Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™
Author Message
dcasmr
Worker
Worker


Joined: Feb 06, 2004
Posts: 147

PostPosted: Sun Jan 02, 2005 5:32 pm Reply with quote

Hi all,

Can anyone suggest what is good to have in .htaccess based on your own experience of bad things to ban / exclude etc?
Also is .staccess required? The file is blank.

Thanks,
dcasmr



Options All -Indexes
DirectoryIndex index.php index.htm index.html

# -------------------------------------------
# Start of NukeSentinel(tm) admin.php Auth
# -------------------------------------------
<Files .staccess>
deny from all
</Files>

<Files admin.php>
<Limit GET POST PUT>
require valid-user
</Limit>
AuthName "Restricted"
AuthType Basic
AuthUserFile /path/to/your/.staccess

#Check for Santy Worms and redirect them to a fake page
RewriteCond %{HTTP_USER_AGENT} ^LWP [NC,OR]
RewriteCond %{REQUEST_URI} ^visualcoders [NC,OR]
RewriteCond %{QUERY_STRING} rush=([^&]+) [NC,OR]
RewriteCond %{REQUEST_URI} ^envidiosos [NC,OR]
RewriteCond %{REQUEST_URI} ^civa [NC,OR]
#variant-6 redirect all inner Only registered users can see links on this board! Get registered or login! request
RewriteCond %{QUERY_STRING} ^(.*)http://(.*) [NC,OR]
#variant-7 redirect all inner http request regardless if encoded
RewriteCond %{QUERY_STRING} ^(.*)http%3A%2F%2F(.*) [NC]
RewriteRule ^.*$ Only registered users can see links on this board! Get registered or login! [R,L]

</Files>

# -------------------------------------------
# Start of NukeSentinel(tm) DENY FROM area
# -------------------------------------------
 
View user's profile Send private message
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17077

PostPosted: Wed Jan 05, 2005 5:13 am Reply with quote

That's fine for .htaccess. .staccess is only required if you are using CGIAuth instead of HTTPAuth.
 
View user's profile Send private message
nb
New Member
New Member


Joined: Jan 07, 2005
Posts: 4

PostPosted: Fri Jan 07, 2005 3:51 pm Reply with quote

i have a neuromuscular diseases (MITO) legally blind
its hard to type and see all the codeing
my site was hacked 2 times
http://nb-productions.com/ i have install Nuke Sentinel
but dont no if its set up right htaccess ect any way you can look and see run a
test ? Bob Marion was going to look at it for me but he has ben busy e-mail me at Only registered users can see links on this board! Get registered or login! if you can help
 
View user's profile Send private message Visit poster's website
nb
PostPosted: Fri Jan 07, 2005 11:19 pm Reply with quote

nb, to late site was hacked makes 3 times will not hacked this time just deface Only registered users can see links on this board! Get registered or login!
 
Raven
PostPosted: Sat Jan 08, 2005 1:46 am Reply with quote

Would you like me to install/setup NukeSentinel on your site?
 
nb
PostPosted: Sat Jan 08, 2005 2:20 am Reply with quote

yes if you have the time tell me what info you will need send to Only registered users can see links on this board! Get registered or login! ill send the info back
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©