vb.org Archive
Page 82 of 85 « First 32728081 82 8384 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 4.x Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=245)
-   -   Administrative and Maintenance Tools - Import External Images (https://vborg.vbsupport.ru/showthread.php?t=253309)

y2ksw 11-29-2017 12:03 PM
Quote:
Originally Posted by Afrika (Post 2591306)
OK thanks. What I have to change if the folder named picupload?
Depending on what you have decided to do, you have to change the plugin code or move the files.

Code changes: The code is commented and uses self-explanatory variables, thus you should be able to find easily the place where to skip the forum path test and comment that part out or change it to your needs. Alternatively, you may hire somebody (not me) who is going to make the changes.

Move files manually: use shell commands and phpmyadmin for the queries ;)

final kaoss 02-16-2018 07:13 PM
I imagine this would work fine with vb3 & vb5?

y2ksw 02-19-2018 09:58 AM
Quote:
Originally Posted by final kaoss (Post 2592948)
I imagine this would work fine with vb3 & vb5?
Sorry, no. There was a 3.x version and there is no 5.x version and probably never will be.

final kaoss 03-01-2018 06:17 PM
Thanks, is there a way to make it only import http images (Non SSL images)? That is, skip any images with https in it and only download the "mixed content" http images.

final kaoss 03-20-2018 02:36 PM
1 Attachment(s)
I noticed that sometimes this plugin corrupts the filenames. Any fix for that?

TTayfun 07-14-2018 11:14 AM
please release 3.8.11 for vbulletin.

ForumExcellence 08-09-2018 04:59 AM
1 Attachment(s)
Quote:
Originally Posted by final kaoss (Post 2593212)
Thanks, is there a way to make it only import http images (Non SSL images)? That is, skip any images with https in it and only download the "mixed content" http images.
In the settings for the plugin (Settings -> Options -> vB4 Import External Images), put "https://" (without quotes) on a new line in the "Ignore" section, like so:

Attachment 157170

You may consider downloading everything though, if you have the space/bandwidth to support it, because otherwise, external hosts could get rid of their images - either due to age, or some ulterior motive, and by surprise, like Photobucket.

Piloux 12-12-2019 09:44 PM
Hi and thanks for your efforts.

I just have a question, I noticed that the imported folder has to be chmod to 777, however all the imported files are automatically chmod to 644.

In this case, if a user posts an "infected" image that contains a php script or malicious code, are they blocked by chmod 644 or is there still a chance that the code gets executed when the hacker opens the url mysite.com/images/imported/infectedfile.png ?

Thanks

Hostboard 12-12-2019 10:39 PM
CHMOD/CHOWN are server based permissions and have no bearing to the end user if the file is served to them. What you need is to have an addon that uses FProt or ClamAV to scan attachments and imported files. I know there was Fractalizer for VB 3 and there was a VB4 variant but I think they were only for attachments. This is something that would need to be coded from scratch.

Piloux 12-12-2019 10:46 PM
Quote:
Originally Posted by Hostboard (Post 2601464)
CHMOD/CHOWN are server based permissions and have no bearing to the end user if the file is served to them. What you need is to have an addon that uses FProt or ClamAV to scan attachments and imported files. I know there was Fractalizer for VB 3 and there was a VB4 variant but I think they were only for attachments. This is something that would need to be coded from scratch.
OK thanks for your fast reply, that means that this plugin is pretty insecure? In this case is there a way to put an .htaccess in the imported folder that would deny anyone from running php scripts?


All times are GMT. The time now is 03:07 AM.
Page 82 of 85 « First 32728081 82 8384 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01961 seconds
  • Memory Usage 1,739KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (2)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete