vBulletin vandals and the wisdom of randomly generated passwords
Just finished fixing my VB site after some kid aparently hacked into the ftp server and posted broken scripts touting the virtues of natural male enhancements into every directory. At first I thought it was a security flaw in VB itself, but then i noticed files in the secure directories too. Also, as soon as I would fix the files, they woudl be broken again. So i just changed the FTP password to a random string of 50 digits and the problem has apparently ceased.
If you need random passwords, this is the place I use -
random.org