inherit
132863
0
Feb 11, 2012 7:45:26 GMT -8
lamiroy
43
October 2008
lamiroy
|
Post by lamiroy on Jul 28, 2011 0:37:53 GMT -8
Forum URL: lucianarchy.proboards.comYesterday we had some users who were getting a message they had been banned, where that wasn't the case. Most were able to log in normally after a while, but we still have at least one user who keeps getting the message that an error has occurred and that he has been banned, where he hasn't. I double-checked IP address, user name and email address. He has tried from different computers and from his iPhone, but all give the same error, even after clearing cache and cookies. This seems to indicate it's his user name that triggers the error. The username is 'racoon'. Thanks for any help you can offer. Manuel
|
|
#eb7100
1480
0
1
Apr 23, 2024 2:03:35 GMT -8
Craig
208,867
September 2001
cmdynasty
|
Post by Craig on Jul 28, 2011 1:10:06 GMT -8
Hi On all the computers and iPhone, was it all via the same connection? Craig
|
|
inherit
132863
0
Feb 11, 2012 7:45:26 GMT -8
lamiroy
43
October 2008
lamiroy
|
Post by lamiroy on Jul 28, 2011 1:15:35 GMT -8
Thanks for the swift reply. Let me find out.
|
|
inherit
132863
0
Feb 11, 2012 7:45:26 GMT -8
lamiroy
43
October 2008
lamiroy
|
Post by lamiroy on Jul 28, 2011 1:53:39 GMT -8
First of all, the problem now seems to be solved for this user as well: he now can get in again.
But he had the problem from several connections, meaning he tried from home, from work, ... and everywhere got the same error message, i.e. that he was banned.
Only now, in the last minutes did he regain access when he tried on his work computer (from which he had tried before, today).
Anyway... the problem seems to have resolved itself.
Thanks
|
|
inherit
173991
0
Jan 9, 2012 10:18:19 GMT -8
foreomf
8
November 2011
foreomf
|
Post by foreomf on Nov 25, 2011 20:36:07 GMT -8
Hi, We are having this particular problem again. My account has been affected by this apparent bug. I have already contacted limiroy (One of Several Admins at the board by the name of "Garuda") as well as one moderator *NyLily"to see if they could track down the nature of the bug. At this time it seems the bug is affecting my account and the aforementioned Admins could not identify the problem. They said the ban lists are clear and don't show anything. I was asked to go to proboards staff directly and ask if they had an "IP block/ban" at a level above our forum. We have had instrusion attempts at the forum before as well as a hacker repeatedly attacking the forum and temporarily defacing our forum. We were unable to figure out whom it was but I am starting to suspect the hacker may still have access to our forum. I am a newly retired moderator of the forum for the last five years so I have heard of the intrusion attempts after they happened. Could you please check to see what is the cause of these "invisible bans"? I suspect someone has an invisible account on our forum or access to ban users without using the Admin/Mods screens we had access to. If you need my IP just ask. Attachments:
|
|
inherit
173991
0
Jan 9, 2012 10:18:19 GMT -8
foreomf
8
November 2011
foreomf
|
Post by foreomf on Nov 26, 2011 17:48:09 GMT -8
Can anyone investigate this problem?
|
|
#eb7100
1480
0
1
Apr 23, 2024 2:03:35 GMT -8
Craig
208,867
September 2001
cmdynasty
|
Post by Craig on Nov 27, 2011 2:06:44 GMT -8
Hi,
Ricky will reply tomorrow. Thanks in advance for your patience.
Craig
|
|
inherit
(??_?)
181912
0
1
Jul 6, 2015 20:35:17 GMT -8
CheatAreZee
56,804
March 2005
zyvoloski
Ricky's Mini-Profile
|
Post by CheatAreZee on Nov 28, 2011 9:26:39 GMT -8
Can anyone investigate this problem? Hi, I can confirm that the IP address you are posting with is indeed on the banned list for the forum.
|
|
inherit
173991
0
Jan 9, 2012 10:18:19 GMT -8
foreomf
8
November 2011
foreomf
|
Post by foreomf on Nov 28, 2011 20:00:25 GMT -8
Hi, I just checked with "Lamiroy" (Administrator Garuda) and he says the IP just showed up on the Ban list. It was not there before. Can you check the proboards logs to see:
--Whom made it visible just now?
--Whom (if anyone on the staff) set the Ban and when did the system registered it?
I know I am asking alot from you, but this is puzzling as we don't know how a ban can be put into effect and yet not show up in any of the official ban list control panels which the moderators and Admins have access to.
Additionally: Can you check if there are any active scripts which are changing the intended behavior of the Ban list Control Panel?
----------------------------------
*Somehow* someone is circumventing the normal Ban List Controls. My main concern is whether it is someone on the staff or someone whom has found an exploit in Proboards coding.
My second concern is that my IP wasn't on the Ban List before, but now is?
Whomever the hacker is, they are probably reading our messages and changing settings to avoid being noticeable. You can contact the Admins at the Forum listed at the top and you'll see that I haven't been banned.
Whomever is exploiting this hole in your forum code has probably already escalated themselves to an Admin level. It is scarry to think someone else is capable of changing our forum and no one knows whom it is.
-------------------------------------
The last hack happened in September of this year and even the main Admin could not determine whom defaced the forums contents and rearranged the entire boards.
I hate to push you on this, but this has all the markings of a security exploit!
|
|
inherit
173991
0
Jan 9, 2012 10:18:19 GMT -8
foreomf
8
November 2011
foreomf
|
Post by foreomf on Nov 28, 2011 20:05:23 GMT -8
By the way, after the "MouseTrace" fiasco, the Admins on our board performed an audit of the forum scripts and didn't find anything.
|
|
#eb7100
1480
0
1
Apr 23, 2024 2:03:35 GMT -8
Craig
208,867
September 2001
cmdynasty
|
Post by Craig on Nov 29, 2011 2:31:43 GMT -8
Hi,
You can view the security log in the administration area, and that will list the past 1000 actions.
Craig
|
|
inherit
(??_?)
181912
0
1
Jul 6, 2015 20:35:17 GMT -8
CheatAreZee
56,804
March 2005
zyvoloski
Ricky's Mini-Profile
|
Post by CheatAreZee on Nov 29, 2011 9:27:38 GMT -8
There have been about a dozen modifications made to the ban list within the last 10 pages of the security log for the forum, unfortunately there isn't any way to tell for sure which action put the IP on the ban list but all of the bans were made by the main admin account. There are also well over 200 entries in the banned list as well on the forum, so it would be very easy to misplace it. It's also entirely possible that the IP address has always been on the banned list and your ISP had just assigned you with the IP address since IP's are not unique and do change over time.
In short, entries don't just show up on their own, it would of had to of been placed there by someone at some point in time.
|
|