Welcome !
Welcome to Posetteforever !
Hi Guest !

If you don't know what this site is for

Or if you need some help
Click on this text !
Hi, I'm Posy, welcome to Posetteforever
This site is about computer art, and how to make it with few or no money at all , so it is dedicated to Posette , that is simple and beautiful .
We are a group of friends that use to meet here for their fun , talking of art , sticking their pictures and sharing freebies each other . We encourage you to join this community as an active member...


In order to access all the site , you've to register so that we can control our bandwidth usage.
A working email address is needed for the registration, we're not commercially involved in anything so it's safe and it won't be used if not for sending you notifications of replies to your posts, comments to your pictures and notifications of new private messages in your inbox.
Posetteforever has no stores and no banners , everything that you find here is free and nothing can be posted on this site for pushing the users to buy something for their art . We can give you only some hints for the basic tools . There are no ratings , we value your art and we will try to give you some suggestions to improve it , even if the "pros" here are very few ...
This is not a store so we don't search for costumers , we search for friends . We're not interested in big numbers , for us it's enough to spend some time together ...
Our staff is not made of mercenaries so in order to easy their work a lot of email services has been banned, because they are the most used by comment spammers and harvesters , we're also part of the Project Honey Pot for helping tracking their activity .

You can contact an admin at if you have problems .. and we'll (maybe I'm sorry!) find a solution .

If you're a registered user and you're having problems logging in Mmmh... (thinking) please use the same address .
Sometimes all is due to a cookies problem, you can delete them in this page .
If you've a slow connection we suggest you to choose the Lo-Fi Version (link is always available at the bottom of the page).

Thank you

Posy Rosabella Posette, 24h online support of Posetteforever
Menu
Main Links  Main Links
News  News
Info  Info
Users & Groups  Users & Groups
Style  Style
RSS News Feeds  RSS News Feeds
Recent Topics !
Comparing Poser Figures
By ahjah 15 May 2024 23:46

Happy Birthday Tormie
By ahjah 09 Apr 2024 18:48

Happy Birthday Tormie!!!
By ahjah 08 Feb 2024 15:45

Unimesh Texture Compatibility
By ahjah 13 Dec 2023 21:34

Hair Textures uploaded
By Nik 05 Dec 2023 11:54

What's Your Italian Name? (a test)
By ahjah 30 Nov 2023 16:19

PiChi Is Ready For Download!
By ahjah 03 Nov 2023 15:37

How To Get An Old Poser Character File To Show Morphs And Control Dials In DAZ Studio 4.+
By ahjah 16 Oct 2023 21:03

Are Some Of Pitklad Old Things Available Elsewhere?
By PitKlad 30 Sep 2023 07:14

ZenOn up in our Freestuff
By ahjah 27 Sep 2023 10:21

Statistics
We have 399 registered users
The newest registered user is drbarbaraae

Our users have posted a total of 40268 articles within 3202 topics
Clicks Counter
Posetteforever has 124773112 page views in total since Monday, 31 March 2003, 04:30 AM
Pics From Our Album !
Posette and Dork at Daz Studio
Posette and Dork at Daz Studio
rayera
12 Sep 2004 14:05


Hayley
Hayley
P4luvr
17 Sep 2012 02:23


Dark Couple
Dark Couple
Maelstromme
09 Jun 2012 18:10


Shoutbox
Hacking attempts against phpbb...
Hacking attempts against phpbb... Posted  Friday, 11 February 2005, 12:51 AM By Tormie
Announcements
It seems a very bad period for the software that we're using here, phpBB from http://phpbb.com.

http://phpbb.com was recently attacked by :

[i:cc048f48fa]"a group of hackers/crackers who (based on available information apparently corroborated by said hackers/crackers) used an exploit in awstats to gain entry."[/i:cc048f48fa]

Now the situation is confused because they don't know exactly how they gained access to the site. phpBB recently had a lot of attacks by hackers/crackers who succeded in modify the files using some codes in the text of the message.
They also use google in a way that I'm not able to fully understand, and infact in the last period we had a lot of guests connected to the site and the sytem says that they are bots from search engines...

I'm backing up the site on a regular basis, but something could happen... I hope no, but in the worst case I will have to change the software to a different one even if I :heartbeat: phpBB because it's a free software made in open source...

Anyway, just to prevent strange things, I'll restrict the access to the site only to registered members and close the possibility to view the site to guest users.

I'll "reopen" the site when I'll know more about the situation. Actually you can see what's happening on http://phpbb.com


Personally I upgraded the site to the last security patches


 

This news item has 15420 Views and 39 Comments. Reply to this News Item Print this Topic E-Mail this Topic
11 Feb 2005 10:00 By Guest
DRATS! Until this situation is resolved, I will stop recommending this site to others. That way you won't have to hand process their applications too.

Pangor
11 Feb 2005 10:13 By Tormie
:crybaby: :crybaby: :crybaby:
11 Feb 2005 16:25 By Landman
Torm, make sure all your passwords are at least 8 characters, and complex. but yet easy enough for you and you alone to remember. I would also keep an eye on updates, chances are the makers of the software are aware of the situation and are working to resolve the issue. keep it as up to date as possible with current updates. stay away from beta releases, release candidates and such as they have not been completely tested and could be causing more harm then good.

