| Author |
Message |
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
 Posted:
Thu May 11, 2006 7:36 pm |
 
|
Hi, im new to this site and the world of nuke and php etc.
My story goes, i had a website running php nuke 7.6 and it continually got hacked, i tried to install nuke sentinel on it but had no luck, in the end i gave up and completely re-installed the website with Nuke-Evolution which included sentinel and set it all up for me.
My problem is now, when i want to add some new modules to my website and they have a install file provided with them, nuke sentinel blocks the install.
So lets say i have a new module called "test" and in that package comes a ready made install file called "test-install.php", then you got to to install the module, but when i do this nuke sentinel blocks the install.
Now i assume this is doing this as it thinks im going to hack the site, but all i want to do is run an install file for a new module.
So my question is, How do i stop nuke sentinel blocking me installing a new module ??
any help appreciated, thx
bye for now |
|
|
 
|
|
Raven
Site Admin/Owner
Joined: Aug 27, 2002
Posts: 16986
Location: Kansas
|
| Posted:
Thu May 11, 2006 11:07 pm |
|
What is the reason NukeSentinel(tm) is giving for blocking the script? |
|
|
 
|
|
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
| Posted:
Fri May 12, 2006 6:09 am |
|
Hi, thx for reply, the error it gives is it just goes straight to this page as soon as i click the install link on a module install.php file
Any ideas ??
bye for now |
|
|
|
|
|
Susann
Moderator
Joined: Dec 19, 2004
Posts: 3143
Location: Germany:Moderator German NukeSentinel Support
|
| Posted:
Fri May 12, 2006 4:52 pm |
|
You can change the settings for the filter blocker whenever you want to off.
My settings are set to block, email and default I had never problems but the filter blocker and the scripting blocker are sometimes overagressive. I would try different settings for this blocker and check if something changed by installing modules. |
|
|
|
|
|
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
| Posted:
Fri May 12, 2006 10:12 pm |
|
 Hi, i turned of the filter blocker completely, but it still takes me straight to the page i posted above..
Is there ans "easy" way to just turn of sentinel, then turn it back on once i have installed the module??
I am always logged in with the God account, but that dont seem to matter either.....
any other ideas ??
thx, bye for now |
|
|
|
|
|
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
| Posted:
Mon May 15, 2006 10:18 am |
|
Anyone ??  |
|
|
|
|
|
Raven
Site Admin/Owner
Joined: Aug 27, 2002
Posts: 16986
Location: Kansas
|
| Posted:
Mon May 15, 2006 12:51 pm |
|
We need to see the entire GET and/or POST string to see what filter is being trapped. My guess is that the url that is being called is getting triggered by a keyword, but without seeing the url you are submitting I can't help.
To 'temporarily' turn NS off, comment all calls to include("includes/nukesentinel.php"); in mainfile.php. |
|
|
|
|
|
wickedmellow
New Member
Joined: May 20, 2006
Posts: 3
|
| Posted:
Sat May 20, 2006 3:26 pm |
|
I'd getting this exact same screen while trying to install this for the first time, where can I change these block settings? I ran into this right after logging into the admin.php file I'm using (renamed as described in the config file) after trying to access "modules"...
Thanks for the help it's appreciated  |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1497
Location: In front of a screen....HELP! lol
|
| Posted:
Sat May 20, 2006 5:31 pm |
|
i cant say with certainty that this is the cause...but try setting ur admin page in ur config file back to admin.php
a question for the members of this site..when sentinel puts the admin pass in its tables...y does it save the pass in regular text?
can i delete the text version of the pass? so no1 can run a script on my site and get the username and pass sentinel has stored...seems likes its just askin for some1 to find an exploit to it.
Just outta curiousity..would it be possible or very hard to write a script that would link to other sites and grab their list of blocked ips to add to ur own...I think that would really deter hackers from makin an attempt if they see that after their proxys or bots get banned by one site..it gets banned by a lot more. |
|
|
  |
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1497
Location: In front of a screen....HELP! lol
|
| Posted:
Sun May 21, 2006 4:47 pm |
|
UPDATE
i actually coded somethin like that.. 
and id like whoever would like to see it in action to see it
and send me an e-mail if ud like this script
I worked for a few hours coding this and learning how to make it work
It wasnt easy but it worked.
send an e-mail if ud like this script...i think it would really help in blockin attackers.
Ps if u have the skill to upgrade it or give it more functions...by all means help is appreciated.
To be honest raven i hope you use this...id love to block all those ips..
now this is interesting..ive found a part of this forum where it was discussed but seems discussions ended...am i missing a part?
Id love to get in and see if i cant help in some way or another..im just learning how to code but i learn fast and would love to be able to put the talents to somethin i truly believe in. |
|
|
|
|
|
BobMarion
Former Admin in Good Standing
Joined: Oct 30, 2002
Posts: 1043
Location: RedNeck Land (known as Kentucky)
|
| Posted:
Mon May 22, 2006 9:33 pm |
|
darklord, you need to update your ip2country database to reflect the recently released iana ranges. I'm on one of those so I get the nice message telling me I'm using an invalid IP 
247ghost, what module is this that you are getting the block from running it's installer?
NukeSentinel(tm) 2.5.00 will have an on/off switch for it's self to be able to test module interactions. I've already coded that portion of the 2.5.00 version. |
|
|
|
|
|
gregexp
The Mouse Is Extension Of Arm
Joined: Feb 21, 2006
Posts: 1497
Location: In front of a screen....HELP! lol
|
| Posted:
Tue May 23, 2006 2:53 am |
|
Your absolutley right and ill do just that..my apologize.
UPDATE: done |
|
|
|
|
|
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
| Posted:
Tue May 23, 2006 8:00 am |
|
| BobMarion wrote: | darklord, you need to update your ip2country database to reflect the recently released iana ranges. I'm on one of those so I get the nice message telling me I'm using an invalid IP
247ghost, what module is this that you are getting the block from running it's installer?
NukeSentinel(tm) 2.5.00 will have an on/off switch for it's self to be able to test module interactions. I've already coded that portion of the 2.5.00 version. |
Hi, i run a gameserver and my website is all to do with that, the module im trying to install is an x-fire module, it displays the x-fire signatures of players in a page and also allows the players to upload the details to the site to..
module is from here (site a bit slow to load)
any more help appreciated, thx
bye for now |
|
|
|
|
|
BobMarion
Former Admin in Good Standing
Joined: Oct 30, 2002
Posts: 1043
Location: RedNeck Land (known as Kentucky)
|
| Posted:
Mon May 29, 2006 9:11 am |
|
Once I had the time to check it out I found why the installer is sparking a blockage:
<a href=install-xfire.php?cmd=install>
NukeSentinel sees the cmd = as a possible sql inject exploit and therefore blocks the ip. |
|
|
|
|
|
247ghost
New Member
Joined: May 11, 2006
Posts: 6
|
| Posted:
Mon May 29, 2006 11:18 am |
|
Hi, thx for taking the time to look, the question is??
is there any way around this problem ?
kind regards |
|
|
|
|
|
|
|
|
|
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::