|
-
October 28th, 2005, 11:51 AM
#10
- Issue notice to all members saying board will be done for next Xhrs for routine maintance
- Take board offline
- If running on your local machine (not a remote host) make backups and format / reinstall everything on your machine. Ensure when reinstalling that you include a Firewall and up-to-date AVP (incase it is more than your forum which has been comprimised). This might still need to be performed if it is your account the person has gained access to - tho it might just be me being overly paranoid
- Kill all other admin / mod accounts
- Change your admin password
- Kill current DB (mySQL?) user and create new one with different name / password (incase it is not forum but mySQL user which has been compromised
- Check forum software's website for any upgrades security patches
- Ensure server forum is running on is fully patched and upgraded
- Bring forum back online
- Start some form of logging procedure so you can find out exactly where an attack is coming from next time
- Start a routine backup procedure so should the worst happen again you dont lose much
- Ensure you keep up to date with all patches / fixes / upgrades
- Next time you post here try and include more information (where is frum running, what is it running on, what type of forum software is it, etc
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote