Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.4.x
Author Message
247ghost
New Member
New Member


Joined: May 11, 2006
Posts: 6

PostPosted: Thu May 11, 2006 7:36 pm Reply with quote

Hi, im new to this site and the world of nuke and php etc.

My story goes, i had a website running php nuke 7.6 and it continually got hacked, i tried to install nuke sentinel on it but had no luck, in the end i gave up and completely re-installed the website with Nuke-Evolution which included sentinel and set it all up for me.

My problem is now, when i want to add some new modules to my website and they have a install file provided with them, nuke sentinel blocks the install.

So lets say i have a new module called "test" and in that package comes a ready made install file called "test-install.php", then you got to Only registered users can see links on this board! Get registered or login! to install the module, but when i do this nuke sentinel blocks the install.
Now i assume this is doing this as it thinks im going to hack the site, but all i want to do is run an install file for a new module.
So my question is, How do i stop nuke sentinel blocking me installing a new module ??

any help appreciated, thx

bye for now
 
View user's profile Send private message Visit poster's website
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17077

PostPosted: Thu May 11, 2006 11:07 pm Reply with quote

What is the reason NukeSentinel(tm) is giving for blocking the script?
 
View user's profile Send private message
247ghost
PostPosted: Fri May 12, 2006 6:09 am Reply with quote

Hi, thx for reply, the error it gives is it just goes straight to this page as soon as i click the install link on a module install.php file

Image

Any ideas ??

bye for now
 
Susann
Moderator


Joined: Dec 19, 2004
Posts: 3191
Location: Germany:Moderator German NukeSentinel Support

PostPosted: Fri May 12, 2006 4:52 pm Reply with quote

You can change the settings for the filter blocker whenever you want to off.

My settings are set to block, email and default I had never problems but the filter blocker and the scripting blocker are sometimes overagressive. I would try different settings for this blocker and check if something changed by installing modules.
 
View user's profile Send private message
247ghost
PostPosted: Fri May 12, 2006 10:12 pm Reply with quote

Confused Hi, i turned of the filter blocker completely, but it still takes me straight to the page i posted above..

Is there ans "easy" way to just turn of sentinel, then turn it back on once i have installed the module??

I am always logged in with the God account, but that dont seem to matter either.....

any other ideas ??

thx, bye for now
 
247ghost
PostPosted: Mon May 15, 2006 10:18 am Reply with quote

Anyone ?? Sad
 
Raven
PostPosted: Mon May 15, 2006 12:51 pm Reply with quote

We need to see the entire GET and/or POST string to see what filter is being trapped. My guess is that the url that is being called is getting triggered by a keyword, but without seeing the url you are submitting I can't help.

To 'temporarily' turn NS off, comment all calls to include("includes/nukesentinel.php"); in mainfile.php.
 
wickedmellow
New Member
New Member


Joined: May 20, 2006
Posts: 3

PostPosted: Sat May 20, 2006 3:26 pm Reply with quote

I'd getting this exact same screen while trying to install this for the first time, where can I change these block settings? I ran into this right after logging into the admin.php file I'm using (renamed as described in the config file) after trying to access "modules"...

Thanks for the help it's appreciated Smile
 
View user's profile Send private message
gregexp
The Mouse Is Extension Of Arm


Joined: Feb 21, 2006
Posts: 1497
Location: In front of a screen....HELP! lol

PostPosted: Sat May 20, 2006 5:31 pm Reply with quote

i cant say with certainty that this is the cause...but try setting ur admin page in ur config file back to admin.php

a question for the members of this site..when sentinel puts the admin pass in its tables...y does it save the pass in regular text?

can i delete the text version of the pass? so no1 can run a script on my site and get the username and pass sentinel has stored...seems likes its just askin for some1 to find an exploit to it.

Just outta curiousity..would it be possible or very hard to write a script that would link to other sites and grab their list of blocked ips to add to ur own...I think that would really deter hackers from makin an attempt if they see that after their proxys or bots get banned by one site..it gets banned by a lot more.
 
View user's profile Send private message Send e-mail Visit poster's website AIM Address Yahoo Messenger MSN Messenger ICQ Number
gregexp
PostPosted: Sun May 21, 2006 4:47 pm Reply with quote

UPDATE
i actually coded somethin like that.. Laughing
and id like whoever would like to see it in action to see it
and send me an e-mail if ud like this script
Only registered users can see links on this board! Get registered or login!

I worked for a few hours coding this and learning how to make it work

It wasnt easy but it worked.
send an e-mail if ud like this script...i think it would really help in blockin attackers.

Ps if u have the skill to upgrade it or give it more functions...by all means help is appreciated.

To be honest raven i hope you use this...id love to block all those ips.. Laughing

now this is interesting..ive found a part of this forum where it was discussed but seems discussions ended...am i missing a part?

Id love to get in and see if i cant help in some way or another..im just learning how to code but i learn fast and would love to be able to put the talents to somethin i truly believe in.
 
BobMarion
Former Admin in Good Standing


Joined: Oct 30, 2002
Posts: 1037
Location: RedNeck Land (known as Kentucky)

PostPosted: Mon May 22, 2006 9:33 pm Reply with quote

darklord, you need to update your ip2country database to reflect the recently released iana ranges. I'm on one of those so I get the nice message telling me I'm using an invalid IP Wink

247ghost, what module is this that you are getting the block from running it's installer?

NukeSentinel(tm) 2.5.00 will have an on/off switch for it's self to be able to test module interactions. I've already coded that portion of the 2.5.00 version.

_________________
Bob Marion
Codito Ergo Sum
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Send e-mail Visit poster's website
gregexp
PostPosted: Tue May 23, 2006 2:53 am Reply with quote

Your absolutley right and ill do just that..my apologize.

UPDATE: done
 
247ghost
PostPosted: Tue May 23, 2006 8:00 am Reply with quote

BobMarion wrote:
darklord, you need to update your ip2country database to reflect the recently released iana ranges. I'm on one of those so I get the nice message telling me I'm using an invalid IP Wink

247ghost, what module is this that you are getting the block from running it's installer?

NukeSentinel(tm) 2.5.00 will have an on/off switch for it's self to be able to test module interactions. I've already coded that portion of the 2.5.00 version.


Hi, i run a gameserver and my website is all to do with that, the module im trying to install is an x-fire module, it displays the x-fire signatures of players in a page and also allows the players to upload the details to the site to..
module is from here (site a bit slow to load)
Only registered users can see links on this board! Get registered or login!

any more help appreciated, thx

bye for now
 
BobMarion
PostPosted: Mon May 29, 2006 9:11 am Reply with quote

Once I had the time to check it out I found why the installer is sparking a blockage:
<a href=install-xfire.php?cmd=install>

NukeSentinel sees the cmd = as a possible sql inject exploit and therefore blocks the ip.
 
247ghost
PostPosted: Mon May 29, 2006 11:18 am Reply with quote

Hi, thx for taking the time to look, the question is??

is there any way around this problem ?

kind regards
 
Display posts from previous:       
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ v2.4.x

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©