Message Board
Login / Register

Found the problem.

Posted by Vimm on .
I caught the culprit in the act at 3:40 today and was able to log the exact query that was run. It worked pretty much as I suspected and I've closed the hole. Appologies to 'zeldas warrior' for deleting the two posts you made this afternoon in the rollback. Hopefully that won't be necessary again and I'll be watching the query log for more attacks. So far this has been quite educational.

In reply to: Sorry about the lost posts! posted by Vimm on .
Sorry about all the posts that are gone. It looks like the boards were hit with a SQL injection attack which ruined a lot of posts so I restored from a backup. There have been bots visiting the boards the past few months (mostly just spamming) and while I've ignored them until now I guess it's time to kick them out. Hopefully the problem's fixed, but just in case there will be nightly backups of all databases taken from now on which I should've been doing anyway. While poking around I also fixed some small bugs and made some tweaks.


Replies:
Success!		 Vimm -- 8/24/2008 4:53 pm UTC
Re: Success!		 Tricob -- 8/24/2008 9:21 pm UTC