bry2k
New Member
Joined: Dec 07, 2004
Posts: 12
|
 Posted:
Thu Dec 09, 2004 12:56 am |
|
Hello, I have Nuke Sentinel installed on top of a new install of Chatservs Nuke Patched v7.6, and all is well. Install was cake! I especially love the ability to add server htaccess password protection to any admin.
I have several questions, if you would be so kind:
1) I am unable to change the crypt salt string from what I presume is the default of 'N$'. Everytime I change it and save prefs, it reverts to the original string. Does it really matter?
2) I couldn't find an answer to this next batch of questions, so if this has been thoroughly answered, please point me to a link. If it hasn't been thoroughly answered, maybe this would be a good place to put all the right answers in one place. The question is, what is the best typical setup overall? Should I turn everything on? And what is the reason to not turn everything on? Performance? My site performance does not seem to be suffering in any way with almost everything turned on. Here's where I'm at:
ADMIN Blocker Settings - ON
AUTHOR Blocker Settings - ON
CLIKE Blocker Settings - ON
UNION Blocker Settings - ON
Filters Blocker Settings - ON
Harvester Blocker Settings - ON - but have a question below
Referer Blocker Settings - ON - but have a question below
Scripting Blocker Settings - ON
Request Method Blocker Settings - OFF - I have a question below
String Blocker Settings - OFF - have a question below
3) RE Harvester blocker - is the default list strictly known bad bots (porn, etc), or do I need to be concerned that I'm eliminating my site from some potentially useful web cache services?
4) Referer blocker - same question - or those defaults all strictly porn/spam sites? And is the list up to date, or is Sentinel checking against a bunch of domains that may not even exist anymore?
5) Request method blocker -- what should I enter there? Not GET and POST. But what then?
6) String blocker - please tell me what a wise security admin would put there as well. 
Lastly, I have what I think is a very useful feature request. It would be very beneficial for 'superuser' admins and I think it might be very simple to implement, but I don't know for sure. It's definitely something I need, and perhaps theres a workaround I'm not aware of. Please check it ou here. http://www.ravenphpscripts.com/postp27850.html#27850
Thanks! |
| |
|
BobMarion
Former Admin in Good Standing
Joined: Oct 30, 2002
Posts: 1037
Location: RedNeck Land (known as Kentucky)
|
| Posted:
Thu Dec 09, 2004 1:37 am |
|
For 1), do the following: Open admin/modules/sentinel/ABMainSave.php and you will see:Code: $admin_list = explode("\r\n", $xadmin_contact);
sort($admin_list);
$xadmin_contact = implode("\r\n", $admin_list);
absave_config("admin_contact",$xadmin_contact);
absave_config("block_perpage",$xblock_perpage);
absave_config("block_sort_column",$xblock_sort_column);
absave_config("block_sort_direction",$xblock_sort_direction);
absave_config("display_link",$xdisplay_link);
absave_config("display_reason",$xdisplay_reason);
absave_config("force_nukeurl",$xforce_nukeurl);
absave_config("help_switch",$xhelp_switch);
absave_config("htaccess_path",$xhtaccess_path);
absave_config("lookup_link",$xlookup_link);
absave_config("staccess_path",$xstaccess_path);
absave_config("http_auth",$xhttp_auth);
absave_config("prevent_dos",$xprevent_dos);
absave_config("proxy_reason",$xproxy_reason);
absave_config("proxy_switch",$xproxy_switch);
absave_config("search_block_perpage",$xsearch_block_perpage);
absave_config("search_block_sort_column",$xsearch_block_sort_column);
absave_config("search_block_sort_direction",$xsearch_block_sort_direction);
absave_config("search_track_perpage",$xsearch_track_perpage);
absave_config("search_track_sort_column",$xsearch_track_sort_column);
absave_config("search_track_sort_direction",$xsearch_track_sort_direction);
absave_config("search_user_perpage",$xsearch_user_perpage);
absave_config("search_user_sort_column",$xsearch_user_sort_column);
absave_config("search_user_sort_direction",$xsearch_user_sort_direction);
absave_config("self_expire",$xself_expire);
absave_config("site_reason",$xsite_reason);
absave_config("site_switch",$xsite_switch);
absave_config("track_active",$xtrack_active);
absave_config("track_del",$xtrack_del);
absave_config("track_max",$xtrack_max);
absave_config("track_perpage",$xtrack_perpage);
absave_config("track_sort_column",$xtrack_sort_column);
absave_config("track_sort_direction",$xtrack_sort_direction);
Header("Location: admin.php?op=ABMain");
|
Add:Code: absave_config("crypt_salt",$xcrypt_salt);
|
Now it should look like:Code: $admin_list = explode("\r\n", $xadmin_contact);
sort($admin_list);
$xadmin_contact = implode("\r\n", $admin_list);
absave_config("admin_contact",$xadmin_contact);
absave_config("block_perpage",$xblock_perpage);
absave_config("block_sort_column",$xblock_sort_column);
absave_config("block_sort_direction",$xblock_sort_direction);
absave_config("crypt_salt",$xcrypt_salt);
absave_config("display_link",$xdisplay_link);
absave_config("display_reason",$xdisplay_reason);
absave_config("force_nukeurl",$xforce_nukeurl);
absave_config("help_switch",$xhelp_switch);
absave_config("htaccess_path",$xhtaccess_path);
absave_config("lookup_link",$xlookup_link);
absave_config("staccess_path",$xstaccess_path);
absave_config("http_auth",$xhttp_auth);
absave_config("prevent_dos",$xprevent_dos);
absave_config("proxy_reason",$xproxy_reason);
absave_config("proxy_switch",$xproxy_switch);
absave_config("search_block_perpage",$xsearch_block_perpage);
absave_config("search_block_sort_column",$xsearch_block_sort_column);
absave_config("search_block_sort_direction",$xsearch_block_sort_direction);
absave_config("search_track_perpage",$xsearch_track_perpage);
absave_config("search_track_sort_column",$xsearch_track_sort_column);
absave_config("search_track_sort_direction",$xsearch_track_sort_direction);
absave_config("search_user_perpage",$xsearch_user_perpage);
absave_config("search_user_sort_column",$xsearch_user_sort_column);
absave_config("search_user_sort_direction",$xsearch_user_sort_direction);
absave_config("self_expire",$xself_expire);
absave_config("site_reason",$xsite_reason);
absave_config("site_switch",$xsite_switch);
absave_config("track_active",$xtrack_active);
absave_config("track_del",$xtrack_del);
absave_config("track_max",$xtrack_max);
absave_config("track_perpage",$xtrack_perpage);
absave_config("track_sort_column",$xtrack_sort_column);
absave_config("track_sort_direction",$xtrack_sort_direction);
Header("Location: admin.php?op=ABMain");
|
|
_________________
Bob Marion
Codito Ergo Sum
http://www.nukescripts.net |
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
