine spending another dime at Lunarpages. So I'm looking for new hosting options. My forum is growing, but it certainly isn't a large forum. I have about 30-40 new members join each day and I usually have about 1,000 active members. I'm running vbseo and a few mods, but my unique hits per day is probably around 2,000 uniques per day for the forum give or take. My forum does use quite a bit of bandwidth as people upload songs they have recorded and submit them for review frequently.
I've considered the notion of having a server built for me and paying $100 per month for colocation and being done with it, but I'd prefer to avoid this cost, if possible.
Any suggestions?
Reliable Hosting For A Vbulletin Forum
Oct 9, 2009I am the owner of the vbulletin forum. The forum is young but it is growing rapidly. It has 11000 posts, 800 members and about 30 users online. I use many mods which are server intensive.
I was on a semi-dedicated hosting (Westnic), which I shared with my friend to reduce the costs. Now I feel I should move on, because this package is becoming too small for both of us.
I wanted to upgrade my hosting package to a bigger one, but now when I have read so many horrible stories about this host, I really don't want to stay with Westnic.
So I am looking for a reliable host for my forum.
I am still now sure whether I need a semi-dedicated, VPS or a dedicated server. Also, I am not sure how much dedicated memory a forum like mine would need. Also, I am not sure about the location of the server - does it really matter?
Started A Vbulletin Forum And Site
Apr 16, 2008I am about to purchase a vbulletin license in a few days and start a site. I will start the forums first and get the talking going and build the main site afterwards. Of course the site will suck at first as far as visitors. But what is a good hosting plan to support me for a good little while? I project we'll get up to 150 active users at a time within the first 6 or 7 months with about 50 browsing the main site....(nothing wrong with wishful thinking )
So, what hosting plan is best to hold me for a while? Not which company, but what specs of the plan are best to hold 100 active users at a time? I dont want to continue to upgrade my hosting plan alot. I'd rather just buy a nice shared hosting plan now to hold me for at least a year or so....until I have to upgrade.
For those who have dedicated servers, at one point is it time to upgrade to a dedicated server?
What Is The Best Way To Load Balance A Vbulletin Forum?
Aug 20, 2008What is the best way to load balance a vbulletin forum?
View 3 Replies View RelatedWhich Host For Joomla! Website + VBulletin Forum
Oct 25, 2009I'm promting a new Joomla! website and a new vBulletin forum. The website serves to news articles, some statistics (related to a football club) and also a small photo and video gallery. The forum would have an average of 40-50 online users.
I'm considering to choose the baby package offered by Host Gator. Would that be a good choice?
How To Transfer Users And Threads To A New Vbulletin Forum
Oct 23, 2009I have formated my linux Centos 4 server with PHP 4.4 and install Centos 5 with PHP 5.1 ( will upgrade to 5.2 soon ).
I succeed to restore all of my web sites and forums except one which has 110MB sql file, VBulletin 3.6.8.
I think the problem is related on my hack's and modifications I have done before...
Now I decided to install a new and fresh forum with version of 3.6.8 to be the same with ex one ( I will upgrade it after transferring ( migrating ) every threads, posts and members to new forum to 3.8.4)
But the problem is: when I restore the whole sql to new forum I had come across many problems.
THE QUESTION IS:
how can I transfer just "threads", "posts" and "members" to a new and fresh vBulletin forum ?
please note that my forum is not working now and I just have a "whole-website-backup.SQL" file and also back up of whole database folder in the linux ( it contains .frm , .MYD , .MYI files like: mst_post.frm , mst_post.MYD , mst_post.MYI and others...)
I have tried to copy these .frm .MYD and .MYI files on the new database folder but it was not worked!
I think I must restore by the help of .SQL file but I dont know how! when I recover whole the .SQL file forum does not work good and had some problem ( I can't log in to admin panel for example, and my VBSeo configurations gone and can't be repaire...
Please show me how can I transfer just my Posts and members to a NEW installed VBulletin forum with same or different "database name" and "database username".
VBulletin Forum Very Slow Under High Load
Apr 15, 2007I recently started hosting a large vBulletin forum (14,014 registered users... 30-60 online at a time) on one of my dedicated servers. When there's a lot of activity on the forums, things start getting really slow. There will be like 50 php-cgi processes running. Some users get blank pages, others get this message:
Notice: Undefined variable: errfile in [path]/forums/includes/functions_log_error.php on line 163
Specs of the server are:
AMD Athlon 64 3000+
160GB SATA HDD
2GB DDR2 RAM
FreeBSD 6.2 (Hosted at AwkNet)
Could there be any Apache modifications I can make to increase performance, or anything else I could try?
