lincolnsofdistinction.org suspicious site

driller

El Presidente
maybe something needs to be updated once a year :)
First thing I thought. I know it is a recurring theme at work with our IT department. LOL :)

Seriously, I looked and nothing needed renewed? :confused:

Maybe I should inquire with our web host provider.
 

driller

El Presidente
Maybe I should inquire with our web host provider.
As I feared. Apparently the site is infected with malware... again. :mad:

Of course it is all due to 'outdated software'... they say it should be updated. :mad-tilt:

Isn't this is like your mechanic telling you to upgrade to a new car cause your old one keeps breaking down and he doesn't want to work on it any more? :eek:
 

tixer

Lincoln Evangelist
Have they said anything about what this "malware" is? Or the attack vector? Or the impact? It's obviously something to address, but I wonder how we're getting hit, and how so few people here seem to be affected by it..
 

budpytko

Super Senior Associate
Would going to the SSL (secure site) help here. All of the IB auto sites are now protected by SSL and even my RV forum is because of the extra security it provides.
 

driller

El Presidente
I don't know if SSL would be any help.

Apparently the site was cleaned then was abruptly re-infected. :(
 

tixer

Lincoln Evangelist
So some component of the site obviously has a vulnerability. Are updates available? Do we have terrible passwords? :)

Hmm..
 

driller

El Presidente
So some component of the site obviously has a vulnerability. Are updates available? Do we have terrible passwords? :)

Hmm..
We are looking at the costs to upgrade vBulletin.

Here is some of the response...

Hi There,

I'm happy to let you know that your site is looking clean again.

...

We also recommend that all admin users scan their PCs for malware; a local compromise can lead to website access/infection.

I'm afraid we aren't able to do forensic analysis, but following the steps above should prevent further problems.

...

Thu 4/5/2018/9:15 AM UTC-04/...

... cleaned the site again ... .htaccess rules preventing firewall bypassing.

... confirmed the version of apache web server we run ... added rules... to prevent firewall bypass. ... tested ... rules and ...working.

I changed the ...password...

I changed the password to another ... account ...

...

The site appears to be clean now.
 

Mike P

c:enter
Staff member
its this software, its like anything else thats evolving, it needs updating all the friggin time. We just don't have a system for it. We have to get something going.
 

Mike P

c:enter
Staff member
I'm installing the new forum and doing updates. When it's ready I'm going to shut down posting to this one and move the database. Itll be finished sometime after Monday. Hopefully after that we can get the rating fixed.
 

tixer

Lincoln Evangelist
Score. Thanks Mike.

Let me know if I can help in any way other than reminding you of all the broken stuff once the new version comes on-line. :D

I really appreciate your work on this. These migrations are never fun, and rarely go smoothly. Thanks for enduring what you are about to endure...
 

Mike P

c:enter
Staff member
yea so, this color theme was purchased by the club some years ago and is not easily transferred over since changed their coding completely. This is gonna be a challenge :rolleyes:
 
Top