SMF 1.1 Release Candidate 3 is available!

Started by Thantos, August 19, 2006, 04:12:52 PM

Previous topic - Next topic

SkyRanger

I would be he erased my settings.php file

SleePy

#421
There are no known exploits for 1.1 rc3...
It would mean he needed a way to upload a script were it wasn't filtered. SMF filters what is uploaded. So a script can not be ran. Or some way to edit scripts on your site..

Do you run any mods?
I see you also run phpnuke.. You run the latest of that? with security holes patched.

--edit--
well you dont run phpnuke but you run other scripts like a calendar.. make sure those are updated.
Jeremy D ~ Site Team / SMF Developer ~ GitHub Profile ~ Join us on IRC @ Libera.chat/#smf ~ Support the SMF Support team!

SkyRanger

Truth me, I am a security consultant, All my scripts are upto date and patched.  I am reviewing the logs to find out how he got in.  Once I figure that out, then I will know if it is a hole in SMF or a hole in one of my scripts, but by the looks of it so far it is SMF

SleePy

If you belive its a security hole in rc3 use submit this form
http://www.simplemachines.org/about/security.php
You should know how to get your access logs and stuff since your a security consultant
Jeremy D ~ Site Team / SMF Developer ~ GitHub Profile ~ Join us on IRC @ Libera.chat/#smf ~ Support the SMF Support team!

ThomasJ

This is totally off topic, but shouldn't someone as a security consultant be opposed to running a site which is reported to be a known distribution point of adware and trojans? Granted it was based of a single download on your site, but still, makes one wonder.
Whoops! Did i break that?

aglioeolio

Quote from: Compuart on August 22, 2006, 01:28:36 PM
Quote from: ArkServer on August 22, 2006, 12:59:52 PM
Is there a way to manually edit the changes from 1.1 rc2? We run a heavily modded board.
You can however update 1.1 RC2 to 1.1 RC2-2 by applying the modifications in the Package Manager. Note that this is just a onetime courtesy that will only update your forum security-wise and will not fix any of the other bugs that were fixed in 1.1 RC3.

I´m Glad to know this, Thanks

I Think I´ll wait for 1.1 final, my board is amazing with RC2 now  ;D


RvG

Quote from: aglioeolio on October 15, 2006, 08:33:02 AM
Quote from: Compuart on August 22, 2006, 01:28:36 PM
Quote from: ArkServer on August 22, 2006, 12:59:52 PM
Is there a way to manually edit the changes from 1.1 rc2? We run a heavily modded board.
You can however update 1.1 RC2 to 1.1 RC2-2 by applying the modifications in the Package Manager. Note that this is just a onetime courtesy that will only update your forum security-wise and will not fix any of the other bugs that were fixed in 1.1 RC3.

I´m Glad to know this, Thanks

I Think I´ll wait for 1.1 final, my board is amazing with RC2 now  ;D

Yap... same as I. :)

ictus

I've installed a basic test of the board and it seems to be running fine, which as RC1 and older versions didn't and RC2 was a little odd this is good news (all Mod Security issues)

My licence for IPB runs out in January, will the 1.1 final be around by then?

yes i know there probably isn't an answer as there ar a lot of facters, I'm just hopefull.

ThomasJ

Quote from: ictus on October 15, 2006, 01:09:24 PM
I've installed a basic test of the board and it seems to be running fine, which as RC1 and older versions didn't and RC2 was a little odd this is good news (all Mod Security issues)

My licence for IPB runs out in January, will the 1.1 final be around by then?

yes i know there probably isn't an answer as there ar a lot of facters, I'm just hopefull.

If i am to make a guess, id say yes.
But only time will tell.
Whoops! Did i break that?

Gary

Quote from: ictus on October 15, 2006, 01:09:24 PM
My licence for IPB runs out in January, will the 1.1 final be around by then?

Most likley yes. But always there is never a set date for releases. It'll just be a scramble when it is released. ;)

-AwwLilMaggie
Gary M. Gadsdon
Do NOT PM me unless I say so
War of the Simpsons
Bongo Comics Fan Forum
Youtube Let's Plays

^ YT is changing monetisation policy, help reach 1000 sub threshold.

BAlGaInTl

Quote from: HarzeM on October 14, 2006, 05:55:39 PM
It looks he edited your index.php or Settings.php file.

You may delete Settings.php, then rename Settings_bak.php to Settings.php.

I had this problem as well where my setting.php file was overwritten with a HTML page from a turkish hacking group.  Still haven't figured out how exactly it happened.  I've since moved the site and changed the permissions on the settings file.  It is a pain to have to change it manually now, but I guess that is the price I pay until I can figure out what happened exactly.

a2h

Any idea how long before this version will be made Final release?

aglioeolio

#432
AwwLilMaggie, your Board at http://multitalk2.com/
is Running a testing version of SMF 1.1 Final?  ;D


Gary

Or am it? ;)

I had to. There's a member on there who's really annoying me and there's a thing in it that helps keep her out of my hair. :P (It's working guys!)

-AwwLilMaggie
Gary M. Gadsdon
Do NOT PM me unless I say so
War of the Simpsons
Bongo Comics Fan Forum
Youtube Let's Plays

^ YT is changing monetisation policy, help reach 1000 sub threshold.

Defiant

Just out of interest were any bugs found in RC3 ?


SkyRanger

Quote from: BAlGaInTl on October 16, 2006, 09:49:21 AM
Quote from: HarzeM on October 14, 2006, 05:55:39 PM
It looks he edited your index.php or Settings.php file.

You may delete Settings.php, then rename Settings_bak.php to Settings.php.

I had this problem as well where my setting.php file was overwritten with a HTML page from a turkish hacking group.  Still haven't figured out how exactly it happened.  I've since moved the site and changed the permissions on the settings file.  It is a pain to have to change it manually now, but I guess that is the price I pay until I can figure out what happened exactly.


That is exactly what happened to me, and I am still looking for the problem, they also not sure how the heck they did it, the screwed with my log files also.

I checked a hacker thread and they hit alot of sites running the SMF forum.

aglioeolio

Quote from: AwwLilMaggie on October 09, 2006, 07:24:58 PM
Okay,

This is where it gets serious. We are now using a CVS version of SMF 1.1. This means that we are now one of the few forums that help make sure that SMF is more stable.
... etc

-AwwLilMaggie

I´ve just registered there and saw this topic

It looks amazing...

Thanks AwwLilMaggie  :D


Gary

Well. We gotta make the thing is secure dont we. :P

-AwwLilMaggie
Gary M. Gadsdon
Do NOT PM me unless I say so
War of the Simpsons
Bongo Comics Fan Forum
Youtube Let's Plays

^ YT is changing monetisation policy, help reach 1000 sub threshold.

faqcorner


Advertisement: