Hey guys my name is Sal(obviously) and i am a contributor to a website called boxing-central.com. in the recent month maliscous attacks have been taking place including turning the text from english to some type of arab and disabling almost all functionality inclusing the login module. Right now the entire website is down but because i am a .net programmer in my day job i know this is probably a security issue that has already been addressed and fixed in an updated version or so i would assume. like i said it is a php nuke product and i have a few questions perhaps someone would be able to help me with as i have just got involved with trying to save this website which often time affords me the benefit of free ringside seats to some pretty decent level pro boxing matches. so here goes:
1. assuming they have an outdated but liscenced(or whatever is necessary) copy of php nuke, are they allowed to simply download hot fixes and/or new releases at will as long as they have the old software?
2. is there a version or set of versions which are exceptionally open to an attack such as the one i have described? i will get the version number asap....
3. if this was happening to you, and i know full well that would be impossible because you guys seem so knowledgabel, what would you do to remedy this problem.
I know i am new to this forum and while i have no php experience i am a decent beginner to intermediate level web programmer as well as a high level javascript and html web developer so you probably wouldnt have to explain things to me a dozen times.
ill thank you in advance for any help i can get and the only thing i can really offer in return is some advertising on the site once it is back up and running. there is some possiblity that he may just simply turn the site over to me because he is getting sick and tired of all this crazy bullsh** so if that became the case i would have a lot more to offer in the way of some type of expanded partnership/advertising if anyone needs it. the site was averaging 10,000 hits about 6 months ago and ususally has about 100 people roaming in it at any given time so there is some good traffic there albeit much of it has eroded by now. but i know that could turn around very fast if we get fully functional again.
The first steps you should take are to download and install Nuke Patched and NukeSentinel (both of which can be found in our downloads, your Nuke version should be no lower than 6.5, if possible you should be at least at 7.0 level, last check the authors database table for any admin you might have not added yourself and delete them.
if im not mistaken i think it was version 3 point something. does that sound right? perhaps i am mistaken, but perhaps not as i cannot find any sites that look like our site but can find many that resemble this one.
i wish the site was up now so i could check but alas it is still down. i am still waiting for the 'webmaster' to get me that info. would your advise be the same if our version is in fact so much older than the ones you described?
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Latest: 
Visitation: 
