I just headed over to an old topic I meant to check up on over at the phpbb support forums, and noticed that they've been attacked! The website is currently down due to a vulnerability being exploited within the phpList installation.. However, they say that this is not a bug of phpBB itself. http://phpBB.com Chuckun
I hate people hacking websites for such brilliant, FREE projects.. What's the point, what is there to gain?
"we have been attacked through a vulnerability in an outdated PHPList installation" Sounds like they forgot to update lol
The last update to phpList was on the 29th January... Someone must've hit them fast! :O For some reason I'm shocked phpBB wouldnt be up to date within 4 days..
That's mad... =/ I wonder what actually got done to the site then.. Someone really knew what they were doing here... With the worst intentions... Feel sorry for the guys at phpBB having to sort it all out... They should know not to be sloppy with staying up to date though... Producers of such a script of phpBB should recognise the importance of bugfixes..
Its sad when someone hack an open source project... Wondering if they checked the phpbb source code for backdoors.
well they claim that it was not a flaw in the phpBB script that was abused in the attack... but it doesnt look good for them either way... I doubt any phpBB users will loose sleep over it though.. BB3 seems quite secure to me.
oh i am big fan of that forum software! But i stopped using it as they dont have my fav features - rich text editor and auto mod install what do you think guys ? Why they are not adding above features
phpBB3 is very sophisticated for opensource.. take a look at my thread here for a more equipt phpbb forum.. Theres a link to a fully modded phpbb download, (legit, I've used it) - if you check it out, post in that thread with your opinions Chuckun