Olympus security

[user99]

How secure is Olympus. While I was running last beta version on my website, it was easily hacked by "Dengesiz Team".

Standard installation, no other software. Hosting by reputed IXwebhosting

[poyntesm]

Did you report to the security tracker? phpBB.com run it so obviously they feel its secure. Not reporting stuff stops them being aware of any issues and being able to fix it

[Pace]

Report the hack.
Try to include as much information as you have.

[karlsemple]

how are we supposed to look into security issues if users will not report them

[Nicholas the Italian]

how are we supposed to look into security issues if users will not report them

Tsk tsk.
I thought you were trained enough to extrapolate informations from users by mind-reading. Your wages should be halved.

[Prince of area51]

one of the forums I had got hacked within hours .. the reason was pretty simple .. the PC I logged in as Admin from had a Key Logger .. it emailed some jack-ass on the other site of the planet all ma inputs .. and after an hour I get a call from one of member saying some Team DRX has hacked it .. for some reason .. I think this person had a similar situation .. if they know the password .. its a piece of a cake ..

[Rotsblok]

If so phpBB cannot do anything against it as its not a security risk of phpBB but of the user

[Pace]

how are we supposed to look into security issues if users will not report them

The coolest thing is that there are "no tickets to display"
(that said, I guess the security tracker was only created when the website was updated, so not many would know about it…)

[poyntesm]

Security tracker has been around Jul 2004 -> see http://www.phpbb.com/community/viewtopi ... 4&t=214449

[SamG]

I don't remember the dates the security tracker or the investigating team got kicked off, but they were well before the main site update. for example, this announcement asking for better incident reporting is from almost two years ago.

EDIT: Beaten to the submit button yet again.