Recent Event

[xfir]

We were hacked.

Now, don't let this alarm you. No damage was done.

The problem has been resolved.

As a note though, the shoutbox will stay offline until I can get it more secure (and make sure it isn't on EVERY page)

[Zircon]

Thread is gone... And so is my finely crafted message... *sob*

Well, No matter   We're secure again  ^_^  

[BlackBox]

Who/what was responsible for it?

And how did they do it? (I'd be willing to help "patch" the shoutbox.... I'm guessing they injected SQL thru it..?)

edit: You should use a regular expression to remove stuff that starts with ibf_ from the shoutbox, preventing the database from being touched.

[xfir]

No... Zircon explained it, but at length.

Basically, this version is now a "pure" Invision 1.3 Final..  

[plymoth45]

YAY, now y was my skin different from wht i had it at? I just barely had to change it back. Could it of had something to do with this hack?

[xfir]

Actually, I deleted all the old skins and reuploaded everything.

That is the reason for the switch back to the default skin.

[BlackBox]

Xfir: The skin sets are still stored in the database.. Should I go in and delete them out?

Also, make sure you re-CHMOD'ed the uploads/ and html/emoticons/ folders to 777.

[xfir]

Xfir: The skin sets are still stored in the database.. Should I go in and delete them out?

Also, make sure you re-CHMOD'ed the uploads/ and html/emoticons/ folders to 777.

That's all done already. I took care of everything.

[SilentoBoborachi]

I liked the shout box, it's the first time i've seen one on a forum

[CK9]

I hate it when people do stupid things like that.  Hacking is okay the way it is being used in our case, because we just want to try to keep this game alive.  When you hack a forum or a site, that's just wrong.

[Luweeg64]

NOooooo THE SHOUTBOX!!!!! sob.... :'(  :'( ......

[Leviathan]

well now theres no shoutbox people should come on irc and chat there.

[plymoth45]

With out the shoutbox, luweeg is powerless lol.

[Oprime]

:'(  I feel sad cause nobody was in IRC when I needed my OP2 fix*....Not even Leviathan.  Don't cry Luqeeg we all loved the shoutbox :'( .  Will it ever come back......

[xfir]

:'(  I feel sad cause nobody was in IRC when I needed my OP2 fix*....Not even Leviathan.  Don't cry Luqeeg we all loved the shoutbox :'( .  Will it ever come back......

Yes it will come back.. but I want to redo some portions of it.

[BlackBox]

Yeah, all you gotta do is stop SQL injection.....

(What you could do, is use eregi() or something to remove words like UPDATE, DELETE, INSERT, DROP, CREATE, etc.

Btw I consider OP2 "hacking" more "cracking" and "reversing" than hacking... Those words define it better.

[plymoth45]

so change ur name to racking lol.

[Luweeg64]

i'm beginning to think lev makes money off us visiting the shoutbox :lol:
 

[plymoth45]

you mean IRC? or the shoutbox?

[BlackBox]

the shoutbox

Um, yeah the shoutbox.

And this topic is going (OT).

[Oprime]

Xfir how long to you think it would take to bring the shoutbox back?

[xfir]

Xfir how long to you think it would take to bring the shoutbox back?

I may take the board offline tonight to make the modifications.

[plymoth45]

k, as long as it is back up and running tommorrow.

[xfir]

As you can see, the shoutbox is back.. there currently isn't a fader though.. I don't plan on adding one..

Also, I plan to take the forum down again on Sunday for another modification.

[Luweeg64]

yay shoutbox is back