Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ Bug Reports
Author Message
Bravo2zero
Regular
Regular


Joined: Nov 28, 2005
Posts: 92
Location: UK

PostPosted: Tue Mar 06, 2007 6:58 am Reply with quote

hi all,
can someone help please with a problem i'm having with sending certain words when placed in a sentence, but can be sent on it's own in pm or post!

example i and other users can send the word "union" on it's own

but

when sent as i do not live in the european union countries (in a pm)

then when you click submit the system returns you to the homepage !!!!!

is it linked to sentinel security blocker config on union attacks blocker etc

thanks in advance

B2Z

_________________
dodging bullets ain't easy but it's a job! 
View user's profile Send private message
jakec
Site Admin


Joined: Feb 06, 2006
Posts: 3048
Location: United Kingdom

PostPosted: Tue Mar 06, 2007 7:16 am Reply with quote

I think if you do a search in the forums here you may find an answer, as this has been discussed before.

What version of Sentinel are you using?
 
View user's profile Send private message
Bravo2zero
PostPosted: Tue Mar 06, 2007 7:22 am Reply with quote

thanks for the fast reply,

version: NukeSentinel(tm) 2.5.05: Enabled:

TIA
B2Z
 
Bravo2zero
PostPosted: Tue Mar 06, 2007 7:25 am Reply with quote

can you give me a clue as what search criteria i should use?

tia

B2Z
 
jakec
PostPosted: Tue Mar 06, 2007 7:38 am Reply with quote

Try this patch by fkelly: Only registered users can see links on this board! Get registered or login!
 
Bravo2zero
PostPosted: Tue Mar 06, 2007 8:09 am Reply with quote

was just coming back to say i found this lol
Only registered users can see links on this board! Get registered or login!

thanks already altered and works fine

ta
B2Z
 
Gremmie
Former Moderator in Good Standing


Joined: Apr 06, 2006
Posts: 2415
Location: Iowa, USA

PostPosted: Tue Mar 06, 2007 8:12 am Reply with quote

I had this problem, and it wasn't Nuke Sentinel. It was PHP-Nuke 7.9. It had it's own logic in mainfile.php that if it detected union, alert, http-equiv, and maybe something else, it would just throw you to the index.php page. Please see this thread:
Only registered users can see links on this board! Get registered or login!

If you have that logic, I suggest removing it.

What version of Nuke are you using?

_________________
Only registered users can see links on this board! Get registered or login! - An Event Calendar for PHP-Nuke
Only registered users can see links on this board! Get registered or login! - A Google Maps Nuke Module 
View user's profile Send private message
Gremmie
PostPosted: Tue Mar 06, 2007 8:17 am Reply with quote

Looks like both threads came to similar conclusions.
 
fkelly
Former Moderator in Good Standing


Joined: Aug 30, 2005
Posts: 3312
Location: near Albany NY

PostPosted: Tue Mar 06, 2007 10:45 am Reply with quote

Quote:
Looks like both threads came to similar conclusions.
Yep, and that whole set of logic has been removed from mainfile in 2.10.
 
View user's profile Send private message Visit poster's website
Bravo2zero
PostPosted: Tue Mar 06, 2007 11:26 am Reply with quote

hi all,

so sorry to ask but relating to post Only registered users can see links on this board! Get registered or login!

is it still ok or do i now need to alter it again? as i can post the union now!

TIA
B2Z
 
fkelly
PostPosted: Tue Mar 06, 2007 4:51 pm Reply with quote

If you can post it then I'd leave it alone. Just get 2.10 when it's available and the problem will really be taken care of without having to go in and hack code (lol, we did it for you).
 
Bravo2zero
PostPosted: Tue Mar 06, 2007 6:18 pm Reply with quote

ok cheers
B2Z
 
binhaus
Hangin' Around


Joined: Oct 17, 2006
Posts: 25

PostPosted: Tue Apr 03, 2007 7:55 am Reply with quote

i have nuke 7,9 patched3.2 and followed the patching instruction for mainfile.php
using NS 5.2 05 version but still have this problem remain .. ????

all the work like union arlert .. is can not post in the forums but can post in the news article ...
any help????
 
View user's profile Send private message
jakec
PostPosted: Wed Apr 04, 2007 5:55 am Reply with quote

Have you carried out the fixes in the posts posted above?
 
binhaus
PostPosted: Wed Apr 04, 2007 6:06 am Reply with quote

but as the posts of posted to fix that problem .. the solution is VS the instruction of the nuke NS
i have really code exact as the posts of posted above in the code .. then when install the NS .. flow instructions .. i have comment out all of that codes ( as i think the NS really make to cover this securitis issuse so the some code in the mainfile.php is not nessesery any more ) ..
please suggestion..
what i need to do??
ignoge the NS instruction installation then enable those code above ???
( then use post here Only registered users can see links on this board! Get registered or login! )..

what i need to do??
thank for any help..!!
 
Gremmie
PostPosted: Wed Apr 04, 2007 6:54 am Reply with quote

Hi, I'm having trouble understanding you, but...

