Advertisement:

Author Topic: Simple Machines Forums attacks  (Read 1913010 times)

Offline eattheword

  • Semi-Newbie
  • *
  • Posts: 12
Re: Simple Machines Forums attacks
« Reply #140 on: April 06, 2011, 04:00:29 AM »
I just installed Arrantor's login detector. The installation seemed to go smoothly with no reported errors, but when I checked the log immediately afterwards I saw these entries:

Code: [Select]
http://www.myforumname/forum/index.php?action=packages;sa=install2;package=login_detector.zip

512: package_flush_cache(): some files are still not writable
File: /hsphere/local/home/username/myforumname/forum/Sources/Subs-Package.php
Line: 1905

http://www.myforumname/forum/index.php?action=packages;sa=install2;package=login_detector.zip

2: fopen(/hsphere/local/home/username/myforumname/forum/Sources/LogInOut.php): failed to open stream: Permission denied
File: /hsphere/local/home/username/myforumname/forum/Sources/Subs-Package.php
Line: 1901

http://www.myforumname/forum/index.php?action=packages;sa=install;package=login_detector.zip;sesc

2: fclose(): supplied argument is not a valid stream resource
File: /hsphere/local/home/username/myforumname/forum/Sources/Subs-Package.php
Line: 1908

http://www.myforumname/forum/index.php?action=packages;sa=install;package=login_detector.zip;sesc

2: fopen(/hsphere/local/home/username/myforumname/forum/Sources/LogInOut.php): failed to open stream: Permission denied
File: /hsphere/local/home/username/myforumname/forum/Sources/Subs-Package.php
Line: 1901

Not knowing much about how the error logs work, is there anything here that I need to take action on?

I'm running SMF 1.1.11


Offline Illori

  • Project Manager
  • SMF Legend
  • *
  • Posts: 51,052
Re: Simple Machines Forums attacks
« Reply #141 on: April 06, 2011, 06:06:26 AM »
please do not post support requests in any thread in this board. please post the request in the proper support board. although i dont know if arantor is providing support for that mod.

Offline Arantor

  • Resident Overthinker
  • SMF Friend
  • SMF Legend
  • *
  • Posts: 71,255
    • StoryBB/StoryBB on GitHub
Re: Simple Machines Forums attacks
« Reply #142 on: April 06, 2011, 06:18:05 AM »
Firstly, it's not a mod published officially, so there's no support thread for it. It is, however, an SMF bug combined with insufficient permissions.
Don’t try to tell me that some power can corrupt a person. You haven’t had enough to know what it’s like.

No good deed goes unpunished / No act of charity goes unresented.

Offline eattheword

  • Semi-Newbie
  • *
  • Posts: 12
Re: Simple Machines Forums attacks
« Reply #143 on: April 06, 2011, 06:27:58 AM »
Not sure whether I can post a follow up question here then...  :-\

Should I PM Arrantor?

As far as permissions go, the Sources directory is 777 and the files are 755.

Offline Illori

  • Project Manager
  • SMF Legend
  • *
  • Posts: 51,052
Re: Simple Machines Forums attacks
« Reply #144 on: April 06, 2011, 06:36:33 AM »
as i said before please open up a support thread in the proper board this is not the place for this discussion.

kat

  • Guest
Re: Simple Machines Forums attacks
« Reply #145 on: April 08, 2011, 06:24:13 AM »
Actually, for the reasons that Arantor's pointed-out, it was me that directed eattheword to this topic.

Under the circumstances, it seemed the best place.

Offline Dream Portal

  • Semi-Newbie
  • *
  • Posts: 10
Re: Simple Machines Forums attacks
« Reply #146 on: April 29, 2011, 02:44:47 PM »
Forum Firewall seems to help best. In My opinion.

