The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
Forum firewall report?
Hi,
Is there any scripts out there that can produce a firewall text report like this picture below? I'v seen this work on a vbulletin forum i came across and searched for tutorials but cannot find anything. Any help is appreciated |
#2
|
|||
|
|||
Anyone?
|
#3
|
|||
|
|||
A link to where you got the info might help
|
#4
|
||||
|
||||
I saw similar to that on a site where an admin account got compromised (with faq editing permissions) and an faq entry was changed. Similar urls were being used to attempt to retrieve information from the server.
Code:
faq.php?c=system(%24_GET%5B%27x%27%5D)%3B&faq=vb3_reading_posting&x=cat%20includes%2Fconfig.php |
#5
|
|||
|
|||
There are tools out there which will process the web server access log to look for things like that. If you google for it you'll find a number of them. I suppose you could get something to work within vbulletin (if that's what you're asking for) by finding a source of the patterns that are matched to detect attacks, then applying them to the url whenever a vbulletin page is requested, and if there's a match put it in a log somehow.
But I don't know of anything like that that exists already, unless maybe one of the dbtech mods has that as a feature. I added it to my list of mod ideas, but the way things are going I don't know if or when I'd get around to it. |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|