NukeSentinel 2.6.01 /// PhpNuke 8.0

silicastorm · Posted: Thu Jan 21, 2010 7:47 am

My first installation of NukeSentinel,

uploaded the files:

Quote:

html/abuse/*.* ----------------> root/abuse/*.*
html/admin/*.* ----------------> root/admin/*.*
html/blocks/*.* ----------------> root/blocks/*.*
html/cache/ ----------------> root/cache/ <--- CHMOD to 777
html/images/*.* ----------------> root/images/*.*
html/includes/*.* ----------------> root/includes/*.*
html/language/*.* ----------------> root/language/*.*
html/modules/*.* ----------------> root/modules/*.*
html/nsnst_installer/*.* ----------------> root/nsnst_installer/*.*
html/nsnst.php ----------------> root/nsnst.php

then followed the instuctions to edit the following files:
Your_Account/index.php
mainfile.php
header.php
admin.php

opened a browser and entered

Only registered users can see links on this board!
Get registered or login to the forums!

installed the many pages of tables with all Green Go

Deleted nsnst_installer folder and nsnst.php file

clicked Administration in menu, made adjustments to Sentinel configuration, clicked save.

Uploaded .htaccess and .staccess (blank) and .ftaccess into root with admin.php

NOW BANNED FROM WEBSITE.

//////////////////////////////////

Went to phpmyadmin to view nsnst_Blocked_ips and no data in table indicating my IP is banned...

is there something I am missing?

replaced the following files with backup to regain access to site:
Your_Account/index.php
mainfile.php
header.php
admin.php

nuken · Posted: Thu Jan 21, 2010 8:28 am

Did you look in the .htaccess to see if your ip was blocked there? It would be at the bottom.

silicastorm · Posted: Thu Jan 21, 2010 9:32 am

This is what is in the .htaccess file

Quote:

Options All -Indexes
DirectoryIndex index.php index.htm index.html

# -------------------------------------------
# Start of NukeSentinel(tm) admin.php Auth
# -------------------------------------------
<Files .ftaccess>
deny from all
</Files>

<Files .staccess>
deny from all
</Files>

#<Files admin.php>
<Limit GET POST PUT>
require valid-user
</Limit>
AuthName "Restricted"
AuthType Basic
AuthUserFile

Only registered users can see links on this board!
Get registered or login to the forums!

#</Files>

# -------------------------------------------
# Start of NukeSentinel(tm) DENY FROM area
# -------------------------------------------

All three files are chmod 666

silicastorm · Posted: Fri Jan 22, 2010 4:47 am

~

I see mention of the term "Patched 3.3" in various forum posts and wonder if I was to do this for my phpnuke 8.0 ?

I have a login pop up window with the following message:

Quote:

A user name and password are being requested by

Only registered users can see links on this board!
Get registered or login to the forums!

The site says: "Restricted"

spasticdonkey · Posted: Fri Jan 22, 2010 7:29 am

Yes I'm pretty sure patches to standard nuke are required.

Only registered users can see links on this board!
Get registered or login to the forums!

I think you want to use an relative path to your .staccess file.
AuthUserFile

Only registered users can see links on this board!
Get registered or login to the forums!

(wont work)

remove your htaccess file, and go back to nuke sentinel admin, look for
htaccess Path:
staccess Path:

below each one you will see
Normally:
followed by the addresses you should use for each. Fill in, save, and then click
CGIAuth Setup
and that is what the code for that part of htaccess should look like. Also make sure your IP address is not blocked in the htaccess file.

.staccess shouldn't be a blank file either, see this for detailed info:

Only registered users can see links on this board!
Get registered or login to the forums!

silicastorm · Posted: Fri Jan 22, 2010 9:01 am

SD,

Thanks alot,,, the link you provided with the config settings was a huge help... did not see a link for that in the README.txt

Getting things configured,,, .staccess is no longer blank with the password in some kind of hash value

setting up the blockers... chmod is now reset back to 666 for the three files...

But I have one strange problem.... all modules function ok except for one!

Only registered users can see links on this board!
Get registered or login to the forums!

//////////////////////////////////////

IS BLANK,,,, TOTALLY WHITE

/////////////////////////////////////

I will keep looking to see but if you have an idea shoot one over,,,

Thanks again,,, you have been a huge help...

Cheers,

SilicaStorm

spasticdonkey · Posted: Fri Jan 22, 2010 9:13 am

try setting $display_errors to true in config.php and post back any error you get..
(remove the path info from the error message for security reasons)

silicastorm · Posted: Fri Jan 22, 2010 9:23 am

Ok,, yeah got something here:

Quote:

Parse error: syntax error, unexpected T_FUNCTION in /mywebsite/modules/Your_Account/index.php on line 790

~

Quote:

in function login($username, $user_password, $redirect, $mode, $f, $t, $random_num, $gfx_check) {

~

Quote:

