[deathwish]

Inorder to protect your account you need to give your site protection.

i have a list of sites that can help out:

http://forum.sz-ex.c...ts&thread=11491 a tutorial for defense against bots

botdefense:
http://rankboosting....ssion-bots.html this is a php script to help find bots and block them
the site above have a example of what you can expect. it works i use my self.

antiflood (refreshing page every seconds or so) Helpful against hackers:

http://www.thewebhel...i-flood-script/

firewall its good to use to secure your pages:
Outdated finding new link

ip ban script:
http://green-beast.c...blacklister.php
Source:
http://green-beast.c...lacklister.phps

also always use htaccess to protect your site as well

use these to help protect your site it can be very useful if you research protection tho to better enhance your site and accounts.

also never use simple passwords and always change your password every 30 days or younger. never let it go longer then 30 days

will add more as i find more to help out

i also have a maintenance script which you can get from the same site as the ip ban script it is a nice script to have if you want users to know you are working on your site

[FlightPilot]

Great tips thanks man.

[deathwish]

no problem i am getting tired of p***** so now i am taking this into my hands of reporting and researching into the site that has been the doer.

[deathwish]

about the people using mybb:

check out this:http://mods.mybb.com/view/admin-cp-honeypot

and this:

http://mybbsource.com/thread-3739.html

it is helpful to protect your site.

i am using and first sign of hack attempt it shuts down the site and emails you with the details of what happeed.

[mudskippa]

Thanks for this DW. Very useful. I have my site back online now and will take steps to further protect it.

[deathwish]

thats good and if you read my article it will also help in protecting your site furthur i use most of the items in my thread

[theprisoner]

FlightPilot, on 21 April 2012 - 06:11 AM, said:

Great tips thanks man.

for drupal cms
antiflood
http://drupal.org/pr...t/flood_control

[jonboat]

A couple more resources in the fight against unfriendly bots...

If you are running a forum, I strongly recommend stopforumspam.com. They maintain a user submitted database of spammers (username, IP, and email) and links to plugins/mods for most forum packages that will check new registration attempts against the db of known spammers and deny registration if they are in the db.

Next, and applicable to most any php-based site, is a tool called ZB Block. This tool comes pre-loaded with signatures of all sorts of undesirables, which it blocks from accessing your site. It also prevents a lot of different attacks on your database etc. It allows you to add your own custom signatures too if you find new bad-guys while reviewing your access logs. This tool goes way beyond what you can do with .htaccess. The author did a bang-up job writing a nice user guide that is included in the zip file with the files & code.

My site is a simple phpBB forum, and since adding these two security measures, I have had ZERO successful spammer registrations (in over a year) however, when looking over my raw access logs, I see that they are always knocking at the door - they just can't get in

[deathwish]

jonboat, on 04 May 2012 - 01:19 PM, said:

A couple more resources in the fight against unfriendly bots...

If you are running a forum, I strongly recommend stopforumspam.com. They maintain a user submitted database of spammers (username, IP, and email) and links to plugins/mods for most forum packages that will check new registration attempts against the db of known spammers and deny registration if they are in the db.

Next, and applicable to most any php-based site, is a tool called ZB Block. This tool comes pre-loaded with signatures of all sorts of undesirables, which it blocks from accessing your site. It also prevents a lot of different attacks on your database etc. It allows you to add your own custom signatures too if you find new bad-guys while reviewing your access logs. This tool goes way beyond what you can do with .htaccess. The author did a bang-up job writing a nice user guide that is included in the zip file with the files & code.

My site is a simple phpBB forum, and since adding these two security measures, I have had ZERO successful spammer registrations (in over a year) however, when looking over my raw access logs, I see that they are always knocking at the door - they just can't get in

you are correct and i also have to agree. using those features and options also are good ways.

@theprisoner thanks for the good idea for drupal.

there are always ways of protecting your site but don't ever give your account info to anyone including your family and girlfriend/boyfriend. just yourself.

[Johnathan360]

Holy cow! Thanks for all these great links I must say there are many of them I never heard of.