Update of the forum

Post by **Fnordia** » 07 May 2005, 21:24

It seems that critical security issues have been found in phpbb yet again, so the forums will be offline for a little while until they are updated.

Edit: All done.

Buggi · Post by **Buggi** » 07 May 2005, 21:35

<--- recommends ASP forums ^_^

And why don't the forums tack on my signature? Box is checked, set in profile, etc etc...

Post by SJ » 07 May 2005, 21:44

Because we wanted a forum of usefull text not repeated signatures.

Buggi · Post by **Buggi** » 07 May 2005, 21:53

Makes sense :D

AF · Post by AF » 07 May 2005, 21:56

ASP forums and PHP forums both suffer fromt he fact that they're on computers, and thus will always have some form of exploit. The onyl solution I can think of is for fnordia to take the server offline rendering the forum safe and sound while we're unable to post.

I welcome a forum that needs patches like this, it shows that they're still worried about security.

PauloMorfeo · Post by **PauloMorfeo** » 09 May 2005, 00:46

As far as i know, the server is running an Apache web server.

I don't know how easy it is to set up Apache to run ASP pages but i think it can be made.

ASPX pages, however, i don't know if there is a way for those to be hosted...

And,

Fnordia wrote:... critical security issues ... yet again...

looks like more than random attacks as i know more famous PHPbb forums that don't have such problems and they often don't even have updated PHPbbs...

jouninkomiko · Post by **jouninkomiko** » 09 May 2005, 01:50

apache wont ever natively run asp, or asp.net pages. you have to buy software that does it, like chilisoft used to make. or you can use IIS. nuff said

Liam · Post by **Liam** » 09 May 2005, 20:40

and in what way is asp more secure than php? plus the first time the site was hit by a WORM, not a person. and this time i don't think anyone touched it, there was just a critical update issued before it became a problem.

AF · Post by AF » 10 May 2005, 07:26

A worm that somehow wiped the public forums btu nto the SY's Dev forums, took away our post counts but not theres, and strangely enough left on of ghurkas posts intact?! Even though the major worms capable fo damaging this forum at the time where those such as Santy which left defacement messages which where never saw?

jouninkomiko · Post by **jouninkomiko** » 10 May 2005, 07:33

i think its time someone confessed to manually removing alantai's post count the first time around. CONSPIRACY

Liam · Post by **Liam** » 10 May 2005, 16:23

Fnordia's name backwards is aidronF, i don't really think i need to say more.

Post by **Fnordia** » 13 May 2005, 00:02

I patched the board in time before the widespread phpbb worm attack so that didn't affect anything.. The board wipe was someone manually using a new exploit that gave anyone admin privilegies.. And this update was also just preventive, I subscribed to the phpbb mailing list after the last one. :)

Spring RTS Engine

Update of the forum

Update of the forum