Forum main page hacked. Check here for updates?

[SaiyaJedi]

Hmmm... yeah well that seems to be logical... there are a LOT of idiot hackers on the net...But whoever did it I hope you (or Julian) will be able to fix it...

The fix is known (and now we know what it is), but Mike would need to be the one to do the fixin'. Hopefully sometime this week, free-time permitting. Right, Mike?

[Ero-Sennin]

O.o If you know the fix Julian and we're waiting for Mike, judging by his normal ammount of free time this may take a week or two.

Oh well, idiot script kiddies should have their fingers cut off SLOWLY, with a spoon.

No to throw my question what on earth is the exploit he used to get into the script for the forum? Or did he just brute force it?

[SaiyaJedi]

O.o If you know the fix Julian and we're waiting for Mike, judging by his normal ammount of free time this may take a week or two.

Oh well, idiot script kiddies should have their fingers cut off SLOWLY, with a spoon.

No to throw my question what on earth is the exploit he used to get into the script for the forum? Or did he just brute force it?

That, I don't know. But apparently, the code is hidden somewhere in the vicinity of the title / description of the DaizEX "General Discussion" board, hence its name disappearing when the forum got hacked. If Mike can fix that, it should be set to rights. I think.

[lost in thought]

It looks like it's time for me to make a more informed post, about this.

The fix is known

Unless Mike has devised a fix that I have not heard of, this 'fix' is no longer known. Sadly.

No to throw my question what on earth is the exploit he used to get into the script for the forum? Or did he just brute force it?

From the looks of things, it was not brute force. However, according to what Mike found server side, the person in question uploaded a few .bak files, which are definitely not part of the forum software. Mike took steps and removed them, as well as took steps to repair the damage, one evening, based on my suggestions. It does go without saying that it failed.

But apparently, the code is hidden somewhere in the vicinity of the title / description of the DaizEX "General Discussion" board

The pre-formatted HTML, and Javascript sits there, but where it is loaded from is still unknown. My current theory is that he may have inserted it within one of the database tables that are called when loading the index page.

As far as the damage goes, Mike has based on my suggestions attempted to mend the problem, but had found no change. The next time I speak to him, I'll mention to him to examine the table files of his mySQL database, for the forum, and see if the problem lies there. Before this though, I'll attempt to gather what databases are involved in loading the indexes code.
Hopefully this can be solved without having to re-install the forum entirely, but if worse comes, that may be the only alternative. Sorry I can't provide more promising information on the matter, but hopefully I can determine the problem myself, and give Mike the hope of not having to loose all of the posts. Unless Mike re-installs before I can discuss this with him further.

[Videl]

the message is stupid and who ever did that really has no life and will enter the gates of hell and he will suffer!!

[lost in thought]

the message is stupid and who ever did that really has no life and will enter the gates of hell and he will suffer!!

One, so Mike doesn't have to; we like proper grammar here, so it would be much easier on you to use proper punctuation and capitalize the first word of your sentence. Thanks.

Two, thank you for relating what everyone has already pointed out ad nauseum.

[Ero-Sennin]

An idea might be to compare the script between an unaltered version of the board, and the current script of this bored, a bit long winded but it may shed some light as to what said script kiddie did.

Though that said it's probably already been done...

On a second thought, might upgrading the board to the current script be an idea, but then again, like I said might of already been tried.

[ChaotixXero]

Hey guys...Is it safe to go to the index? >_> <_<

It was kinda creepy. I just click forum link thing and I see the death angel thing and I go "WTF? ?" Then I just checked out the site. >_>

[Schuby]

I fixed the main page for you guys. I'll update the software as soon as possible.

Those asking what he did:

He injected HTML code into the "Forum Description" cell of one of the main tables loaded. This causes Index.php to compile whatever is in that cell (Html, javascript, etc..) when the page is loaded because it's looking for the Forum Description.

Edit: Fixed general discussion link as well.

And next time please don't delete .bak's, they are generally backup files

Edit 2: Forum software is now 2.0.16

[*PINHEAD*]

Ya fixed it? Sweet. I was getting tiring to have to go through the main page, click the forum link, and jump from board to board (too lazy to bookmark).

[lost in thought]

An idea might be to compare the script between an unaltered version of the board, and the current script of this bored, a bit long winded but it may shed some light as to what said script kiddie did.

That's what Mike, and I, had been doing. It did fail, but one failure is a stepping stone on the road to success.

He injected HTML code into the "Forum Description" cell of one of the main tables loaded. This causes Index.php to compile whatever is in that cell (Html, javascript, etc..) when the page is loaded because it's looking for the Forum Description.

Thank's for pointing that out, Schuby. I would have gotten around to remarking on that, but I was busy for the majority of the day. Either way though, atleast everythings in working order again.

[VegettoEX]

Extreme thanks to Josh & Schuby. I would have eventually got around to fixing it, but this just makes it so much easier . We all deeply appreciate it from the depths of HFIL.