$host_name = $_SERVER['REMOTE_ADDR'];
} else {
$host_name = $nsnst_const['remote_ip'];
}

in function login($username, $user_password, $redirect, $mode, $f, $t, $random_num, $gfx_check) {
$row = $db->sql_fetchrow($result);
$user_email = filter($row['user_email'], "nohtml");
$user_password = $row['user_password'];
$user_password = htmlspecialchars(stripslashes($user_password));
$areyou = substr($user_password, 0, 10);
if ($areyou==$code) {
$newpass=makepass();
$message = ""._USERACCOUNT." '$username' "._AT." $sitename "._HASTHISEMAIL." "._AWEBUSERFROM." $host_name "._HASREQUESTED."\n\n"._YOURNEWPASSWORD." $newpass\n\n "._YOUCANCHANGE." $nukeurl/modules.php?name=$module_name\n\n"._IFYOUDIDNOTASK."";
$subject = ""._USERPASSWORD4." $username";
mail($user_email, $subject, $message, "From: $adminmail\nX-Mailer: PHP/" . phpversion());
/* Next step: add the new password to the database */
$cryptpass = md5($newpass);
$query = "UPDATE ".$user_prefix."_users SET user_password='$cryptpass' WHERE username='$username'";
if (!$db->sql_query($query)) {
echo ""._UPDATEFAILED."";
}
include ("header.php");
OpenTable();
echo "<center>"._PASSWORD4." $username "._MAILED."<br><br>"._GOBACK."</center>";
CloseTable();
include ("footer.php");
/* If no Code, send it */
} else {
$sql = "SELECT user_email, user_password FROM ".$user_prefix."_users WHERE username='$username'";
$result = $db->sql_query($sql);
if($db->sql_numrows($result) == 0) {
include ("header.php");
OpenTable();
echo "<center>"._SORRYNOUSERINFO."</center>";
CloseTable();
include ("footer.php");
} else {
if(!defined("NUKESENTINEL_IS_LOADED")) {
$host_name = $_SERVER['REMOTE_ADDR'];
} else {
$host_name = $nsnst_const['remote_ip'];
}

in function login($username, $user_password, $redirect, $mode, $f, $t, $random_num, $gfx_check) {
$row = $db->sql_fetchrow($result);
$user_email = filter($row['user_email'], "nohtml");
$user_password = $row['user_password'];
$areyou = substr($user_password, 0, 10);
$message = ""._USERACCOUNT." '$username' "._AT." $sitename "._HASTHISEMAIL." "._AWEBUSERFROM." $host_name "._CODEREQUESTED."\n\n"._YOURCODEIS." $areyou \n\n"._WITHTHISCODE." $nukeurl/modules.php?name=$module_name&op=pass_lost\n"._IFYOUDIDNOTASK2."";

Thanks again,

spasticdonkey · Posted: Fri Jan 22, 2010 10:33 am

an unexpected T_FUNCTION error means that the PHP compiler has encountered a function where it should not be.

Usually a case of a missing semicolon and/or closing brace..

Make sure you got the edits for
Your_Account/index.php
correct.....

in looking at the last snippet of code did you define the
in function login($username, $user_password, $redirect, $mode, $f, $t, $random_num, $gfx_check)
twice??

silicastorm · Posted: Fri Jan 22, 2010 10:42 am

/////////////////////////////////////

The files I edit are in this directory to view

Only registered users can see links on this board!
Get registered or login to the forums!

Yes I did put in "twice" as I thought I was following the instructions correctly,,,,?

Quote:

#-----[ FIND ]------------------------------------------
# This appears "twice" in this function
$host_name = $_SERVER['REMOTE_ADDR'];

#
#-----[ REPLACE WITH ]------------------------------------------
#
if(!defined("NUKESENTINEL_IS_LOADED")) {
$host_name = $_SERVER['REMOTE_ADDR'];
} else {
$host_name = $nsnst_const['remote_ip'];
}

in function login($username, $user_password, $redirect, $mode, $f, $t, $random_num, $gfx_check) {

spasticdonkey · Posted: Fri Jan 22, 2010 12:08 pm

are you using the nuke patched? that code looks different...

Only registered users can see links on this board!
Get registered or login to the forums!

I see references to nukesentinel in the pre-edited files that come with that download... might give those a try. I've never used standard phpnuke and sentinel comes pre-installed on ravennuke, so I'm working a little bit in the dark here Smile

silicastorm · Posted: Fri Jan 22, 2010 12:30 pm

After 4 hours,,,, I finally decided not to edit the patch Your_Account/index.php ,,,,

just dropped it and no more error.... maybe the instructions are out of date to the new version?

Anyway,,, thanks so much for your assistance SD,,, you're a good support...

Wow,,, that was a long one,,, need to have a friday night drink now... cheers from the desert in UAE

eldorado · Involved Joined: Sep 10, 2008 Posts: 366 Location: France

Patch is suppose to cover Nuke till 8.1 m8.. Depending on where you stopped , you might have some errors.

silicastorm wrote:

Wow,,, that was a long one,,, need to have a friday night drink now... cheers from the desert in UAE

I love Abu Dhabi, my favorite after Doha, cheers from France Smile

scianima · New Member Joined: Aug 22, 2010 Posts: 3

I have the same error with the in function and it doesn't load the your_account...jus a white page i am patched to 3.5. Has anyone found the fix?

Guardian2003 · Posted: Sat May 07, 2011 7:10 am

There isn't a function called in I think you might be referring to the function login() ?
Which php-nuke version are you using?
Did you try the fix already posted in this thread?

scianima · New Member Joined: Aug 22, 2010 Posts: 3

yeah, I am in reference to the in function login() but I have nuke 8.1 not 8.0 and I'm patched to 3.5. patched as instructed in the index8.1 but white page

scianima · New Member Joined: Aug 22, 2010 Posts: 3

Parse error: syntax error, unexpected T_FUNCTION in /html/modules/Your_Account/index.php on line 802
which is the login function