Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
louis_domino
Hangin' Around


Joined: Dec 26, 2006
Posts: 28

PostPosted: Thu Dec 28, 2006 12:50 pm Reply with quote

Hey ive been reading somet opics in this section about admin.php secruity and right now i got this in my admin.php

Code:
<?php


/************************************************************************/
/* PHP-NUKE: Advanced Content Management System                         */
/* ============================================                         */
/*                                                                      */
/* Copyright (c) 2002 by Francisco Burzi                                */
/* http://phpnuke.org                                                   */
/*                                                                      */
/* This program is free software. You can redistribute it and/or modify */
/* it under the terms of the GNU General Public License as published by */
/* the Free Software Foundation; either version 2 of the License.       */
/************************************************************************/

define('ADMIN_FILE', true);
require_once("mainfile.php");

if(isset($aid)) {
  if($aid AND (!isset($admin) OR empty($admin)) AND $op!='login') {
    unset($aid);
    unset($admin);
    die("Access Denied");
  }
}

//Uncomment the following lines after setting the site url in the Administration
   global $domain;
  if (!stripos_clone($_SERVER['HTTP_HOST'], $domain)) {
  die("Access denied");
 }




And ive read from one of Raven's posts that i should add the following code above define('ADMIN_FILE', true);
require_once("mainfile.php");

Code:
$nastyGram = "<center>::<br />Thanks for providing me with your connection information!<br />You have been caught attempting to break into my site and appropriate action will be taken.<br />::</center>";

$myPHPVersion = str_replace('.','',phpversion());
if ($myPHPVersion>=410) $checkMyUrl = $_SERVER['REQUEST_URI'];
else $checkMyUrl = getenv("REQUEST_URI");
if (preg_match("/\?admin/", "$checkMyUrl")) {
   require_once("mainfile.php");
    include("header.php");
    OpenTable();
   echo $nastyGram;
   CloseTable();
   include "footer.php";
   die();
}



Do you think i should or has it already mostly been done just coded in a different way because im running on the newst version of Raven Nuke?
 
View user's profile Send private message
hitwalker
Sells PC To Pay For Divorce


Joined:
Posts: 5661

PostPosted: Thu Dec 28, 2006 3:45 pm Reply with quote

you dont have to do anything if you have ravennuke running,just follow the upgrade when new version will be released.
 
View user's profile Send private message
louis_domino
PostPosted: Thu Dec 28, 2006 6:14 pm Reply with quote

oh okay, thanks. When will the new version be release, well an estimate date?
 
hitwalker
PostPosted: Fri Dec 29, 2006 2:15 am Reply with quote

well i think it should have been released by now but ill guess it can be any moment...
 
louis_domino
PostPosted: Fri Dec 29, 2006 12:51 pm Reply with quote

I cant wait for Raven to release Raven Nuke76 v2.10.00, Ill probably be coming here everyday just to see if he released it lol.
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©