Offline Kindred

  • The Mean One
  • Support Specialist
  • SMF Legend
  • *
  • Posts: 58,339
  • Gender: Male
    • Kindred-999 on GitHub
Re: Simple Machines Forums attacks
« Reply #147 on: April 29, 2011, 02:52:04 PM »
you are a month out of date...
Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

Offline live627

  • Development Contributor
  • SMF Hero
  • *
  • Posts: 5,620
  • Gender: Male
    • live627 on Facebook
    • live627 on GitHub
    • live627 on LinkedIn
    • @live627 on Twitter
    • livemods
Re: Simple Machines Forums attacks
« Reply #148 on: April 29, 2011, 03:09:51 PM »
Elaborate... how is forum firewall out of date, exactly?
Try not to become a man of success, but rather try to become a man of value.
- Albert Einstein

Offline Kindred

  • The Mean One
  • Support Specialist
  • SMF Legend
  • *
  • Posts: 58,339
  • Gender: Male
    • Kindred-999 on GitHub
Re: Simple Machines Forums attacks
« Reply #149 on: April 29, 2011, 03:12:40 PM »
no, the comment on the attacks is a month out of date (and was made to hit a post count)
Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

Offline live627

  • Development Contributor
  • SMF Hero
  • *
  • Posts: 5,620
  • Gender: Male
    • live627 on Facebook
    • live627 on GitHub
    • live627 on LinkedIn
    • @live627 on Twitter
    • livemods
Re: Simple Machines Forums attacks
« Reply #150 on: April 29, 2011, 03:30:15 PM »
See, that wasn't so hard, was it? To post a bit more details in the first place.
Try not to become a man of success, but rather try to become a man of value.
- Albert Einstein

Offline butchs

  • SMF Hero
  • ******
  • Posts: 1,728
  • Lost 7GB bandwidth!
    • EastCoastRollingThunder
Re: Simple Machines Forums attacks
« Reply #151 on: April 29, 2011, 08:42:28 PM »
Ah come on, maybe he was simply posting an opinion.  Only when I created Forum Firewall did my bot bandwidth problem disappear.  I decided to share it with the SMF community.  I tested it for months before doing so.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

Offline live627

  • Development Contributor
  • SMF Hero
  • *
  • Posts: 5,620
  • Gender: Male
    • live627 on Facebook
    • live627 on GitHub
    • live627 on LinkedIn
    • @live627 on Twitter
    • livemods
Re: Simple Machines Forums attacks
« Reply #152 on: April 29, 2011, 08:52:02 PM »
Maybe. But as has been said a few replies up the person behind that duplicate team account made eleven posts and vanished. Sensible, yes. Such is what happens when one posts to get rid of the profile limitations.
Try not to become a man of success, but rather try to become a man of value.
- Albert Einstein

Offline Sarah Jo

  • Newbie
  • *
  • Posts: 1
Re: Simple Machines Forums attacks
« Reply #153 on: May 02, 2011, 03:02:23 AM »
Thanks for the inforamtion

Offline sharks

  • Sr. Member
  • ****
  • Posts: 891
  • Gender: Male
  • There's always a way.
Re: Simple Machines Forums attacks
« Reply #154 on: May 09, 2011, 07:41:41 PM »
I have to say this is piss poor effort to just warn users and in this process force all of us to upgrade to 2.0 RC5. I am using 1.1.13 on all my forums and i definitely do NOT want to upgrade as i have too many custom paid mods and manual edits. Most of these mods are not available for RC5, along with all the custom themes and manual edits which i have no idea how to work out on 2.0 RC5. Why not make the process easier for all of us still on the 1.1.x line by providing a fix in 1.1.14? That would definitely help to make me believe again in SMF. I am currently at the tipping point of moving to IPB, permanently.
The fix would provide a hard-coded method of blocking the most obvious pathways used by spammers. Spam affects all forums, not just SMF, so i believe it should be a default protection provided in the basic install package when setting up a brand new forum. Since it appears not to affect RC5, then we should not leave all the thousands of SMF 1.1.x users hanging in distress and uncertainty.

