Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> How To's
Author Message
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17077

PostPosted: Sun Oct 03, 2004 10:52 pm Reply with quote

This is only for those that do NOT use My_eGallery!

Just as I have done for the cgi hack attempts, I have now done for all these my_egallery exploit attempts. Make a honeypot as follows.

Create a folder called modules/My_eGallery
Create a sub-folder called public in My_eGallery
Create .htaccess file for the modules/My_eGallery/public folder as
Code:
RewriteEngine On

RewriteCond %{REQUEST_URI} "/modules/My_eGallery/public/.*$" [NC]
RewriteRule ^(.+) http://your_site.com/abuse/abuse.html


Now this assumes you are using Ganja's PC Killer templates. If not, direct them wherever you want Wink

You could also just add this to your main .htaccess file, but by layering it in the subfolders Apache does not have to process the directive everytime.
 
View user's profile Send private message
Nukeum66
Life Cycles Becoming CPU Cycles


Joined: Jul 30, 2003
Posts: 551
Location: Neurotic, State, USA

PostPosted: Mon Oct 04, 2004 12:55 am Reply with quote

I send them to know Browser Hijacking site.... Laughing
Give them a little dose of there own crap! Evil or Very Mad

_________________
Scott Johnson MIS Ubuntu/Linux 11.10 
View user's profile Send private message Visit poster's website
blith
Client


Joined: Jul 18, 2003
Posts: 977

PostPosted: Mon Oct 04, 2004 8:12 am Reply with quote

Raven, I do not have an abuse.html file in there it is an abuse.php. Is that the one to use? Thanks.
 
View user's profile Send private message Visit poster's website
Raven
PostPosted: Mon Oct 04, 2004 9:02 am Reply with quote

Yes. GT changes it on mine Smile
 
sixonetonoffun
Spouse Contemplates Divorce


Joined: Jan 02, 2003
Posts: 2496

PostPosted: Fri Oct 22, 2004 3:49 pm Reply with quote

I set this up right after this post on a domain that is not being used.
Interesting results were exactly to date 100 hits on that funny displayCategory.php
Of those hits the majority were from 200.* 201.* and 218*
99 of those were using linux/Mozilla sposedly
1 was a win98 user and ate many many pages of abuse.php/abuse.js

I'm going to work out something to ban these nix users though since they don't appear to be redirecting at all. I'm guessing they aren't even using a browser for the most part.

_________________
[b][size=5]openSUSE 11.4-x86 | Linux 2.6.37.1-1.2desktop i686 | KDE: 4.6.41>=4.7 | XFCE 4.8 | AMD Athlon(tm) XP 3000+ | MSI K7N2 Delta-L | 3GB Black Diamond DDR
| GeForce 6200@433Mhz 512MB | Xorg 1.9.3 | NVIDIA 270.30[/size:2b8 
View user's profile Send private message
darksied
Hangin' Around


Joined: Jan 27, 2004
Posts: 25
Location: New Jersey

PostPosted: Wed Mar 02, 2005 1:00 am Reply with quote

would these changes below work for coppermine

Code:
RewriteEngine On

RewriteCond %{REQUEST_URI} "/modules/coppermine/.*$" [NC]
RewriteRule ^(.+) http://your site.com/abuse/abuse.html


plus can some one tell me when RewriteEngine Off is used
 
View user's profile Send private message Visit poster's website AIM Address
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> How To's

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©