What happened >=(
We installed SMF 2.0 RC1.
There was a death.
Quote from: Super on May 08, 2009, 08:51:19 PM
We installed SMF 2.0 RC1.
I know that.
Customrobo left Silver a facebook message and I thought something happened :robotangry:
Supposedly, a bot came in and messed with all of the PHP files.
So many things were intercourse ed up that we had to reinstall the forums and other things.
But we're back in black.
And it wasn't even Silver's fault!
Quote from: Kierou on May 08, 2009, 08:57:30 PM
And it wasn't even Silver's fault!
That's still being speculated.
Quote from: Super on May 08, 2009, 08:55:01 PM
Supposedly, a bot came in and messed with all of the PHP files.
So many things were intercourse ed up that we had to reinstall the forums and other things.
But we're back in black.
Bots just don't "mess" with PHP files.
I'm guessing some idiot ignored my thread a few weeks ago about not upgrading to 1.1.8.
http://www.nsfcd.com/forums/index.php?topic=31064.msg460862
Oh look, what is this?
Quote from: JMV on April 02, 2009, 05:23:50 AM
It fixes a XSS vulnerability if I recall correctly.
What did Vaatix say the problem was?
Quote from: VaatixGanon on May 02, 2009, 03:46:37 AM
Somehow, and I don't know how, a vulnerability was exploited in SMF that allowed an off-site script to be run which injected malicious code in to most files on our account. As a result of not being able to pinpoint the exact location of the vulnerability, I was forced to make a decision - Leave the forum half working with a possible vulnerability, or overwrite the files with a replacement set...
hurp durp ignore JMV he doesn't know what he's talking about.
The arcade is missing!
>:(
See the announcment board. And IIRC, we did upgrade to 1.1.8 and still got intercourse ed.
Yes, we were on 1.1.8 at the time of the malicious code "infection". So JMV didn't prove anything.