Lead Webstes (vbulletin Forum, Some Server Side Scripts)
Jun 18, 2008I've problem with my system (Dell vostro200) I've Mcafee security center and it will block some scripts running in the system during the browsing. I can't use any of vBulletin forums ( registration and posting ) I can't do even Mcafee online registratation also. I'm not an expert in os configurations.
View 0 Replies View RelatedA Lot Of Hacking
May 7, 2009today i have a lot of hacking on my server .
i searched for shell scripts on the server , and i found alot of it :
[root@host svt]# ls -l
total 48
-rw-r--r-- 1 koky koky 6700 May 7 08:14 s.php
lrwxrwxrwx 1 koky koky 48 May 7 08:07 s1 -> /home/user1/public_html/vb/includes/config.php
lrwxrwxrwx 1 koky koky 47 May 7 08:12 s2 -> /home/user2/public_html/vb/includes/config.php
lrwxrwxrwx 1 koky koky 48 May 7 08:19 s3 -> /home/user3/public_html/vb/includes/config.php
lrwxrwxrwx 1 koky koky 47 May 7 08:37 s5 -> /home/user4/public_html/vb/includes/config.php
lrwxrwxrwx 1 koky koky 49 May 7 08:49 s6 -> /home/user5/public_html/vb/includes/config.php
-rw-r--r-- 1 koky koky 13199 May 7 07:59 ss.php
-rwxr-xr-x 1 koky koky 23005 May 7 07:58 svt.svt
as u can see he uploaded the files on this account "koky" and redirected this files to user1,user2,user3,user4 and user5 accounts .
and he could read the config.php and then hacked the site easly !!
i read befor that the reason of this is Perl on the server , and the way to solve it to edit httpd.conf by adding this in it :
<Directory "/home">
Options -ExecCGI -FollowSymLinks
AllowOverride AuthConfig Indexes Limit FileInfo Options=IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
and then restart the http :
service httpd restart
i did all of that , and when i restarted http it said :
[root@host www]# service httpd restart
Syntax error on line 51 of /usr/local/apache/conf/httpd.conf:
Invalid command 'Options=IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch', perhaps misspelled or defined by a module not included in the server configuration
and all the sites got down !
i deleted :
<Directory "/home">
Options -ExecCGI -FollowSymLinks
AllowOverride AuthConfig Indexes Limit FileInfo Options=IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
from httpd.conf and then sites worked correctly .
so you all know my problem now ! and i think alot of you have the same problem , so i wish we all try to find any solution for this and knows the best way to protect pel on the server .
Stop Hacking
Feb 6, 2009a site i manage for a client is being hacked every couple of days, its not the actual site but the hosts server thats getting attacked, all sites on that server, well actually all thier servers.
They have made no attempt to sort this problem, i report it they look at the site and say "site loads fine for us" which it does.
All index files are having a base64 encode line written after the <body> tag, this adds hundreds of spam links which are hidden with display:none; they also add .html to application types in htaccess for php to run in these files too.
Problem is, i am moving the site to another host but cannot change the nameservers to the new host's untill the client returns from a holiday, so i must keep the site up on the insecure host for now.
I am removing the spam code almost daily, is there anyway i can stop this attack happening for the time being, the host does nothing.
Hypervm Hacking
Jun 8, 2009As well all know there has been a hypervm exploit which may have taken down fsckvps and other hosts have been having attacks. If possible install any program that will warn you of a connection to your server and or provide input on what it may or may not be.
I myself Just had a blank php format file uploaded to a clients vps and It tried accessing other vps servers. As far as I know the ip was rapidly changing and untraceable (this may or may not be from the exploit), If anyone else is having hypervm attacks or server attacks please post here so instead of working within our own company's we are working as a group of over 10 thousand+ wht members to solve this issue ourselves.
(mods may move this wherever)
Server Hacking...
Jan 15, 2008i have a server and these days my server is hacking by the hacker the problem is, chmod 777, there are many dir's with the chmod 777 and hacker is uploading files and creating folders under the folder which is created with chmod 777, now i just want to know how i can block the hacker, and is there any way to allow the scripts which in my server and not allow any other scripts to upload files in my server
i have linux server
Is This A Hacking Attempt
Feb 22, 2007my referals logs that I keep on a website, I have come accross the following this morning, Is this some one who is trying to gain access to the server etc.
[url]
[url]
[url]
[url]
[url]
I have the Ip addresses that they have come from and it resolves to a Russian (I Think) website.
Im just looking through all the folders on the server now and no data has been comprimised as far as I can see and im going to use the query strings in order to block access and also deny access via ip address.
MYSQL Hacking
Jun 27, 2007alot of Databases in my server was hacked
Hacker can edit tables
Are there any any ports in MYSQL4?
Forums Hacking
Jun 20, 2007Alot of VB forums have hacking every day
In fact All hackers couldn't hack databases or files
They only edit one template in style like header or forumhome
So Uploading style again resolve the problem
But How can I disallow them to to edit templates
Any functiond to disable or rule for mod_sec ?
