Admin.php Secruity

Hangin' Around Joined: Dec 26, 2006 Posts: 28

Hey ive been reading somet opics in this section about admin.php secruity and right now i got this in my admin.php

Code:

<?php





/************************************************************************/


/* PHP-NUKE: Advanced Content Management System                         */


/* ============================================                         */


/*                                                                      */


/* Copyright (c) 2002 by Francisco Burzi                                */


/* http://phpnuke.org                                                   */


/*                                                                      */


/* This program is free software. You can redistribute it and/or modify */


/* it under the terms of the GNU General Public License as published by */


/* the Free Software Foundation; either version 2 of the License.       */


/************************************************************************/





define('ADMIN_FILE', true);


require_once("mainfile.php");





if(isset($aid)) {


  if($aid AND (!isset($admin) OR empty($admin)) AND $op!='login') {


    unset($aid);


    unset($admin);


    die("Access Denied");


  }


}





//Uncomment the following lines after setting the site url in the Administration


   global $domain;


  if (!stripos_clone($_SERVER['HTTP_HOST'], $domain)) {


  die("Access denied");


 }

And ive read from one of Raven's posts that i should add the following code above define('ADMIN_FILE', true);
require_once("mainfile.php");

Code:

$nastyGram = "<center>::<br />Thanks for providing me with your connection information!<br />You have been caught attempting to break into my site and appropriate action will be taken.<br />::</center>";


$myPHPVersion = str_replace('.','',phpversion());


if ($myPHPVersion>=410) $checkMyUrl = $_SERVER['REQUEST_URI'];


else $checkMyUrl = getenv("REQUEST_URI");


if (preg_match("/\?admin/", "$checkMyUrl")) {


   require_once("mainfile.php");


    include("header.php");


    OpenTable();


   echo $nastyGram;


   CloseTable();


   include "footer.php";


   die();


}

Do you think i should or has it already mostly been done just coded in a different way because im running on the newst version of Raven Nuke?

Sells PC To Pay For Divorce Joined: Posts: 5661

you dont have to do anything if you have ravennuke running,just follow the upgrade when new version will be released.

Posted: Thu Dec 28, 2006 6:14 pm

oh okay, thanks. When will the new version be release, well an estimate date?

Posted: Fri Dec 29, 2006 2:15 am

well i think it should have been released by now but ill guess it can be any moment...

Posted: Fri Dec 29, 2006 12:51 pm

I cant wait for Raven to release Raven Nuke76 v2.10.00, Ill probably be coming here everyday just to see if he released it lol.