"A user from the IP 222.1.43.10 has logged in to the following accounts: Administration, barthold"
Firstly, "Administration" is member #2, which I believe was the original username used to setup the software many moons ago...but the IP addys listed under that name simply show the 127.0.0.1, which iirc, was changed to all users during an update/import several versions ago.
A quick google of barthold's email (nothingdif@gmail.com) pops up on the "stop forum spam" list, with the same username/email (but different IP) as was registered at our site.
So, can anyone explain how/why I got the alert? Is this user definitely a spammer? Do I need to boot/ban him, and do something with the "Administration" account?
Express Hosting
"We are the official hosting company of UBB.threads. Ask us about our free migration services to migrate your UBB.threads installation."
We have switched to cPanel and have started getting reports of hacker attempts. We only get the IP address, which isn't enough, so I am gonna start a new suggestion thread on cPanel to report what user name was attempted and password used in each attempt.
As SD has said, this is serious. You might want to prowl around in your use group and make sure that the one who broke into your system didn't leave anything behind as a back door in case you discovered what they had done.
A couple of weeks ago we also had small hack. Our site was closed and had a "hacked by 'some hackuser name'" message on the offline-page. All admin's changed their password (also for ftp-acces). A couple of weeks later our ftp-root was empty after another hacking attempt. If you (sirdude) want to have the logs on this hacking attempt you can mail me. We still don't know where he came in, but since then we have an extra password (via helm control panel) on our admin-directory.
btw: we now have the latest ubb bug/security-fix installed
thats a hack attempt and can be very serious... you need to address the issue and change passwords for Administrator..
also i'd really change the login name for all admins to NOT be same as display name..
that's my #1 rule for all admins..
look @ your ubb admin log for suspicious activity..
Dumb question, but is it possible to change one's username? Having had the same username across several sites for over a decade now, I'd hate to change my display name, and I would be the other admins will object as well...
You could by database diving... Not sure why this isnt in the control panel though...
You know in light of what has recently happened with the release of the security patch. It should be a option to request and have changed just like the change display name process works. Then a user could keep the display name or vise versa. Maybe SD will read this.
I agree, an option for any forum member to change their User name (as opposed to Display name) would be a nice added feature. This is something that need not be subject to any admin/moderator approval.
It would allow for those who created an account with the same user/display name to think better of it and introduce a little added security.
It should be in showflat.tpl. But as SD said, you will need someone with shell access to find the new hidden files that will add this back after you remove it.
It should be in showflat.tpl. But as SD said, you will need someone with shell access to find the new hidden files that will add this back after you remove it.
LOL, now ya tell me! I found it right after I posted above, but thanks for the confirmation!
Just as a note to myself, here's the code that was dumped in the header:
Yeah, I ran across that earlier and filled out the info, but a quick Google(!) search reveals that it doesn't seem anyone ever receives a reply from Google regarding this issue...so I was hoping someone knew of a better way, lol!
And the folks at Google AdSense don't do phone calls, either...unless you consider a looped recording a "resolution".
you, 
Previous Topic
Index
