Home › Forums › Polo’s Rabble › Lee
- This topic has 3 replies, 3 voices, and was last updated 18 years, 6 months ago by Kurt.
- AuthorPosts
- November 2, 2005 at 2:39 am #2205KurtParticipant
The new board upgrade is a motherfucker and a half.
Plus expect hackers to start writing proof of concept scripts very soon
http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5141
What I suggest is to start editing files now if you have mods…Get the rowzed guys to do that board and you do this one and then review each others work before going live with it.
I’d offer to review it for you , but I never want to look at another file again as long as I live…That is how bad this upgrade is.
The plus side is it should prevent alot of future stuff.
- November 2, 2005 at 8:29 am #6883Lee RidleyKeymaster
@Kurt wrote:
Get the rowzed guys to do that board and you do this one
I am the rowzed techie.
What’s wrong with v.17?
- November 2, 2005 at 10:03 am #6884ROBKeymaster
Ahh crap… that doesn’t sound cool
- November 2, 2005 at 1:24 pm #6885KurtParticipant
There are files that can be compromised with a scripted attack.
usercp_register.php’
login.php
search.phpPlus this is on top of a code-audit by the development team, so it is likely that 2.0.18 not only corrects the flawed files above but will decrease the likelyhood of it being as easy to crack phpBB2 boards as it has in the past.
Like I said, its a huge job and lots of board admins are going to not do it, so the hackers are going to have a field day with this,
- AuthorPosts
- You must be logged in to reply to this topic.