Welcome to Geeklog, Anonymous Wednesday, August 17 2022 @ 03:12 am EDT

Geeklog Forums

Block for new phpBB exploits

Status: offline


Site Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
It seems like the script kiddies have learned about the latest problems in phpBB (and if you're running phpBB, make sure to upgrade to phpBB 2.0.17 ASAP or at least apply the patch).

We're seeing a significant amount of requests to the forums that end in something like
Text Formatted Code

This is an attempted exploit of the bug in phpBB and will, of course, not affect Geeklog's forum plugin. It will, however, affect those running the phpBBBridge (unless you're on phpBBBridge 1.02, which already includes phpBB 2.0.17) since you're effectively running phpBB. And for the rest of us, it's a nuisance and increases server load.

So here's a simple extension to the previously posted set of rules to block the Santy and Spyski worms:
Text Formatted Code
RewriteEngine On
RewriteCond %{QUERY_STRING} ^(.*)\.system\((.*) [OR]
RewriteRule .* - [L,F]


bye, Dirk

Status: offline


Forum User
Registered: 01/08/06
Posts: 24
Hi, I installed the phpbbbridge plugin about 3 weeks ago, I think it was an older version using phpBB 2.0.15. Is there a way to upgrade safely or will I have to do a full clean install?
I want to install the new phpbbbridge 1.06.



Status: offline


Forum User
Full Member
Registered: 07/06/02
Posts: 324

There are upgrade instructions included with the 1.06 package, which includes phpbb 2.0.19. If you have difficulties w/the upgrade, you may want to post the question over at http://demo.turias.net.
-- destr0yr
"I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams

All times are EDT. The time is now 03:12 am.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content