We are Back...
- Thread starter Dan
- Start date
Berkeley_Eagle
Current Status: 24/7 Manly Fan
WAMF said:
Action ? we wasn't here lol
Captain Moondog
Absolute Superstar
Great work Dan
Last couple of days I've been reduced to talking to the Missus. She'll be happy too, she reckons she's sick of hearing about football, seems a bit strange to me....
Last couple of days I've been reduced to talking to the Missus. She'll be happy too, she reckons she's sick of hearing about football, seems a bit strange to me....
Dan did such a great job we should welcome him into the 'last fan standing' competition.
Welcome mate!
You forgot to put your tip in for last week so you're out.
Welcome mate!
You forgot to put your tip in for last week so you're out.
HappilyManly
Journey Man
Extra Time for Manly and Dan 
Thanks for the NSW Blues colour scheme now that the Origin Season is here 😀
Where do I find the link to the Last Fan Standing competition?
Or was the crash caused by Jethro hacking out his Dogs tip? 😛
Thanks for the NSW Blues colour scheme now that the Origin Season is here 😀
Where do I find the link to the Last Fan Standing competition?
Or was the crash caused by Jethro hacking out his Dogs tip? 😛
voicefromthehill said:
I have a PC (work and home), an I-Pad (home) and and I-Phone.....just need something that works better on the phone (actually really liked Tapatalk....but no drama's)
I will await the mobile friendly option
Mark from Brisbane said:
The mobile theme worked really well, in fact better than tapatalk for functionality and speed.
The issue with tapatalk is that it has vulnerabilities in it, which adds another layer of insecurity on top of the forums themselves. At least with the forums, I am able to patch issues if I see them, without having to wait for an official release. Tapatalk means I need to wait for a new version to be released as well as make sure everyone updates. It also slows down the site.
After the mess of the last few days I certainly don't want to be adding too many layers of complication
Lord Eagleton
Bencher
Please change the layout colour from Doggies Blue to Sea Eagles maroon asap
Berkeley_Eagle
Current Status: 24/7 Manly Fan
Hope you changed all your passwords to 150 characters Dan lol
My avatar looks like the only one working.
Or is it that at the moment we only see our own?
Or is it that at the moment we only see our own?
Nup can't see mine....BUT you are "special"
I am the first to admit I know bugger all about computers, and even less about hacking...at some stage Dan maybe a brief explanation on how they did it (not a technical one that someone can copy and do again) but just a "they hacked my password and then changed everything" (which may well be the answer).
I am the first to admit I know bugger all about computers, and even less about hacking...at some stage Dan maybe a brief explanation on how they did it (not a technical one that someone can copy and do again) but just a "they hacked my password and then changed everything" (which may well be the answer).
Dan loves the moose!
Not 100% certain, however from what I can tell in the access logs, they used either an XSS or and CRSF exploit to get in. There were at least 2 plugins on the site that were vulnerable as well as an older template. We were also one point version behind on the forum software.
So with the vulnerable areas they were able to use an SQL injection in order to change settings and get elevated privileges, once they did that, the world was their oyster so to speak.
To recover I had to locally restore a backup that I took before the attack, I then had to transfer that data (posts and user accounts) over to a new install, then upgrade the software. Once that was done I had to manually reset permissions, strip out any injected "<script>" tags in signatures, posts and other areas. I then had to install a few security addons and then take another backup of the site to make sure that I could recover at a better point in time if it is hacked again.
I am continuing to work on tightening security more today
So with the vulnerable areas they were able to use an SQL injection in order to change settings and get elevated privileges, once they did that, the world was their oyster so to speak.
To recover I had to locally restore a backup that I took before the attack, I then had to transfer that data (posts and user accounts) over to a new install, then upgrade the software. Once that was done I had to manually reset permissions, strip out any injected "<script>" tags in signatures, posts and other areas. I then had to install a few security addons and then take another backup of the site to make sure that I could recover at a better point in time if it is hacked again.
I am continuing to work on tightening security more today
Pittwater Legend
We brought back Geoff Toovey!
Maybe we should get Kaspersky to help us out here 😉
While we're at it we'll see if he can track down who these bastards are.
While we're at it we'll see if he can track down who these bastards are.
Users who are viewing this thread
| Team | P | W | L | PD | Pts |
|---|---|---|---|---|---|
|
1 | 1 | 0 | 36 | 2 |
|
1 | 1 | 0 | 30 | 2 |
|
1 | 1 | 0 | 22 | 2 |
|
1 | 1 | 0 | 8 | 2 |
|
1 | 1 | 0 | 6 | 2 |
|
1 | 1 | 0 | 2 | 2 |
|
1 | 1 | 0 | 2 | 2 |
|
0 | 0 | 0 | 0 | 0 |
|
0 | 0 | 0 | 0 | 0 |
|
0 | 0 | 0 | 0 | 0 |
|
1 | 0 | 1 | -2 | 0 |
|
1 | 0 | 1 | -2 | 0 |
|
1 | 0 | 1 | -6 | 0 |
|
1 | 0 | 1 | -8 | 0 |
|
1 | 0 | 1 | -22 | 0 |
|
1 | 0 | 1 | -30 | 0 |
|
1 | 0 | 1 | -36 | 0 |