"phpBB mass-hack being prepared (FuntKlakow-bot)?- general countermeasures
During the last few days a bot using a name FuntKlakow, has been
registering to at least hundreds (maybe thousands) of phpBB forums.
http://www.google.com/search?hl=com&q=F ... tnG=Hae&me ta=
Bot is also capable for posting to forums:
http://forum.uebimiau.org/search.php?se ... =FuntKlako w
http://www.alternativ.ro/forum/search.p ... uthor=Funt Klakow
But most on most forums the bot keeps silent.
Ok, what is a danger?
Next time the phpBB announces a critical vulnerability, the bot would
have everything ready (just a post click away) from attacking
thousands of sites/forums.
Best defence against these kinds of bot-members, might be setting up
honeypot-forums, which the search engines can find but to which there
are no permanent links from the web. When new bot-members are
detected, such would be listed at each particular forum makers
homepage.
When a bot would then try to register to a forum, the forum program
would check the user/bot inputted user-name (or other characteristics)
and if those would match to those catched by a honeypot-forums,
registerin such user detais would be eliminated ( and possible IP
banned for some time)
Juuso Hukkanen"
It is currently Fri Jun 06, 2025 2:37 pm
To All PHPbb Forum Owners!!!!
Moderators: The Administrators, Moderators
11 posts
• Page 1 of 1
by Mewberries151 » Sun Apr 09, 2006 10:50 pm
I took care of it, Angelbolt. The one in Site Discussion has been locked.
Jeremy, regardless of your good intentions, posting a topic twice is still needless and spamish. People will see your topic. Believe me, forum owners that are at LF likely check Tech Discussion often.
Please don't make double topics though again, regardless of the situation or the intention. It is still spam and the action of creating spam completely negates the help you're trying to give.
The warning is appreciated but, please, don't double post, alright?
Jeremy, regardless of your good intentions, posting a topic twice is still needless and spamish. People will see your topic. Believe me, forum owners that are at LF likely check Tech Discussion often.
Please don't make double topics though again, regardless of the situation or the intention. It is still spam and the action of creating spam completely negates the help you're trying to give.
The warning is appreciated but, please, don't double post, alright?
"Hey, make up your mind. Am I a genius or a creep?"
"You're a creepy genius."
-Odd and Jeremie; "Cruel Dilemma", Code Lyoko
Icon made by boxofdoomage @ LJ
"You're a creepy genius."
-Odd and Jeremie; "Cruel Dilemma", Code Lyoko
Icon made by boxofdoomage @ LJ
by Evil Jeremy » Mon Apr 10, 2006 2:38 pm
oh dear. one of my forums is already infected. i dont understand how to fix it. can someone please give me a better discription?
CLE Cinematic Trailer 1: http://www.youtube.com/watch?v=8KNFjGIlEuY&feature=plcp
CLE Cinematic Trailer 2: http://www.youtube.com/watch?v=w7LbKEweV_8
CLE Cinematic Trailer 2: http://www.youtube.com/watch?v=w7LbKEweV_8
by Evil Jeremy » Mon Apr 10, 2006 2:52 pm
but i dont understand the way to get rid of it at all! can somebody help me please? also, the bot-user said things like "I agree with that" and "couldnt of said it better". was it programed to say that?
CLE Cinematic Trailer 1: http://www.youtube.com/watch?v=8KNFjGIlEuY&feature=plcp
CLE Cinematic Trailer 2: http://www.youtube.com/watch?v=w7LbKEweV_8
CLE Cinematic Trailer 2: http://www.youtube.com/watch?v=w7LbKEweV_8
by darktemplar » Tue Apr 11, 2006 2:11 am
Can I just deny creating user with name FuntKlakow and prevent bot attack?
Darktemplar is Back
Now doing: eee... something that looks and talks like a forum!
Now doing: eee... something that looks and talks like a forum!
11 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 2 guests
