Register Members List Search Today's Posts Mark Forums Read

Closed Thread
 
Thread Tools
  #1  
Old 29 May 2011, 15:33
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Real name: Lynne
Yesterday's brute force attempts at password hacking

Yesterday afternoon, it seems there was somebody (or a group of somebodies) who decided to try to brute force their way to hacking vbulletin.org user accounts. Several of you got emails about being locked out of your accounts after the five attempts were made. Unfortunately, there is no one IP, or even an IP range, that we can block to stop this as the IPs came from all over.

I would strongly suggest that users change their passwords. You should pick a password that is at least fourteen characters long and utilize both lower and upper case letters as well as numbers and other keyboard characters

There is a password generator here that you may use to create a random, strong, password - http://strongpasswordgenerator.com/
__________________
Former vBulletin.org Staff Member

Try a search before posting for help. Many users won't, and don't, help if the question has been answered several times before.
W3Schools -
Online vBulletin Manual
If I post some CSS and don't say where it goes, put it in the additional.css template.
I will NOT help via PM (you will be directed to post in the forums for help.)
  #2  
Old 29 May 2011, 17:42
wraggster wraggster is offline
 
Join Date: Mar 2005
ahh i wondered why i got the message, my site had been hacked recently and we have introduced a heck of a lot of new security measures and ive made my passwords 30 chars long.

Thank god it wasnt just me
  #3  
Old 29 May 2011, 18:12
gamerzhut gamerzhut is offline
 
Join Date: Jan 2010
But what happened to me was different, even after entering the right password it said incorrect. After 15mins i got the account locked email . .But i manually entered my password for all the 5times.
  #4  
Old 29 May 2011, 18:46
AdrianH AdrianH is offline
 
Join Date: Sep 2007
Originally Posted by gamerzhut View Post
But what happened to me was different, even after entering the right password it said incorrect. After 15mins i got the account locked email . .But i manually entered my password for all the 5times.
Then you should PM an admin for help.
  #5  
Old 29 May 2011, 19:28
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Originally Posted by Lynne View Post
Unfortunately, there is no one IP, or even an IP range, that we can block to stop this as the IPs came from all over.
You can block the useragent and other aspects with vB Bad Behavior.
  #6  
Old 29 May 2011, 19:37
Adem GENÇ's Avatar
Adem GENÇ Adem GENÇ is offline
 
Join Date: Apr 2005
Real name: Adem GENÇ
I got the email
The person trying to log into your account had the following IP address: 196.1.70.202
Now I changed my password, vbulletin.org & vbulletin.com
Now my passwords 33 characters
  #7  
Old 30 May 2011, 01:00
Lumina's Avatar
Lumina Lumina is offline
 
Join Date: Sep 2002
Originally Posted by Lynne View Post
I would strongly suggest that users change their passwords. You should pick a password that is at least fourteen characters long and utilize both lower and upper case letters as well as numbers and other keyboard characters

There is a password generator here that you may use to create a random, strong, password - http://strongpasswordgenerator.com/
Dear administrator,

1) vbulletin.org Lost Password Recovery Form generates base 10 only passwords (0-9), 8 characters long. PHP suggests the following characters for higher bases:
*base 16: (0-9, a-f)
*base 32: (0-9, a-v)
*base 64: (0-9, a-z, A-Z, "-", ",")
You should adopt the base 64 for generated passwords and make it 16 chars long.

2) Wysisyg mode on Google Chrome will prevent you from replying to this thread and your message will be lost. I had to write it again.
__________________
Lumina, aventurière des mondes fantastiques
Traductrice pour la version française de vB3
Jeux Online - vBulletin Francophone - Coeur Lumière
  #8  
Old 30 May 2011, 01:43
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Real name: Lynne
Originally Posted by Lumina View Post
Dear administrator,

1) vbulletin.org Lost Password Recovery Form generates base 10 only passwords (0-9), 8 characters long. PHP suggests the following characters for higher bases:
*base 16: (0-9, a-f)
*base 32: (0-9, a-v)
*base 64: (0-9, a-z, A-Z, "-", ",")
You should adopt the base 64 for generated passwords and make it 16 chars long.
You should not be keeping the generated password. You should only use it to login and then you should be setting it yourself.
__________________
Former vBulletin.org Staff Member

Try a search before posting for help. Many users won't, and don't, help if the question has been answered several times before.
W3Schools -
Online vBulletin Manual
If I post some CSS and don't say where it goes, put it in the additional.css template.
I will NOT help via PM (you will be directed to post in the forums for help.)
  #9  
Old 30 May 2011, 11:08
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
82.145.242.38
201.22.130.226
120.136.20.91

Those are the IPs I got for my old "Revan" account, in case you wanted to ban them or write them down or whatever


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
  #10  
Old 30 May 2011, 18:58
qryztufre qryztufre is offline
 
Join Date: May 2005
The person trying to log into your account had the following IP address: 200.181.109.18

add this IP to the list...
  #11  
Old 30 May 2011, 19:18
G0F0RBR0KE's Avatar
G0F0RBR0KE G0F0RBR0KE is offline
 
Join Date: Mar 2005
Real name: James
201.41.166.59

This is the IPs and they are from Brazil!

I was like "What the heck is this?"

I decided to review my account. Thanks for the headsup.
__________________
http://vb-spanish.com is releasing soon (help will be appericated).
  #12  
Old 30 May 2011, 19:33
Adrian Schneider's Avatar
Adrian Schneider Adrian Schneider is offline
 
Join Date: Jul 2004
Mine was from a proxy...

Fortunately, vBulletin throttles login attempts so it's pretty hopeless trying to hack through the applications login functionality.
  #13  
Old 30 May 2011, 19:42
Marv Marv is offline
 
Join Date: Jun 2002
Lynne,
do you know a mod, where the minimum password length could be altered? I thought I´d seen something like that, but I can´t find it anymore..
  #14  
Old 30 May 2011, 22:09
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Real name: Lynne
Originally Posted by Marv View Post
Lynne,
do you know a mod, where the minimum password length could be altered? I thought I´d seen something like that, but I can´t find it anymore..
I do not know of one, but I've never looked for one either.
__________________
Former vBulletin.org Staff Member

Try a search before posting for help. Many users won't, and don't, help if the question has been answered several times before.
W3Schools -
Online vBulletin Manual
If I post some CSS and don't say where it goes, put it in the additional.css template.
I will NOT help via PM (you will be directed to post in the forums for help.)
  #15  
Old 01 Jun 2011, 20:23
SuperTaz's Avatar
SuperTaz SuperTaz is offline
 
Join Date: Apr 2007
Real name: Jeremy
Is it possible to set up login so everyone uses their email address to sign in rather than their display name? It helps on other large corporate sites that have forums.
__________________
Global Gamers
My Modifications
Closed Thread



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 02:32.

Layout Options | Width: Wide Color: