Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> Raven's RavenNuke(tm) v2.02.02 Distro
Author Message
RifleMan
New Member
New Member


Joined: Feb 08, 2006
Posts: 14

PostPosted: Fri May 26, 2006 6:12 pm Reply with quote

Hi guys,
With all the probelms I've been having with NukeSentinel(tm) (Re: Only registered users can see links on this board! Get registered or login!)

I went looking for days trying to find an answer. As my host said that they DO allow .htaccess files.

Then I found this thread ( Only registered users can see links on this board! Get registered or login!) and it works like a charm.

Still unable to use the "Admin Auth:" in Sentinel but i'm happy with the added security. (I hope its a good as protection than the "Admin Auth:")

However the question is now that this is all done should I CHMOD the .htaccess & .staccess to something else other than 777 as in the passed my .staccess has been hack. I feel that since this has happened before it will happen again. Can I rename it to something else? if so what other files should i change so as to not create a problem with the other files?

Thanks for all your help guys Especially Raven
Cheers

Coops
 
View user's profile Send private message
jaded
Theme Guru


Joined: Nov 01, 2003
Posts: 1006

PostPosted: Fri May 26, 2006 7:28 pm Reply with quote

they should be 666

_________________
Themes BB Skins Only registered users can see links on this board! Get registered or login!
Graphic Tees Only registered users can see links on this board! Get registered or login!
Paranormal Tees Only registered users can see links on this board! Get registered or login!
Ghost Stories & More Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
Walker
New Member
New Member


Joined: Jan 28, 2005
Posts: 13
Location: Amsterdam, the Netherlands

PostPosted: Sat May 27, 2006 7:23 am Reply with quote

In de quickstart guide it says:

6 - If you are on a *nix server, chmod 777 .htaccess, .staccess, ultramode.txt


Which one should it be?
 
View user's profile Send private message
jaded
PostPosted: Sat May 27, 2006 7:27 am Reply with quote

everyone that I know only uses 666
 
Guardian2003
Site Admin


Joined: Aug 28, 2003
Posts: 6792
Location: Ha Noi, Viet Nam

PostPosted: Sat May 27, 2006 7:52 am Reply with quote

666 is fine - you can test that Sentienl can write to it by banning an IP.
If it fails to write then use 777
 
View user's profile Send private message Send e-mail
RifleMan
PostPosted: Sat May 27, 2006 10:01 pm Reply with quote

I set the CHOMD to 666 and my .staccess still got hacked last night.

How can they see it, if i cant even see it. When i go and type in Only registered users can see links on this board! Get registered or login! or .htaccess i cant even see it tells me im "forbidden" these mongrels are starting to s**t me. I've had 7 attempts in 4 days all through the .staccess and ultramode.txt files.

Can anyone help me with this please.


Cheers

Coops
 
Guardian2003
PostPosted: Sun May 28, 2006 4:44 am Reply with quote

It is not possible to hack that file if the CHMOD is set to 666 UNLESS they have server access.
What other modules have you installed?
Please PM me a copy of your staccess file so I can see what they have done.
 
RifleMan
PostPosted: Sun May 28, 2006 5:40 am Reply with quote

Guardian2003 wrote:

Please PM me a copy of your staccess file so I can see what they have done.


I have sent you the details.

Thanks you so much for the help.


Cheers
Coops
 
Guardian2003
PostPosted: Sun May 28, 2006 6:07 am Reply with quote

Let me know what happened with the advice I gave. I that worked for you I can use the advice for anyone else with a simliar issue.
 
RifleMan
PostPosted: Tue May 30, 2006 6:21 am Reply with quote

Hey Guardian,
Thanks for all ur helps, however there was no email addy. I will keep that in mind though for future use.

Ive ended up changing the name of the .staccess to another name and CHMODed it to 644 same with the ultramode.txt file as I dont use it.

Touch wood I haven't been hacked since Saturday. Not bad considering I was being attacked every night at once stage.

Thanks for all ur help everyone.

Cheers
Coops
 
Guardian2003
PostPosted: Tue May 30, 2006 6:22 am Reply with quote

Not a problem, please do not hesitate to open another thread if problems persist.
 
finalheaven
Regular
Regular


Joined: Jul 15, 2006
Posts: 64

PostPosted: Sun Jul 16, 2006 2:24 pm Reply with quote

So what's the safest course of action here? set them to 666? or will 644 work as well? I'd feel safer with them at 644.
 
View user's profile Send private message
Guardian2003
PostPosted: Sun Jul 16, 2006 4:09 pm Reply with quote

644 is safer IF Sentinel can still write to the file.
 
redhairz
Worker
Worker


Joined: Nov 17, 2006
Posts: 222

PostPosted: Sat Nov 25, 2006 4:49 pm Reply with quote

if the stacceess is set to 644 can the CGI read the pw?
refer to htaccess if set to 644 the sentinel was unable to write.will the blocking be effective? or stop blocking the hacker?
 
View user's profile Send private message
montego
Site Admin


Joined: Aug 29, 2004
Posts: 9449
Location: Arizona

PostPosted: Sun Nov 26, 2006 3:33 pm Reply with quote

.staccess needs only be 666 when you add a new admin and need to save that admin's NukeSentinel password. Once you have saved the passwords back into .staccess, you can change it back to 644. This is what I do.

.htaccess and .ftaccess must remain 666 (for most installations) if you want NukeSentinel to write to them (add IP blocks).

_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
Display posts from previous:       
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Ravens PHP Scripts And Web Hosting Forum Index -> Raven's RavenNuke(tm) v2.02.02 Distro

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©