You need to comment out or remove the code in PHP-Nuke 7.9's mainfile.php that checks for union, alert, http-equiv, etc as outlined in this thread:
Only registered users can see links on this board! Get registered or login!

I see you have already posted on that thread. Did you comment out that code?
 
binhaus
PostPosted: Wed Apr 04, 2007 7:07 am Reply with quote

yes.. i did exact as the NS tell me to..
have comented out both of the code on the thread you mentions

my code now look like this


Code:



$postString = "";
foreach ($_POST as $postkey => $postvalue) {
    if ($postString > "") {
     $postString .= "&".$postkey."=".$postvalue;
    } else {
     $postString .= $postkey."=".$postvalue;
    }
}
str_replace("%09", "%20", $postString);
$postString_64 = base64_decode($postString);
if ((!is_admin($admin)) AND (stristr($postString,'%20union%20')) OR (stristr($postString,'*/union/*')) OR (stristr($postString,' union ')) OR (stristr($postString_64,'%20union%20')) OR (stristr($postString_64,'*/union/*')) OR (stristr($postString_64,' union ')) OR (stristr($postString_64,'+union+')) OR (stristr($postString,'http-equiv')) OR (stristr($postString_64,'http-equiv')) OR (stristr($postString,'alert(')) OR (stristr($postString_64,'alert('))) {
header("Location: index.php");
die();
}


/*
// Additional security (Union, CLike, XSS)
if(!file_exists('includes/nukesentinel.php')) {
  //Union Tap
  //Copyright Zhen-Xjell 2004 http://nukecops.com
  //Beta 3 Code to prevent UNION SQL Injections
  unset($matches);
  unset($loc);
  if(isset($_SERVER['QUERY_STRING'])) {
    if (preg_match("/([OdWo5NIbpuU4V2iJT0n]{5}) /", rawurldecode($loc=$_SERVER['QUERY_STRING']), $matches)) {
      die('Illegal Operation');
    }
  }
*/
//  if((!is_admin($admin)) AND (isset($_SERVER['QUERY_STRING'])) AND (!stristr($_SERVER['QUERY_STRING'], "ad_click"))) {
//    $queryString = $_SERVER['QUERY_STRING'];
//    if ((stristr($queryString,'%20union%20')) OR (stristr($queryString,'/*')) OR (stristr($queryString,'*/union/*')) OR (stristr($queryString,'c2nyaxb0')) OR (stristr($queryString,'+union+')) OR (stristr($queryString,'http://')) OR ((stristr($queryString,'cmd=')) AND (!stristr($queryString,'&cmd'))) OR ((stristr($queryString,'exec')) AND (!stristr($queryString,'execu'))) OR (stristr($queryString,'concat'))) {
//      die('Illegal Operation');
//    }
//  }
//}

so all the securities of union attach to similar type is depend on the NS ..

what i need to do to help user can post the posts with can have words like " union " " arlert " like this forums here ..??
thank for any infor ..
 
Gremmie
PostPosted: Wed Apr 04, 2007 7:28 am Reply with quote

You still haven't commented out all the code.

Comment out or remove this also:

Code:


$postString = "";
foreach ($_POST as $postkey => $postvalue) {
    if ($postString > "") {
     $postString .= "&".$postkey."=".$postvalue;
    } else {
     $postString .= $postkey."=".$postvalue;
    }
}
str_replace("%09", "%20", $postString);
$postString_64 = base64_decode($postString);
if ((!is_admin($admin)) AND (stristr($postString,'%20union%20')) OR (stristr($postString,'*/union/*')) OR (stristr($postString,' union ')) OR (stristr($postString_64,'%20union%20')) OR (stristr($postString_64,'*/union/*')) OR (stristr($postString_64,' union ')) OR (stristr($postString_64,'+union+')) OR (stristr($postString,'http-equiv')) OR (stristr($postString_64,'http-equiv')) OR (stristr($postString,'alert(')) OR (stristr($postString_64,'alert('))) {
header("Location: index.php");
die();
}
 
binhaus
PostPosted: Wed Apr 04, 2007 7:30 am Reply with quote

i i have just folow the second post of the thread you mention.. to wrap the code
( just copy and past to the mainfile )

and then commented out all the code i just post last post here...

now i can post the words like " union arlert " in the forums .. but not make sure that security .. by that way not mention to comment out in the NS .. have you got any way to test that secure ..

thannks
 
Gremmie
PostPosted: Wed Apr 04, 2007 8:14 am Reply with quote

Again, I'm having trouble understanding you...sorry...but if you have NukeSentinel it will protect you far better than that code in mainfile.php that you removed.
 
binhaus
PostPosted: Wed Apr 04, 2007 8:02 pm Reply with quote

sorry my explained ..
Quote:
but if you have NukeSentinel it will protect you far better than that code in mainfile.php that you removed.


so now i know .. the NS is better replacement of the code we talk above to removed..
thanks anyway.. i feel great now Smile

---- mysign -
to entertain you ->> thousands colections of clip over internet -> *http://www.tv.xaluan.com
 
Display posts from previous:       
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> NukeSentinel™ Bug Reports

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©