Announcement

User registrations are currently disabled due to high spam traffic.

#1 22/02/08 1:11pm

rollinroll
Moderator
Registered: 23/10/06
Posts: 1890

Update the forum?

I think an administrator should upgrade the forum to a newer version soon because there are many exploits, sql injections etc for low versions of PunBB. Just look at milw0rm.com they release exploits for public and anyone coud just search "Powered by PunBB 1.2.14" on google and easly hack forums like this. I mean this forum version was released for like 3 years ago.

Last edited by rollinroll (22/02/08 1:12pm)

Offline

 

#2 22/02/08 4:24pm

sfc2000
PSP-RATOR <(@..@)>
Registered: 24/03/07
Posts: 1830

Re: Update the forum?

lol punBB 12.16 is another security patch

punBB wrote:

keeping true to our promise of providing security updates for the 1.2 branch even though our focus right now surely is on 1.3, it is my pleasure to announce the release of PunBB 1.2.17. This update addresses two rather serious security vulnerabilities as well as a couple of other minor fixes and annoyances. PunBB 1.2.17 is a recommended update for all 1.2 installs.

Important! One of the vulnerabilities that were dealt with in 1.2.17 have to do with something called the cookie seed. The changes in 1.2.17 should protect you from the vulnerability, but we still recommend that you make one minor change to your installation to further harden your forum from attacks. To make the change, open up config.php and look for something along the lines of:

$cookie_seed = '5b16024c';

The seemingly random characters within single quotes will differ in your install. Now, either replace the random characters entirely or add a few extra characters to the end and/or the beginning of the string. You can use any characters you like. Avoid the single quote character though. When you're done, save and upload the file to your forum installation. The change will require users to re-login, but apart from that, everything should be the same.

Thanks to all the people who reported bugs and security problems

download link for punBB 12.17
http://punbb.org/downloads.php

Last edited by sfc2000 (22/02/08 4:26pm)

Offline

 

#3 22/02/08 4:57pm

rollinroll
Moderator
Registered: 23/10/06
Posts: 1890

Re: Update the forum?

Security patches are very important. Seriusly, someone could easly hack this forum with such old version installed.

Last edited by rollinroll (22/02/08 4:57pm)

Offline

 

#4 22/02/08 5:12pm

xtuper
Regular Member
From: http://pspstop.freeforums.org
Registered: 20/02/08
Posts: 46
Website

Re: Update the forum?

i know really. someone hacked my website too but i wont give names who did it, rollinroll, yeah so u should upgrade


My new website is www.pspstop.freeforums.org
Check it out!

Offline

 

#5 22/02/08 5:23pm

rollinroll
Moderator
Registered: 23/10/06
Posts: 1890

Re: Update the forum?

Yeah, and there will probably come a new PunBB update soon because a new exploit was discovered recently.

Offline

 

#6 22/02/08 5:52pm

xtuper
Regular Member
From: http://pspstop.freeforums.org
Registered: 20/02/08
Posts: 46
Website

Re: Update the forum?

pspflashgaming's firmware is a low version. update it.

rollinroll check ur PM


My new website is www.pspstop.freeforums.org
Check it out!

Offline

 

#7 22/02/08 6:03pm

rollinroll
Moderator
Registered: 23/10/06
Posts: 1890

Re: Update the forum?

It's not a firmware. It's the version of the forum.

Offline

 

#8 22/02/08 6:10pm

xtuper
Regular Member
From: http://pspstop.freeforums.org
Registered: 20/02/08
Posts: 46
Website

Re: Update the forum?

oh, yeah, thats what I meant

rollinroll check your private messages


My new website is www.pspstop.freeforums.org
Check it out!

Offline

 

#9 23/02/08 11:32am

sfc2000
PSP-RATOR <(@..@)>
Registered: 24/03/07
Posts: 1830

Re: Update the forum?

blazebyte got hacked once because they never updated smf 1.13 to smf 1.14

but now they have done the update big_smile

Offline

 

#10 05/03/08 5:35pm

tallphil
Banned
From: UK
Registered: 29/04/06
Posts: 823
Website

Re: Update the forum?

yeah, you're right - i should keep on top of it. Don't worry excessively though - the forum and entire userbase etc is backed up automatically every night so as long as someone tells me pronto I can just restore the site to its previous state before the hack.

Will look into updating it now.


PSP Flash Gaming creator

Offline

 

#11 05/03/08 6:05pm

tallphil
Banned
From: UK
Registered: 29/04/06
Posts: 823
Website

Re: Update the forum?

Ok done, it was a bit of a botch job as I had to replace some of the new files with old ones to preserve the custom coding that I've written into the forum - if you find anything not working as it should or acting odd please email me


PSP Flash Gaming creator

Offline

 

#12 05/03/08 6:22pm

JaXeRiR
Elite Moderator
From: Teh Interwebz
Registered: 25/03/07
Posts: 1925
Website

Re: Update the forum?

Powered by PunBB 1.2.17.

Great!


[url=http://profile.mygamercard.net/JaX3RiR][img]http://card.mygamercard.net/nxe/JaX3RiR.png[/img][/url]

Offline

 

#13 06/03/08 4:09pm

sfc2000
PSP-RATOR <(@..@)>
Registered: 24/03/07
Posts: 1830

Re: Update the forum?

its working fine so far


at least it won't get hacked as easily now

Offline

 

#14 27/04/08 3:07pm

nothing
Moderator
Registered: 21/03/08
Posts: 389

Re: Update the forum?

Yep. I haven't noticed any changes.


[url=http://pspflashgaming.com/forum/viewtopic.php?id=1078]BioShock[/url] PSP|fPS-Factor Released|[url=http://www.p22server.hostwq.net/index.html]p22 Center[/url]

I'm starting p22 again.

Offline

 

#15 04/06/08 8:04pm

jmc92
Member
From: west coast
Registered: 24/04/08
Posts: 15

Re: Update the forum?

same here


May the force be with you!
duel lightsabre
[img]http://www.resiststorage.org/images/pspnewb9.jpg[/img]

Offline

 

Board footer

Powered by PunBB
© Copyright 2002–2005 Rickard Andersson