Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - Other
Author Message
steve_lemaster
Worker
Worker


Joined: Dec 26, 2006
Posts: 178

PostPosted: Mon Aug 25, 2008 8:11 pm Reply with quote

User Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727) Query String: name=News&file=article&sid=725';DECLARE @S CHAR(4000);SET @S=CAST(*load of numbers removed* AS CHAR(4000));EXEC(@S);

_________________
The urge to save humanity is often a false front for the urge to rule.

- H.L. Mencken 
View user's profile Send private message Send e-mail
jakec
Site Admin


Joined: Feb 06, 2006
Posts: 3048
Location: United Kingdom

PostPosted: Mon Aug 25, 2008 11:59 pm Reply with quote

Please search before posting. See here: Only registered users can see links on this board! Get registered or login!
 
View user's profile Send private message
steve_lemaster
PostPosted: Tue Aug 26, 2008 8:32 am Reply with quote

Thanks. But, you have no idea what it's like to trying to find something that you don't understand.
 
jakec
PostPosted: Tue Aug 26, 2008 10:33 am Reply with quote

I don't really understand it myself, but a search for "declare and cast" would have found the post. There have been two other posts within the past couple of days with the same thing.
 
steve_lemaster
PostPosted: Tue Aug 26, 2008 10:40 am Reply with quote

Thanks.

What you have to understand is that it's all new to me. I could not have possibly known what "declare and cast" means, so naurally I would not have known what to look for.

But, it appears to be fixed now.
 
jakec
PostPosted: Tue Aug 26, 2008 10:47 am Reply with quote

I understand, I was just trying to give you a gentle nudge in the right direction. Wink

I'm glad you've got it working.

RavensScripts
 
steve_lemaster
PostPosted: Tue Aug 26, 2008 10:50 am Reply with quote

NP Smile

Can you point me to where I can learn more about this type of attack?
 
Gremmie
Former Moderator in Good Standing


Joined: Apr 06, 2006
Posts: 2415
Location: Iowa, USA

PostPosted: Tue Aug 26, 2008 11:13 am Reply with quote

evaders99 posted a link to an explanation in the same thread that I posted the .htacess rewrite rule.

The ironic thing is that this attack is meant for a completely different system than Nuke. I love it when people just try things at random a ba-jillion times.

_________________
Only registered users can see links on this board! Get registered or login! - An Event Calendar for PHP-Nuke
Only registered users can see links on this board! Get registered or login! - A Google Maps Nuke Module 
View user's profile Send private message
steve_lemaster
PostPosted: Tue Aug 26, 2008 11:22 am Reply with quote

I just thank the people who wrote NukeSentinel. Glad to see my donations help.

Thanks for your patience.
 
sebastiaan
New Member
New Member


Joined: Apr 27, 2009
Posts: 21
Location: The Netherlands

PostPosted: Sat Jul 18, 2009 6:13 am Reply with quote

when you see a agent like this (User Agent: Mozilla/4.0 ) most of the time its abot msn (bing) google als becarefull whit the googlemedia bot that bot likes the admin.php
 
View user's profile Send private message Send e-mail Visit poster's website MSN Messenger
Guardian2003
Site Admin


Joined: Aug 28, 2003
Posts: 6793
Location: Ha Noi, Viet Nam

PostPosted: Sat Jul 18, 2009 8:55 am Reply with quote

There should not be any open admin links for google-media to find.
Check your robots.txt is correct. It should have
/admin.php
and not
admin.php
 
View user's profile Send private message Send e-mail
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - Other

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©