Latest security patch - is it genuine?

[bear]

You're absolutely right, it's a good thing isn't visited by thousands of people hourly including most likely those same people.

Perhaps, but Google is far reaching and does spider this forum. You post the link, and if it spiders before someone can edit, that's listed very publicly, very quickly. Then there's the RSS feature of Vbulletin, and subscribing to a forum section (send an email about new threads) and more.

Trust me when I tell you, the people that exploit, but possibly lack the skills to find these on their own, have their eyes open for attack methods they can use.

Shouldn't have to be in the rules to know it's irresponsible.

 

Google proof?

http://www.google.com/search?hl=en&safe=off&complete=0&site=webhp&q=%22certainly+don%27t+check+that+site+and+others+1-2+times+a+day%22&oq=%22certainly+don%27t+check+that+site+and+others+1-2+times+a+day%22&aq=f&aqi=&aql=&gs_l=serp.12...17378.17378.0.18378.0.0.0.0.0.0.0.0..0.0...0.0.T4ncuvoe_yw

That's post #24, a few up from this one, posted about 2 hours ago.

[Matt]

Anyone seen this exploit that just poped up on [removed]? {link removed}

 

We have reviewed their proof of concept thoroughly and at this time we believe that it does not pose a threat.

 

It would of course also rely on your admin directory not having been renamed as per the recommended Further Security Steps

 

Matt

[oesman]

We have reviewed their proof of concept thoroughly and at this time we believe that it does not pose a threat.

 

It would of course also rely on your admin directory not having been renamed as per the recommended Further Security Steps

 

Matt

 

Thanks Matt, was what I wanted to know! I figured it wouldn't affect myself with the renamed directories for our installations.

[JamesWill]

Sorry, false alarm.

Edited May 30, 2012 by JamesWill