The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is vBulletin secure?

Discussion in 'General Discussion' started by ferox, Jun 28, 2004.

  1. ferox

    ferox Member

    Joined:
    Jun 28, 2004
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    I have heard of some sites being hacked due to the vBulletin forums security flaw and I am worried whether it is secure to use vBulletin or not. Anyone here knows about any security issue that arises due to vBulletin? Has version 3 fixed it?
     
  2. jamesbond

    jamesbond Well-Known Member

    Joined:
    Oct 9, 2002
    Messages:
    738
    Likes Received:
    1
    Trophy Points:
    18
  3. ferox

    ferox Member

    Joined:
    Jun 28, 2004
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    jamesbond, Thanks for posting the link. :)
     
  4. AP

    AP Well-Known Member

    Joined:
    Nov 5, 2002
    Messages:
    85
    Likes Received:
    0
    Trophy Points:
    6
    even with 3.0.1 still have few problem with security issue. :rolleyes:
     
  5. jamesbond

    jamesbond Well-Known Member

    Joined:
    Oct 9, 2002
    Messages:
    738
    Likes Received:
    1
    Trophy Points:
    18
    Where did you read that?
     
  6. ferox

    ferox Member

    Joined:
    Jun 28, 2004
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    Do let us know more about it.
     
  7. Website Rob

    Website Rob Well-Known Member

    Joined:
    Mar 23, 2002
    Messages:
    1,506
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Alberta, Canada
    cPanel Access Level:
    Root Administrator
    vBulletin is a very well done script, but no script should be depended upon to prevent all types of security issues. As Security is done in layers, one must also take steps to secure their Server.

    As vBulletin will work with every type of PHP security you can think of, being turned on, this makes it a very nice script to work with at the Server level. In other words, you don't have to worry about it breaking or having problems with Server security settings.

    With that said, I did receive a notice yesterday that versions earlier than 2.3.4 do have some security issues and people are advised to upgrade, to 2.3.4 or higher. I've received this notice before though, so I think it's an ongoing issue and people should upgrade to the mentioned versions, if they haven't already.
     
  8. ferox

    ferox Member

    Joined:
    Jun 28, 2004
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    yep, upgrading is the first thing to do but we are asking whether the version we are going to upgraded to is secure or not.
     
  9. Website Rob

    Website Rob Well-Known Member

    Joined:
    Mar 23, 2002
    Messages:
    1,506
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Alberta, Canada
    cPanel Access Level:
    Root Administrator
    Actually, it is more correct to ask if the new version is more secure than the last. ;)

    If you have your Server security settings properly setup, you do not really have to worry about security with any script. Otherwise, all us Server Admins would be even more paranoid than we are now! :D
     
  10. ferox

    ferox Member

    Joined:
    Jun 28, 2004
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    Sometimes, as in the case with the vBulletin security flaw, the security of the server doesn't compromise but the security of a single website is compromised due to that kind of script it is running.
     
  11. David Copeland

    Joined:
    Jun 30, 2004
    Messages:
    20
    Likes Received:
    0
    Trophy Points:
    1
Loading...

Share This Page