Password complexity is probably the most important. Hackers have software that they use to "brute force hack" websites. which is basically a program designed to fire passwords at a server untill it gains access. by adding numbers and punctuation to a password, you are making that softwares job all that much harder.

a bad password example would be something like - landmanb
however I can make this password much more complex by simply adding numbers - l4ndm4nb
I can further it by capitalizing each letter before the number - L4ndM4nb
add some other non alpha numeric character - L4nd$M4nb

keep in mind it would still be vulnerable to a brute force hack, however with the proper encryption, they would need a bunch of computers all working together on the algorythm for such a long period of time, an Administrator would probably notice the failed attempts and act on it.
11 Feb 2005 16:56 By Tormie
I know the rules for passwords Landman, but the problem is more complex. The passwords are encrypted with a md5 algorythm and the program ban the user for 15 minutes when he/she fails three times, so a brute force could need years and to gain the access here and it doesn't worth the effort.

I've not the direct link but I'll search it because it could be interesting to read something about the matter for you and Pangor and everybody interested (anyway the informations are on phpbb.com and actually they are down...lol) . This crackers pass the nasty code using the posting feature of the board (php code) and the last time the automatic process "defaced" a lot of pages on attacked sites overwriting the original files.

This time it seems that they used an "awstat" something directly on the server, This shouldn't involve the phpBB software but they are investigating. In any case it's not something linked to the passwords.

I have to say that here at godaddy the configuration for the board is very funny and strange because the files are on a server and the database is on a totally different one. Infact they changed us the database but left the files on the same old server. It was very difficult to setup the forum here, I've done it reading a lot of tutorial and modifying some files because of other strange peculiarities of godaddy 8-[ ... On ather server it is enough to write "localhost" to point to the database, here the database is on a different encrypted server, so I hope that in case of an attack, the most important thing which is the database, with all the posts and the informations, should be safe (I can easily replace the files and the graphics with a backup copy).

The most bad thing abotu what happened is that they attacked an open source site, not a "big one" like micro$oft, Ibm etc., people who gains nothing from their fantastic work [-X [-X [-X ...
11 Feb 2005 16:56 By Posy
Me either. What does "this" refer to? That seems a bit negative. "" here at godaddy the configuration for the board is very funny and strange because the files are on a server and the database is on a totally different one ? I get . Oh those people.
11 Feb 2005 16:56 By Tormie
Thank you Posy darling. I love you !
11 Feb 2005 16:56 By Posy
Thanks I like you a lot too TORMENTOR.
11 Feb 2005 17:02 By Poserkatz
Tormie wrote:

The most bad thing abotu what happened is that they attacked an open source site, not a "big one" like micro$oft, Ibm etc., people who gains nothing from their fantastic work.


You're right! These bloody f**ckers are overall, they aren't good enough to hack commercial sites,
but they wanted to be "the great hacker" and therefore they try to hack small sites, private sites
and so on - bloody stupid guys :x
11 Feb 2005 17:43 By Guest
In fact that because it is popular open source, free software coule be the reason that it was targeted. I have seen many such attempted attacks caused by fanatics who are opposed free software and/or open source who try everything that they can to discredit it.

What bothers me even more about this attacks is that according to the announcement on their tempory page it was caused by a problem in the server, raher than in this software, still board using the software are being taken down by the hosting companies.

This reminds me of a sucessful cracker a few years ago. The main website of some open source software (I forget which software it was.) was attacked and defaced. Compared to what could have been done, the damage was mild and limited to defacing the main page. In the end it turned out that it was the hosting companys http server that was cracked, the hosting company had reciently moved that website from a platform running Apache to one running IIS. It was IIS that was compromised, but the people who were oppoed to open source ran a FUD propaganda campain against the open source software that was hosted on the site. Other websites on the same groups of servers were also defaced including those of commercial software vendors. Not much was said of that by those spreading the FUD.

Pangor
11 Feb 2005 17:44 By Posy
What did it look like to you? Interesting comparison. What does "it" refer to? Which others? I am a female. Are you a man or a woman?
Goto page 1, 2, 3 ... 11, 12, 13  Next
HideBirthdays
No users have a birthday today
Users with a birthday within the next 7 days: AndrewC (55), Dspec1 (37), felishiakat (41), HorstAl (53), leahman (72), neep01 (56), tronsphere (52), wedgex (61)
Our Newest Pic !
Furball
Furball
ahjah
07 Sep 2024 18:15


Who Are You



Username:

Password:


 Automatic Login



I forgot my password

Don't have an account yet?
You can register for FREE


Who is Online
There are 186 users online: 0 Registered, 0 Hidden and 186 Visitors

Registered Users: None

Bots: Bing Bot BiNG


Most users ever online was 987 on Friday, 30 August 2024, 04:44 AM
Fresh Freebies !
1.AJ_HairTex_20231204_1.zip (04 Dec 2023 21:52)
2 x 40 Hair Texture tiles
2.zenon_by_pitklad.zip (27 Sep 2023 10:13)
Highly Modified \"Dork\"
3.AJ_ThinHair (07 Jun 2022 10:14)
Simple morphing hair prop
4.Violet (11 Apr 2021 20:48)
Skin texture for the P4 Female
5.Jim Burton cpu_test.zip (03 Mar 2021 20:53)
Benchmark pz3 for render time comparison by Jim Burton
6.Joint Parameter converter (03 Mar 2021 20:37)
Joint Parameter converter By Yamato (for Posette)
7.Mr. X\'s Morphmanager (03 Mar 2021 20:25)
\"Swiss Knife\" for handling Poser Files. Must Have