Hacking Attempt
Sep 13, 2007see the log entries below:
LogFormat "%h %l %u %t "%r" %>s %b "%{Referer}i" "%{User-Agent}i" "%{X-Forwarded-For}i""
1.2.3.4 - -[12/Sep/2007:11:15:38 +0900] "GET /~kjm/security/ml-archive/bugtraq/2006.04/msg00283.html//footer.inc.php?settings[footer]=[url]HTTP/1.1" 404 268 "-" "libwww-perl/5.808" "-"
1.2.3.4 - - [12/Sep/2007:11:16:00 +0900] "GET //footer.inc.php?settings[footer]=[url] HTTP/1.1" 404 213 "-" "libwww-perl/5.808" "-"
What can you say from the above log entries?
So How Does Hacking Work
Nov 29, 2007I keep reading all these devastating posts about people's machines being compromised. Are most of these hacks due to weak passwords of administrators or clients which end up getting bruted, or are there known exploits for cpanel/plesk/apache etc? I am setting up an apache-only server with a really secure password, but I am wondering if it could still be breached using an exploit.
View 14 Replies View RelatedIs Someone Hacking My Server
Apr 25, 2007Purely by accident I logged in a few minutes ago onto my server and ran a 'ps -ax'
At the very end I had the following lines:
29803 ? S 0:00 /bin/sh /usr/local/sbin/bfd -s
29804 ? D 0:00 /bin/sh /usr/local/bfd/tlog /var/log/secure sshd.4
29805 ? S 0:00 grep sshd
29807 ? S 0:00 grep -viw error: Bind
29808 ? S 0:00 sed s/::ffff://
29814 ? S 0:00 grep -iw Illegal user
29816 ? S 0:00 grep -iwv Failed password for illegal user
29817 ? S 0:00 grep -iwf /usr/local/bfd/pattern.auth
29818 ? S 0:00 awk {print$10":"$8}
29819 ? S 0:00 grep -E [0-9]+
Is this someone hacking my password file or is this something diffrent?
Php Injection & Session Hacking
May 28, 2008I had done a program in early 2006 for a site in php-mysql. At the time of doing the code, The code written was not so standard and it contained uninitialized variables used for include file paths (eventhough values are assigned to it before using) and the "sess" folder was created within the website folder. Also the parameters for the SQL query were not escaped, but everything was working fine.
And now i was informed that the insecure code in my program caused the server crash and i have to pay the penalty for the same. Can anyone let me know whether the below code / keeping the session variables within a folder inside the /www/ will make the sites hosted on the server where this program runs to stop/crash for ever ?
------------------------------------------------------------------
function update_region($id,$regname,$regcom)
{
$query = "UPDATE taxregion_mast SET taxregion_name = '". $regname."',
region_comments = '". $regcom."' WHERE region_id =" .$id;
mysql_query($query);
......
-------------------------------------------------------------------
Hacking Attempt On Site
Jul 20, 2008I am having issue with my server. Someone is trying to execute some code and possibly trying mysql injection method.
I have pasted the code below.
Please suggest what can be done in this case.
Regards
Gagandeep
+++++++++++
The person tried to use different IPs and different websites to execute the code.
URL >> IP
[url]
[url]
[url]
ftp://212.11.127.86/tmp/trem/1? >> 87.118.118.156
There are many such queries under my logs.
The person is using different IPs, so, i can't even block that many IPs.
++++++++++++
The CODE
<?php
function ConvertBytes($number) {
$len = strlen($number);
if($len < 4) {
return sprintf("%d b", $number); }
if($len >= 4 && $len <=6) {
return sprintf("%0.2f Kb", $number/1024); }
if($len >= 7 && $len <=9) {
return sprintf("%0.2f Mb", $number/1024/1024); }
return sprintf("%0.2f Gb", $number/1024/1024/1024); }
echo "Osirys<br>";
$un = @php_uname();
$id1 = system(id);
$pwd1 = @getcwd();
$free1= diskfreespace($pwd1);
$free = ConvertBytes(diskfreespace($pwd1));
if (!$free) {$free = 0;}
$all1= disk_total_space($pwd1);
$all = ConvertBytes(disk_total_space($pwd1));
if (!$all) {$all = 0;}
$used = ConvertBytes($all1-$free1);
$os = @PHP_OS;
echo "0sirys was here ..<br>";
echo "uname -a: $un<br>";
echo "os: $os<br>";
echo "id: $id1<br>";
echo "free: $free<br>";
echo "used: $used<br>";
echo "total: $all<br>";
exit;
?>
My Thoughts About Hacking... [Part 1]
Jul 8, 2008Is security really that critical? If so, why are some of the largest software companies providing such a bad example for the rest of the industry? Why would someone want to target my website? Why is security often overlooked?
