How is VB3's security (and, any tips on security in general?)

Filed under:hznp.com — admin @ January 9, 2009 edit
  • Hello, I work as a semi-admin-like figure at http://www.hmotaku.net over the course of time it's been released; we've had trouble-makers hacking our site and forums due to the fact they threatened to "hack us if we banned them." Our host is relatively useless on this issue and we plan to move soon.

    This is ridicoulous, we cannot ban anyone who disturbs the forums without being hacked in some form. Im wondering if VB3 will have any improved security; and for those with websites > is there anything we can do in regards to hackers and security?

    Thanks.


  • Unless the hackers have direct access to your server I would doubt an attack is very possible.

    You can setup an .htaccess for your admincp to only allow connections from your IP address, as well as provide a username and password along with what vBulletin already does. :)


  • Well, first off, no one would be able to hack you if your forums were secured properly using .htaccess on the admin and moderator control panels. You do not have that in place.

    Even with that vBulletin 3 only allows 5 logins before blocking an IP for 15 minutes making a brute force attack more difficult. It also has strict limitations on the variables that may be passed to any page. Overall the security is much improved but it still relies on the security of the server as well.







    • #If you have any other info about this subject , Please add it free.#
    Your name:
    E-mail:
    Telphone:

    Your comments:


    If you have any other info about How is VB3's security (and, any tips on security in general?) , Please add it free.
    end