Go Back  FlyerTalk Forums > Support&Services > Technical Support and Feedback
Reload this Page >

Site Trouble Now?

Register
Community
Wiki Posts
Today's Posts
Search
Vendor Directory

Site Trouble Now?

Thread Tools
 
Search this Thread
 
Old Apr 7, 2011 | 5:12 pm
  #1  
gfunkdave
Original Poster
FlyerTalk Evangelist
Conversation Starter
All eyes on you!
20 Years on Site
 
Join Date: Nov 2002
Location: ORD
Posts: 14,771
Site Trouble Now?
Recently, I got a character encoding error when I tried to get to FT. Now, every page has the following at the top, over the FlyerTalk banner:
Last edited by IB-Dick; Apr 7, 2011 at 5:25 pm
gfunkdave is offline  
Reply
Old Apr 7, 2011 | 5:20 pm
  #2  
IBobi
No longer with Internet Brands
10 Years on Site
 
Join Date: Mar 2011
Location: Los Angeles, CA
Programs: DL DM 1.6MM, Marriott LT Plat
Posts: 5,343
IB Tech is all over this.
IBobi is offline  
Reply
Old Apr 7, 2011 | 5:24 pm
  #3  
IBobi
No longer with Internet Brands
10 Years on Site
 
Join Date: Mar 2011
Location: Los Angeles, CA
Programs: DL DM 1.6MM, Marriott LT Plat
Posts: 5,343
Back up now. Let me know if the problem is persisting for anyone.
IBobi is offline  
Reply
Old Apr 7, 2011 | 5:28 pm
  #4  
vocoder
 
Join Date: Jun 2010
Location: Iowa / Puerto Rico
Programs: AA, Priority Club
Posts: 65
Just a heads up. When the site was giving character encoding errors it was always kicking out an array that included this part in plain text:

Code:
            [MasterServer] => Array
                (
                    [servername] => flyerdbhost
                    [port] => 3306
                    [username] => ****
                    [password] => ****
                    [usepconnect] => 0
                )
Note I replaced username and password with ****, but it was clearly available for a number of minutes.
vocoder is offline  
Reply
Old Apr 7, 2011 | 5:29 pm
  #5  
IB-Dick
 
Join Date: Feb 2009
Posts: 959
Originally Posted by vocoder
Just a heads up. When the site was giving character encoding errors it was always kicking out an array that included this part in plain text:

Code:
            [MasterServer] => Array
                (
                    [servername] => flyerdbhost
                    [port] => 3306
                    [username] => ****
                    [password] => ****
                    [usepconnect] => 0
                )
Note I replaced username and password with ****, but it was clearly available for a number of minutes.
Well aware and taking remediation.
IB-Dick is offline  
Reply
Old Apr 7, 2011 | 8:38 pm
  #6  
magiciansampras
A FlyerTalk Posting Legend
 
Join Date: Jul 2003
Location: NYC (formerly BOS/DCA)
Programs: UA 1K, IC RA
Posts: 60,745
Originally Posted by vocoder
Just a heads up. When the site was giving character encoding errors it was always kicking out an array that included this part in plain text:

Code:
            [MasterServer] => Array
                (
                    [servername] => flyerdbhost
                    [port] => 3306
                    [username] => ****
                    [password] => ****
                    [usepconnect] => 0
                )
Note I replaced username and password with ****, but it was clearly available for a number of minutes.
Wow. I'm not a techie so I don't really know what that means, but it doesn't seem good, does it?
magiciansampras is offline  
Reply
Old Apr 8, 2011 | 10:16 am
  #7  
Mary2e
FlyerTalk Evangelist, Ambassador: World of Hyatt
All eyes on you!
20 Years on Site
 
Join Date: Jul 2001
Location: New Jersey
Programs: Hyatt Globalist, Fairmont Lifetime Plat, UA Silver, dirt elsewhere
Posts: 47,401
Looks to me like the admin id & password to the server was visible for a while

Note: I could be wrong and if I'm not, that doesn't mean anyone actually did anything with it.
Mary2e is offline  
Reply
Old Apr 8, 2011 | 9:05 pm
  #8  
IB-Dick
 
Join Date: Feb 2009
Posts: 959
Originally Posted by Mary2e
Looks to me like the admin id & password to the server was visible for a while

Note: I could be wrong and if I'm not, that doesn't mean anyone actually did anything with it.
That is the username and password that the web servers connect to the database on the database server. The username and password have been changed, but the site was never in any real danger. First, you need to know what the database server is. It just has a host name in there, not the IP. Even if the IP was there, it's an internal IP, so it's worthless unless you're on our network. Our db servers are locked away pretty well, so you can only access the data from the webservers. If you have access to the webservers, then it's fairly easy to get this information anyway. This is really only an issue if you're database servers are externally accessible, and ours aren't.

Still, the username and password have been changed. :-)
IB-Dick is offline  
Reply
Old Apr 9, 2011 | 8:36 am
  #9  
Mary2e
FlyerTalk Evangelist, Ambassador: World of Hyatt
All eyes on you!
20 Years on Site
 
Join Date: Jul 2001
Location: New Jersey
Programs: Hyatt Globalist, Fairmont Lifetime Plat, UA Silver, dirt elsewhere
Posts: 47,401
Well, I figured that was the first thing you would do, perhaps after disconnecting it from the hive first as a precaution
Mary2e is offline  
Reply



Advanced Search
Reply Closed Thread Share
Forum Jump

Contact Us - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service -

This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2026 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.