BTW, when i saw the new look on this site's homepage, i thought for half a second "could it be...." and then i went back to my normal self, seeing that 2.0 final was not released. I then read the spam article to feel even more disappointed. Thanks SMF for ruining my day, twice!
SMF 2.0 Theme Color Editor
http://www.colorizeit.com/browse/24/smf-20-themes.html

SMF Package Parser to view all edits made by any modification package:
http://resourcez.biz/PackageParser/

Firefox is the best browser for SMF!
http://www.mozilla.com/en-US/firefox/fx/

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: Simple Machines Forums attacks
« Reply #155 on: May 09, 2011, 07:53:49 PM »
Dev Blog Post
I have to say this is piss poor effort to just warn users and in this process force all of us to upgrade to 2.0 RC5. I am using 1.1.13 on all my forums and i definitely do NOT want to upgrade as i have too many custom paid mods and manual edits. Most of these mods are not available for RC5, along with all the custom themes and manual edits which i have no idea how to work out on 2.0 RC5. Why not make the process easier for all of us still on the 1.1.x line by providing a fix in 1.1.14? That would definitely help to make me believe again in SMF. I am currently at the tipping point of moving to IPB, permanently.
The fix would provide a hard-coded method of blocking the most obvious pathways used by spammers. Spam affects all forums, not just SMF, so i believe it should be a default protection provided in the basic install package when setting up a brand new forum. Since it appears not to affect RC5, then we should not leave all the thousands of SMF 1.1.x users hanging in distress and uncertainty.

BTW, when i saw the new look on this site's homepage, i thought for half a second "could it be...." and then i went back to my normal self, seeing that 2.0 final was not released. I then read the spam article to feel even more disappointed. Thanks SMF for ruining my day, twice!

Offline Illori

  • Project Manager
  • SMF Legend
  • *
  • Posts: 51,052
Re: Simple Machines Forums attacks
« Reply #156 on: May 09, 2011, 09:13:32 PM »
I have to say this is piss poor effort to just warn users and in this process force all of us to upgrade to 2.0 RC5. I am using 1.1.13 on all my forums and i definitely do NOT want to upgrade as i have too many custom paid mods and manual edits.

if you took the time to read, you would see that the same patch that is in RC5 for this attack is in 1.1.13 upgrade, so you dont need to upgrade to RC5 at all to get this patch.

Offline Crip

  • SMF Friend
  • SMF Hero
  • *
  • Posts: 3,139
  • Gender: Male
  • C-4 QUAD
    • Cripzone
Re: Simple Machines Forums attacks
« Reply #157 on: May 11, 2011, 01:49:25 PM »
SMF must be on steroid's today .. loading pages is super Quick ATM! ;D
I have become comfortably numb!


I remember my mother's prayers and they have always followed me.
   - Abraham Lincoln -


TOTM Winner. | Demo Site1on1 Theme Support

Offline flapjack

  • SMF Hero
  • ******
  • Posts: 2,615
  • Gender: Male
  • I pity the fools!
Re: Simple Machines Forums attacks
« Reply #158 on: May 11, 2011, 05:59:21 PM »
I have to say this is piss poor effort to just warn users and in this process force all of us to upgrade to 2.0 RC5. I am using 1.1.13 on all my forums and i definitely do NOT want to upgrade as i have too many custom paid mods and manual edits.

if you took the time to read, you would see that the same patch that is in RC5 for this attack is in 1.1.13 upgrade, so you dont need to upgrade to RC5 at all to get this patch.
don't feed the troll

Offline live627

  • Development Contributor
  • SMF Hero
  • *
  • Posts: 5,620
  • Gender: Male
    • live627 on Facebook
    • live627 on GitHub
    • live627 on LinkedIn
    • @live627 on Twitter
    • livemods
Re: Simple Machines Forums attacks
« Reply #159 on: May 11, 2011, 08:02:54 PM »
Oh? He can't feed himself?
Try not to become a man of success, but rather try to become a man of value.
- Albert Einstein