vb.org Archive
Page 3 of 7 12 3 45 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.5 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=113)
-   -   Cracker Tracker (https://vborg.vbsupport.ru/showthread.php?t=110030)

Devil Woman 04-17-2006 07:30 AM
Thankyou :)

H@K@N 04-20-2006 08:38 PM
Have a Security Alert if i use vBadvanced CMPS and try to add a Module.

The Link is following:
http://www.domain.com/admincp/vba_cm...&type=php_file

What should i change, to let the System add Modules ?

th@nks

sandalwood 04-26-2006 04:05 PM
Quote:
Originally Posted by Onur
@sandalwood
1. no, on this hook are no userinfo avalible
2. this is possible at next release
ok i understand, thats too bad. though the ip address is known, and only one user will have been logged in using that ip address at that time, so perhaps you can somehow set another hook later so WHEN we do know the username, you can have a little check in there that will record it to file.

i know this would only matter for attacks from users, and that many attacks are not even from users, or from people who never log in. but some are :)

when the incident happens, record what we know, perhaps with ip address, and the set a variable like "intrusion_detected = 1" sort of thing. then in a separate hook at some point where we know the user logged in and we have username, check that variable, and if intrusion_detected is set, then record their username/ip to the file, so that way we can cross-reference it or something.

isn't there some kind of global variable that can be used? how does that work.

also, even if you can't do the second part, why not record the IP address at least. that way we can manually cross reference it, just search for the ip in the admin console and that will show us what user(s) have used that ip.

thanks :)

ps. this has never tripped for me except in testing. i guess most attacks are not in the URL part but in post string.

SweetHome 04-27-2006 09:51 PM
Hi
onur hocam bu eklenti hakkında saldırıları engelliyor gibisinden duyumlar aldık
Bu hack forum hacklama icin kullanilan bircok tehliklei scriptleri önlüyor hemde daha database ulasmadan önlüyor.
Böylece hem sunucunun gereksiz yere mesgul edilmesini hemde bircok tehlikle scriptlerin databaseinizi cökertmesii önleyen cok iyi bir korunma yöntemi.

bu şekilde bir arkadaş konu açtı vb turkiye'de yardımclı olup ne işe yaradığı hakkında türkçe açıklamasını yaparsan sevinirim..
kolay gelsin

Webdude? 05-13-2006 11:57 PM
<a href="https://vborg.vbsupport.ru/showthread.php?threadid=115351" target="_blank">https://vborg.vbsupport.ru/showt...hreadid=115351</a>

CrackerTracker is blocking this plugin... how do I allow the linked plugin?

Onur 05-14-2006 06:15 AM
Quote:
Originally Posted by Webdude™
https://vborg.vbsupport.ru/showthrea...hreadid=115351

CrackerTracker is blocking this plugin... how do I allow the linked plugin?
what blockstring was displayed, or look into /elog/logfile_injects.txt and post the list of strings, so i can search the request was blocked

Webdude? 05-14-2006 01:07 PM
1147567050,130506,24.182.112.118,u=17&admin_log_in _as_user=17,Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322)

Onur 05-15-2006 08:07 PM
Version 1.0.1 added

some little changes and the searchpattern was now compatible to some hacks (i hope *g*)

Lover1 05-15-2006 08:35 PM
I did install that and i got this, when entering the ACP:

Code:
Parse error: syntax error, unexpected T_CONSTANT_ENCAPSED_STRING, expecting ')' in /xxx/xxx/htdocs/board/includes/init.php(292) : eval()'d code on line 34
:cross-eyed:

There is NOW no possibility to uninstall that, because i cant enter the acp.

Kannste mir da mal helfen bitte ?

redlabour 05-15-2006 09:16 PM
?ber dem Forum und Portal steht nun auch :

Quote:
Parse error: syntax error, unexpected T_CONSTANT_ENCAPSED_STRING, expecting ')' in /poltbofu/www.politikstube.de/forum/includes/init.php(292) : eval()'d code on line 81


All times are GMT. The time now is 01:56 PM.
Page 3 of 7 12 3 45 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01057 seconds
  • Memory Usage 1,740KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_code_printable
  • (3)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete