May
27
2009
--

phpBB Weekly #106: No Slap Like a Security Slap

Audio clip: Adobe Flash Player (version 9 or above) is required to play this audio clip. Download the latest version here. You also need to have JavaScript enabled in your browser.

Download MP3 Episode (38.5 MB)

Episode Duration: 42:02
On This Episode: Douglas Bell (Fountain of Apples), Micheal Cottingham (Techie-Micheal), and Paul Sohier (Paul)

Michael and Douglas are joined on this episode by an old friend, Paul Sohier, who is now on a new team: the Support Team. For obvious reasons, Micheal is pleased and Douglas a bit confused, but Paul explains that he’s been working in support longer than he’s been working with MODs, and has been enjoying the change of pace.

The MOD Team, however, hasn’t been standing still. Once again, a new release to talk about: AutoMOD has hit RC-1. Exciting, you bet, particularly since EasyMOD never made it out of beta! While it’s not approved for fully-stable use yet, AutoMOD is about to hit the big time, and we’ll continue to follow its progress over the summer.

Micheal mentions that this old blog post simply identifies possibilities that injections could be created by MODs if the authors aren’t careful–it does NOT list actual injection vulnerabilities in phpBB3! Beware the naysayers!

And for our main topic of discussion, a new phpBB.com blog post discusses the Gumblar and Martuz trojans, two trojans which track down your FTP credentials and then use them to trash your site(s). We go over the blog post and discuss what these trojans do, how they work, and how to keep yourself safe (hint: keep your antivirus definitions up-to-date!). Also be sure to keep regular backups of your site so that if it does get hacked (it may not be your fault if your site IS hacked), you can completely wipe the hacked site and start fresh. If your site has been hacked, use Unmask Parasites to do a thorough check once you’ve cleaned house.

The MOD of the Week is Posting Template by eviL<3, and the Style of the Week is Prospace by spaceace.

Be sure to join us on Saturday, May 30th, for David Lewis’ return to phpBB Weekly and important announcements about this show, as well as Douglas’ post-graduation attempts to stay awake!

Written by Douglas Bell in: Released Episodes | Tags: , , , , , , , ,

Copyright © 2007-2010 phpBB Weekly, some rights reserved under a Creative Commons License. Website powered by WordPress. Theme: TheBuckmaker. Background: Vlad Gerasimov.
Click here to view full copyright/legal attributions.