My forum is Hacked . How to make more secure

Discussion in 'vBulletin' started by umlove, May 19, 2011.

0
  1. #1
    My forum has been Hacked by stupid Goy it is so simple for me to restore my forum but i want to make it more secure. can any one tell me some simple steps to make it more secure. I change even admin/moderator file directory my password was so strong but i dont know why it was Hacked.
     
    umlove, May 19, 2011 IP
  2. dynashox

    dynashox Premium Member Staff

    Messages:
    8,662
    Likes Received:
    563
    Best Answers:
    3
    Trophy Points:
    335
    #2
    Are you using nulled script?
     
    dynashox, May 20, 2011 IP
  3. mnmani

    mnmani Well-Known Member

    Messages:
    379
    Likes Received:
    11
    Best Answers:
    6
    Trophy Points:
    195
    #3
    I always felt that vBulletin script is strongly secured by itself...
     
    mnmani, May 20, 2011 IP
  4. nihangshah

    nihangshah Prominent Member

    Messages:
    5,536
    Likes Received:
    271
    Best Answers:
    3
    Trophy Points:
    395
    #4
    Check for folder permissions in cPanel. If you have an 'open' folder, some hacker would upload suspicious scripts to set up phishing site.
     
    nihangshah, May 20, 2011 IP
  5. strudinox

    strudinox Active Member

    Messages:
    84
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    76
    #5
    Consider using .htaccess password protection in the acp folder as well as renaming it.
     
    strudinox, May 20, 2011 IP
  6. -Aw-

    -Aw- Active Member

    Messages:
    319
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    80
    #6
    What kinds of hacks were you using? There was a huge Advanced Forum Rules exploit not too long ago.
     
    -Aw-, May 20, 2011 IP
  7. umlove

    umlove Active Member

    Messages:
    271
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    83
    #7
    I have restored. I am not using so many hacks. There are just spam control, check if already posted, and sub forum manager. I have not changed all the password, changed directory names, set the passwords and more.
     
    umlove, May 20, 2011 IP
  8. bama boy

    bama boy Active Member

    Messages:
    376
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    55
    #8
    change your hosting with a better one, don't use any local hosting , don't use any nulled script, scan your files after uploading them with whm, install strong antivirus and make full scan every week, backup your site every weekend.
     
    bama boy, May 20, 2011 IP
  9. etc

    etc Well-Known Member

    Messages:
    3,234
    Likes Received:
    30
    Best Answers:
    0
    Trophy Points:
    158
    #9
    permissions and create an admin fake page.
    this is why i don't allow users in my forum to upload even images even thier own avatar.
    they can however post images from tinypic or any..rats can be attached to those image files.
     
    etc, May 20, 2011 IP
  10. Bart Simpson

    Bart Simpson Peon

    Messages:
    210
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #10
    Well you need to start making backups then. Anyone agree? Haha
     
    Bart Simpson, May 21, 2011 IP