Jump to content

Recommended Posts

I just got this morning message that account is suspended for a PHPBB attack which caused excessive load on server.

I've send support ticket to abuse department but what to do against such a attack?And what i can do to prevent this happend in future?

 

btw

 

I hope that account should be open soon.

Link to post
Share on other sites

I think that i know what may be problem.So i hope to get response soon on my ticket that i send a 2h a go.

I use old 2.0.4 board that is hardly modify with many hacks.Many hack make many queries and it make a huge load on server if 30 - 40 people are on forum.

I need soon possible opening accoutn again and then soon disabling of old board (just copy my description of my forums) and then switch to new board.And i hope there will be not anymore huge load.

2h is long.Hope to get response soon on my ticket.

 

Thanks

Edited by Make
Link to post
Share on other sites

You should upgrade your phpBB instalation to the latest version. Also keep an eye out for new versions, so you can upgrade as soon as possible. phpBB has had version 2.0.13 released very shortly after 2.0.12 due to a serious discovered security flaw. Ideally, you should sign up for their mailing list or forum so you'll be automatically notified of new releases and security issues.

Link to post
Share on other sites

KIndlythanks Bill for fast response.

I see from log that you send to me that only one ip make a problem (99% ).Does it mean that site was under Ddos of Flood attack?

And what to do ro prevent this happening again.I've already blocked ip in my .htaccess but how to protect myself from this issues?

Edited by Make
Link to post
Share on other sites

Make, as others have mention you NEED to upgrade to the current version. See this post:

http://www.totalchoicehosting.com/forums/i...ndpost&p=117184

 

Just blocking the IP that caused the initial attack is not enough. That attacker may get a new IP and come back or another attacker may find you. The only sure way to be safe is to upgrade your version.

Link to post
Share on other sites

As explained in other threads, being pro-active instead of re-active is always a good thing. (In other words, beat the attackers in securing your site before they beat you!)

Link to post
Share on other sites

Thanks for you replies guys.I did a lot today.

Disabled old board, installed new board with a couple security hacks(one is for blocking worms and Dos attempts),

make a accessing to board via .htaccess/.htpasswd and openly given

login and pass.It is just extra protection from some malicious spammers/robots and some brute forcing programs.

I hope that it will be now good to block some attacks.

However i'm avare that against seriosly attack using hundred zombie pc

do not exist good defense except turn your pc off.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...