Can any one tell me whether S C site is down,as I get a message forbidden :confused:

Same here Max. Seemed to go funny a little earlier and now appears to be offline.

Looks like yet another SERVER move - as the gallery works - kind of.

Or is it the end and an amalgamation.

according to a thread on .org it may have been hacked.

Possible - but very unlikely as VB is sound. If it has been hacked then all VB sites are vulnerable. I really hope not!

The cynic in me says it could be the time to get rid of it. However, if Steve backs up the database he should be able to recover it, as and when.

All works apart from the Forum if you have a browse:

Site - Gallery - Review - but no Forum.

EDIT: Have a look at the ORG homepage - Steve has turned it into a business enterprise which is fair enough - did XPF fit into this business plan I ask? In fact some of the ideas on that page are worth incorporating on a busy site.

looks like its had a face lift:D

As anticipated the site has been recovered and all todays posts erased.

Best

Sceptic Jerry :D

In fact - would like to say its very easy to blame a third party SADDO.......my guess its closer to home than that!

NB: Is the Gallery working properly now? The Admin teamed were blaming Photopost for a glitch when in fact there's nothing wrong with it.

vBulletin 3.6.5 is available to prevent

This morning, an exploit was reported, which affects vBulletin versions 3.5.x and 3.6.x. Although the report is inaccurate and the published exploit does not work as claimed unless a highly unlikely set of circumstances exist, it has highlighted a potential security issue in these vBulletin versions.

Therefore, we have decided to release updated versions, these being vBulletin 3.5.8 and 3.6.5. We recommend that all customers running vBulletin 3.5.x or 3.6.x upgrade to the appropriate version or apply the supplied patch as soon as possible.

It is worth noting that in order to exploit the problem highlighted by the report, the attacking user must satisfy the following conditions:

* Must already have moderator privileges
* Must share the same IP address (or the number of IP octets specified in the Admin Control Panel for IP address matching) with an existing administrator who is currently logged in to the Admin Control Panel
* Must know the Alt-IP and user agent (exact browser identification) of the administrator
* OR must know the license number of the site being attacked

Given these requirements, the privilege escalation exploit claimed by the report is almost impossible to achieve.

XPF is running VBullitin 3.6.4

Wasn't going to upgrade the sites when this patch was released. But I now will.

Just done the SV site - this one next. Will be done very soon.

So who would have hacked XPF - could be an internal job?

So who would have hacked XPF
I've got no idea.
could be an internal job?
for the sake of the MG community I hope not, but that would mean that VB is vunerable, which I'm lead to believe it isn't.

We are now running the latest Version.

In fact all Forums on this server are running the latest software:

www.wsr-fans.co.uk
www.xpower-mg.com/forum
www.sportscar-racing.com/forum
www.mgsv-club.co.uk/forum

We should start a Who done it thread to weed out the culprit-my guess is the X- Richardsons mechanic as he may have an AXE to grind :stirthepot:

We should start a Who done it thread to weed out the culprit-my guess is the X- Richardsons mechanic as he may have an AXE to grind :stirthepot:

Seasick,

That would be :stirthepot: I like your style, be my guest. But in sincerity I don't want to get involved. Too much water and all that!

I would suggest they install the VB patch ASAP though!:yltype:

"I don't want to get involved."

Yes i can understand that as you have your integrity to think about :rolleyes:
but surely you can coment on the spoty faced schoolboy whos in the frame-is he a red herring and is there more to the story?:eek:

What has been going on in my absence not more problems at the sc mill :D

Got the same problem.

It went pink during the day, now I can't login.

Got some message saying that it had changed servers, but still no joy so given up.

regards,
Patrick

I just logged in no dramas at all i would'nt mind betting that they have upset some it guru,and it's a big time revenge vendetta going to happen on both his sites,mind you i could be so far of the mark i could play rugby for england :p .

What has been going on in my absence not more problems at the sc mill :D

Would appear that his site was hacked.

Judging by the fix VB have produced its a known problem on 3.6.4 as per above post.

Could be anyone - but I think some of the speculation on here is close to the mark!

Well let's be fair the guy is not the most likable and some of the admin team are just sausage jockey's baying to his order's.so i would say you reep what you sow in life.

welcome back Byron where have you been?

welcome back Byron where have you been?

Hi Max been down to Winchester ATR for 2 week's training,i did leave a few clue's mind that i was away for a short while,so were have you been whilst i have been away not causing chaos eleswhere i hope :D .