- This topic has 3 replies, 3 voices, and was last updated 18 years, 6 months ago by
.
- Posts
The new board upgrade is a motherfucker and a half.
Plus expect hackers to start writing proof of concept scripts very soon
http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5141
What I suggest is to start editing files now if you have mods…Get the rowzed guys to do that board and you do this one and then review each others work before going live with it.
I’d offer to review it for you , but I never want to look at another file again as long as I live…That is how bad this upgrade is.
The plus side is it should prevent alot of future stuff.
@Kurt wrote:
Get the rowzed guys to do that board and you do this one
I am the rowzed techie.
What’s wrong with v.17?
There are files that can be compromised with a scripted attack.
usercp_register.php’
login.php
search.phpPlus this is on top of a code-audit by the development team, so it is likely that 2.0.18 not only corrects the flawed files above but will decrease the likelyhood of it being as easy to crack phpBB2 boards as it has in the past.
Like I said, its a huge job and lots of board admins are going to not do it, so the hackers are going to have a field day with this,
- You must be logged in to reply to this topic.