WILL, you REALLY need to fix this ASAP. Your site is attacking your users *right now*. It's not a cosmetic issue; there's a malicious piece of code that your site is serving to your users every time they load the page. That forum thread on vBulletin.com tells you how to fix it.
If it were me, I would shut down the board until it is fixed.
Just FYI, I would suggest to everyone to blackhole the kokosina.in domain if you continue using this forum until it is fixed. (add the following line to your hosts file in the C:\windows\system32\drivers\etc directory:
127.0.0.1 kokosina.in
Note that this doesn't make browsing the site more secure, it just addresses the current hack. They can change it at any time to point somewhere else. You continue using the forum at your own risk.
Yep. That will work, too, for those who use FireFox, anyway.
Well that wasn't so bad. And it looks like they made a few improvements in the upgrade from 4.1.3 to 4.1.9. Also I've gone and added reCAPTCHA to the registration system to help prevent bots from spamming us so much. I really do hope that helps.
Anyhow enjoy your attack-free site!
BTW if I missed something (refresh the site cache to make sure!!!) please let me know. I know this sucks for Windows users as you get all kinds of crap sent to attack your systems and do nasty things to it so I will be looking closely at this over the next few days or so. Also I've asked AthenaOfDelphi to add the attacking script to be blocked via htaccess as well just to be sure.
You guys - I hate to re-mention this but you could just move over to linux it might not be entirely net attack proof but at least you can rest easy knowing that no virus or windows virus based attacks would work. Combine that with firefox and noscript as well as noflash and adblock and your pretty much golden.
I once tried to change the world. But they wouldn't give me the source code. Damned evil cunning.
You can also downgrade your Windows to version 3.1, where no modern virus will work or even better, shut down your computer entirely, after which you won't be vulnerable to any kind of computer attacks.
Seriously though, this is why for Afterwarp site we have moved away from vBulletin, for more than a year they did nothing to fight spam (PGD uses same techniques we've been using in vBulletin 3 for years), made their prices ridiculously high and even though you own permanent license they constantly nag you to renew, sometimes with death letters. Now this vulnerability has shown that vBulletin is poorly designed so that it technically allows these type of hacks. I would never use vBulletin again.
The irony behind vBulletin:
Server running free software, for the free and open source community running on free and open standards on PHP, the technology powering the freedom of the modern web...
I once tried to change the world. But they wouldn't give me the source code. Damned evil cunning.
Bookmarks