vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 2.x Full Releases (https://vborg.vbsupport.ru/forumdisplay.php?f=4)
-   -   Away Security Hack... (https://vborg.vbsupport.ru/showthread.php?t=42870)

Chris M 08-27-2002 10:00 PM
Away Security Hack...
 
This should work on all 2.2.x versions...

I have tested it on 2.2.6, and a friend has on 2.2.7...

I was reminded about this by Arunan, and decided to make it a small hack:)

What it does :
Searches for a specific file in the Admin panel, and wont let the CP work with it there...

What it is useful for :
You can upload it before you go on holiday, so your cp cannot be accessed...

Files to edit : 1 (admin/global.php)
Files to add : 1 (secure.php)

Enjoy!:)

Its small, but simple!:)

Satan

Chris M 08-28-2002 08:31 PM
Here is the secure.php file...

Satan

NTLDR 08-28-2002 08:34 PM
Sounds cool hellsaten, I have .htaccess protection, but this is still a good hack none the less. Thanks for sharing ;)

g-force2k2 08-28-2002 08:41 PM
:p i guess you got the idea of off the install.php still being in the admin folder hellsatan ;) ? or am i wrong... :p regards...

g-force2k2

Brad 08-28-2002 08:55 PM
hmm ive always just uploaded the install.php when i went away :D

g-force2k2 08-28-2002 09:01 PM
Quote:
Originally posted by Anime-loo
hmm ive always just uploaded the install.php when i went away :D
:p hopefully it was blank though ;) because then someone could just reinstall a new forum right over yours :p regards...

g-force2k2

DrkFusion 08-28-2002 09:20 PM
I will be releasing my version maybe too ;)
By the way I am Arunan :)

I did this as a joke and put warnings all over the page, but now I made it so it logs ips, and dates and so on.

Anyways, I click install :)

Gohan 08-29-2002 12:55 AM
Hmm.. If i'm back from holiday than i must need delete a secure.php from server??

Or i have better idea.. you could try make or i'll try make (just first need permisson from you)

AdminCP check to ON or OFF switch (like as closed board)
If you back from holiday than could you login to AdminCP

AdminCP check to your userid number (standard number 1) if correct number 1 than opened

kmfdm_kid2000 08-29-2002 08:58 AM
Quote:
Originally posted by Gohan
Hmm.. If i'm back from holiday than i must need delete a secure.php from server??
Instead of deleting, try renaming?? That might work too...

Chris M 08-29-2002 12:48 PM
Yeh...

I am trying to integrate some of the code used in my guessword hack, to make it have 5 random words generated...

It will prompt you with which word to enter, like : "What is the name of your pet?" and if you enter it, you are given access...

@Gohan - If someone hacks your vB account, its not very secure if it asks for Id 1 is it?;)

Satan

Gohan 08-29-2002 02:31 PM
or better second password for AdminCP opened?

Chris M 08-29-2002 05:33 PM
Its kind of the same thing...

I'll let you know how it goes;)

Satan

adriandaz 11-03-2002 04:14 AM
cool, I called the secure.php secure-unlock and change it to secure-lock.php when I am away, I also changed the code for this to work in global.php ;)

Chris M 11-03-2002 12:05 PM
Cool:)

I still use it, but I am trying to find another way to improve security;)

Satan


All times are GMT. The time now is 10:06 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.00999 seconds
  • Memory Usage 1,737KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (14)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete