Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ Bug Reports
Author Message
shmk
Worker
Worker


Joined: Dec 21, 2004
Posts: 116

PostPosted: Thu Jul 07, 2005 1:36 pm Reply with quote

I got the "possible santy worm attack" with this url:
".etc.etc./Anurid%20Brushhopper.full.jpg"

Which is the string founded as "possible" attack ?
How I can resolve it ?

Thx Smile
 
View user's profile Send private message
hitwalker
Sells PC To Pay For Divorce


Joined:
Posts: 5661

PostPosted: Thu Jul 07, 2005 2:44 pm Reply with quote

are you sure...? Only registered users can see links on this board! Get registered or login!
 
View user's profile Send private message
shmk
PostPosted: Fri Jul 08, 2005 2:50 am Reply with quote

My link have a space (%20) instead of underscore

This is the full link Only registered users can see links on this board! Get registered or login!
When you click on the first thumb yuo'll get the error, on other omages no.
 
hitwalker
PostPosted: Fri Jul 08, 2005 4:08 am Reply with quote

well its registered only so i cannot see,but i think your mistaken on this...
the spaces with % usualy are created because there is a space in a filename.
for example..if a image name "theair.jpg" suddenly is called "the air.jpg"(see the space) then it would show as the%air.jpg.
 
shmk
PostPosted: Sat Jul 09, 2005 3:07 am Reply with quote

hitwalker wrote:
well its registered only so i cannot see,but i think your mistaken on this...
the spaces with % usualy are created because there is a space in a filename.
for example..if a image name "theair.jpg" suddenly is called "the air.jpg"(see the space) then it would show as the%air.jpg.


The strange is that I have hundreds of link with %20 in the middle but only this one is blocked by sentinel... which is the string that it found as bad ?
"%20Br" ?
"id%20" ?
"id%20Br" ?
"BOH" ?
 
hitwalker
PostPosted: Sat Jul 09, 2005 4:25 am Reply with quote

i dont know that for sure,this is not a bug...
just repost in proper sentinel forum and will be answered.
 
64bitguy
The Mouse Is Extension Of Arm


Joined: Mar 06, 2004
Posts: 1159
Location: Sanbornton, NH USA

PostPosted: Sat Jul 09, 2005 3:44 pm Reply with quote

The only thing I can think of is that it seeing the hex code and then the "rush" which could be a problem. I'm just not sure how to nail it down in Sentinel as I'm kind of using my own hacked version.

If it's a link to an image on your site, change the properties of it to an underscore and eliminate the hex code which should (at least from my perspective) resolve the issue.

_________________
Steph Benoit Only registered users can see links on this board! Get registered or login!
1CMS, 100% Section 508 and W3C XHTML/CSS Compliant (Truly) 
View user's profile Send private message Visit poster's website
shmk
PostPosted: Thu Aug 04, 2005 9:39 am Reply with quote

I renamed, substituting the spaces with underscores, my 22074 images and reuploaded but the error remains.
I think that a part of the error is caused by the word Rush... but what u means with "hex code" ? The %20 that i removed ?
 
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17077

PostPosted: Thu Aug 04, 2005 10:08 am Reply with quote

Just try turning off the Santy worm check and see if it works.
 
View user's profile Send private message
shmk
PostPosted: Fri Aug 05, 2005 2:15 am Reply with quote

Raven wrote:
Just try turning off the Santy worm check and see if it works.


Sure it works.
But I want to know why sentinel with santy ON blocks it.
Which is the string that it founds as bad, so I can miss that error in my future modules.
 
Raven
PostPosted: Fri Aug 05, 2005 4:53 am Reply with quote

The word RUSH would be my guess as it was yours.
 
Display posts from previous:       
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ Bug Reports

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©