These are all common questions that arise on a daily basis within the online industry.
The rest of this article will provide some detailed answers, along with practical examples and true scenarios.
I've spoken with numerous hackers over the past short while. I can't count the number of times I've heard the line "Ignorant site owners deserve to be hacked". In my opinion, that's like claiming that cars without alarms deserve to be stolen, or homes without alarm systems deserve to be burglarized. It's not just wrong - it's illegal.
Security risks and vulnerabilities affect the entire online industry. When a single website is hacked, there are usually multiple other victims. This is most commonly seen with widely distributed software. A potential attacker has the ability to install the software on a test environment, locate the vulnerabilities, then attack random victims even before anyone else is aware of the potential exploits. Once a vulnerability is located, the attacker simply needs to search for other environments using the same software, and within minutes there are hundreds, often thousands of potential victims.
Typically, in the race to market, software providers are encouraged to release their products as soon as the applications are usable. Critical development procedures are often overlooked or intentionally bypassed. One such miss is an application vulnerability assessment. Although the product may be usable, the effects of a vulnerable application could be severe.
Sadly, nobody is "off limits" when it comes to hacking. Most hackers feel safe committing online crime, since the online industry has evolved much faster than the security industry. Many applications are not created with the intent to recognize hacking attempts. Some hackers view their actions as a competition - Who can attack the most valuable website? Who can exploit the most user databases? In many cases, these attacks are bragged about within the hacker's immediate network. The competitive nature of these hacking groups has become so severe, there have been reports of attacks between competing organizations.
You might ask, "If I use industry standards, won't my environment be secure?". The short answer: no, but it helps. Hackers are not restricted by industry standards. Most security companies only implement new standards once at least one victim is reported. This often gives hackers plenty of time to locate other vulnerable environments, and before long, the number of victims can increase rapidly. Hackers are some of the most innovative individuals within the online industry. The most logical way to combat them is to use similar methodology for security purposes.
Daily Hacking Attempts
Oct 13, 2007Our VPS is being hit several times a day with hacking attempts. We have been actively monitoring error logs and can see the failed attempts. I was just wondering if there is a better way to track such attempts or another system log that wold provide additional info on these attacks? or maybe some 3rd party logging scripts?
View 13 Replies View RelatedHacking Buildapache To Add Mod_deflate (for 1.3.37)
Apr 3, 2007apparently a mod_deflate patch has been available for apache 1.3.37 for some time but since I rely on cpanel as a huge time/knowledge saver, I'd like to hack it into buildapache/easyapache so it's an option just as easy as mod_gzip is (with a simple checkbox)
after poking around I learned that all the magic happens in /home/cpapachebuild/buildapache
I've studied how mod_gzip is activated/installed but some steps are beyond me
mod_deflate for 1.3.37 is here [url]the critical files inside are of course mod_deflate.patch and mod_deflate.c
so I assume stick those files into a directory under buildapache, but where do I hack in the patch and build steps?
Index Page Hacking
Dec 4, 2007One of my customer's domain name's index page is hacked with the pharmacy kind of URLs all over on the homepage. Anyone has idea about this? You can see the URL at
[url]
Prevent Hacking/spamming
Jun 2, 2007Will I depend on my hosting account(SSL) in preventing a hacking/spamming case scenario? What do I need to know to prevent hacking/spamming?
View 5 Replies View RelatedHow To Prevent Shell Hacking Like C.100 / R57 Exploit?
Apr 23, 2009one of my client account has just been hacked with c.100 exploit. This method injects 1 php file that acts like fully featured file manager. This hacker use my client account to place multiple scam & phissing sites
now i'm wondering if this kind of exploit hacking have a way to counter them as my friend that there aren't any proved method untill now :-/
This is the php file i've recovered:
<<url removed>>
FYI, my server configuration:
- apache 2.2.11
- centos 5.2
- cpanel + whm 11.24.4
- suphp, clamav & modsec enabled
Hacking Attempts From Server.softjin.com
Mar 12, 2008I have been getting a lot of hacking attempts from this server:
server.softjin.com
They have offices in the U.S. as well as India, Japan, Singapore. I have reported them to [url]
and if you are in the U.S. and have proof of hacking attempts from this company, please post them here -
I am currently looking to compile a list of complaints so I can send another complaint report to ic3.gov
IP Address Which Begins With 10 Means Hacking
Apr 29, 2008I have some websites with different support, contact, ... forms. I have set the forms to record the subscriber IP, need to know when the IP begins with 10, it means a person submitted the form from inside the server? If so, what is the appropriate defense? If no, what it means? I know many experts are present here, please in addition to selling and introducing your service,
View 8 Replies View Related