Login or Register  • Home • Downloads • Your Account • Forums •

Forum FAQ  •  Search  •  Memberlist  •  Usergroups  •  Profile  •  Log in to check your private messages  •  Log in www.phpnuke-downloads.com hotlinks from ravenwebhosting.com View next topic View previous topic   Web RavenPHPScripts (This Site)      Ravens PHP Scripts And Web Hosting Forum Index » General/Other Stuff Author Message hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Thu Feb 16, 2006 8:37 pm Only registered users can see links on this board! Get registered or login to the forums! ok raven...thought i make this a special topic... Im sure your not aware of this: Only registered users can see links on this board! Get registered or login to the forums! is directly hotlinking to the above file. view his page here: Only registered users can see links on this board! Get registered or login to the forums! EDIT: also these files are linked directly. Auto Registration Activation Mod v1.0 Only registered users can see links on this board! Get registered or login to the forums! And Only registered users can see links on this board! Get registered or login to the forums! Also i recommend everybody to view my topic here: Only registered users can see links on this board! Get registered or login to the forums! the list of websites he hotlinks the files from is getting huge... jaded Theme Guru Joined: Nov 01, 2003 Posts: 1005 Posted: Fri Feb 17, 2006 6:00 am i find that behavior to be rather unsettling Last edited by jaded on Fri Feb 17, 2006 6:25 am; edited 2 times in total hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Fri Feb 17, 2006 6:23 am oh but my dear jaded thats not all... i had some sleep so i continued the search.... ok galen...the next few... PHP-Nuke Package[RavenPHPScripts] v2.0 Only registered users can see links on this board! Get registered or login to the forums! and Only registered users can see links on this board! Get registered or login to the forums! jaded Theme Guru Joined: Nov 01, 2003 Posts: 1005 Posted: Fri Feb 17, 2006 6:25 am as a follow up i went there and i found great amusement in the following. when you attempt to download from there. Quote: IMPORTANT: In an effort to prevent bandwidth theft, We have implemented measures to ensure that the download requests are only processed from our site. This mechanism is not compatible with all anti-virus software, download accelerators, and proxies. If you make it through to the download request screen and then get a Forbidden message, the chances are it is a result of one of the three things just mentioned. In that case, you will have to temporarily disable or tweak the settings for those applications to allow the download. Thank You For Your Co-operation. the idea that they are concerned about bandwidth theft simply cracked me up Last edited by jaded on Fri Feb 17, 2006 7:03 am; edited 1 time in total hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Fri Feb 17, 2006 6:59 am whitch file did you tried cause i could still download the collapsable ....... jaded Theme Guru Joined: Nov 01, 2003 Posts: 1005 Posted: Fri Feb 17, 2006 7:01 am LOL, he has half of the nuke sites out there, nukeresources included, hotlinked. With the number of downloads everyone is having their transfer stolen. I have to say that if you cannot afford to host the site you want then don't run one. If the only way that you can run a website is to leech off the back of every other site out there then give up the dream. I suggest that you buy more space and bandwidth, get rid of the hotlinks, and try to run your site legitimatly. djmaze Subject Matter Expert Joined: May 15, 2004 Posts: 629 Location: http://tinyurl.com/5z8dmv Posted: Fri Feb 17, 2006 8:44 am jaded wrote: as a follow up i went there and i found great amusement in the following. when you attempt to download from there. Quote: IMPORTANT: In an effort to prevent bandwidth theft, We have implemented measures to ensure that the download requests are only processed from our site. This mechanism is not compatible with all anti-virus software, download accelerators, and proxies. If you make it through to the download request screen and then get a Forbidden message, the chances are it is a result of one of the three things just mentioned. In that case, you will have to temporarily disable or tweak the settings for those applications to allow the download. Why do I always laugh when i see those messages on a php-nuke download module? This is 100% FUD information (also known as hoax), because the information is false. Example: Only registered users can see links on this board! Get registered or login to the forums! Now how did i get that, although they say they have an meganism? (note the page says 404 but just press [enter] in the address bar, that will reset HTTP_REFERER to empty so you bypass his protection) No wonder people hotlink nuke sites, it's always possible Now you go try that on Trevor and mine superior Downloads Pro module for Dragonfly, hehehe. Last edited by djmaze on Fri Feb 17, 2006 8:56 am; edited 3 times in total djmaze Subject Matter Expert Joined: May 15, 2004 Posts: 629 Location: http://tinyurl.com/5z8dmv Posted: Fri Feb 17, 2006 8:52 am Hmm if people are interested i could write a bot that lists all his downloads so you can mirror/hotlink them. hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Fri Feb 17, 2006 8:54 am oh yeah do please...... ill drop it on a few friendly sites where it can be downloaded a few 100.000 times.... djmaze Subject Matter Expert Joined: May 15, 2004 Posts: 629 Location: http://tinyurl.com/5z8dmv Posted: Fri Feb 17, 2006 9:07 am fetch.php file: Code: <?php if (isset($_POST['id'])) {     echo base64_decode($_POST['id']); ) ?> <form action="fetch.php" method="POST"> fetchid: <input name="id" value="aHR0cDovL3d3dy5waHBudWtlLWRvd25sb2Fkcy5jb20vZG93bmxvYWRzL2Jsb2Nrcy9ibG9jay1kYmNsb2NrLnppcA=="> <input type="submit" name="Download It" value="Download It"> </form> The value for fetchid can be found on a phpnuke-downloads.com download page at: <input type="hidden" name="fetchid" value="foobar"> where 'foobar' is a long encoded string The id in the above code decodes into Only registered users can see links on this board! Get registered or login to the forums! copy the url into your browser address bar and hit enter. hitwalker, i could write a more sophisticated system that allows you to completely replace your downloads module with a hotlink module. But that's not realy fun for me, anyway with the above example you should be on your way. NOTE: This is the only PoC i have ever provided on this website and will hopefully be my last. I've provided this PoC not because someone is a asshole but more based on many assholes that disbelieve my warnings and words that i should stop mentioning that i could hack them. This simple PoC should be enough to let you all know i know enough about php-nuke for not using it. Last edited by djmaze on Fri Feb 17, 2006 9:12 am; edited 1 time in total hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Fri Feb 17, 2006 9:10 am so is this type download per download or is it somehow automated..? or how to go for that? djmaze Subject Matter Expert Joined: May 15, 2004 Posts: 629 Location: http://tinyurl.com/5z8dmv Posted: Fri Feb 17, 2006 9:15 am 1. go to a download on his website that you want. 2. view source 3. find in source: name="fetchid" 4. copy value into fetch.php script I could make it fully automatic using preg_match() but i don't. It's just bad to ask an "eye for an eye" hitwalker Sells PC To Pay For Divorce Joined: Posts: 5661 Posted: Fri Feb 17, 2006 9:19 am yes i understand but people have to do to much work with way......lol sting Involved Joined: Sep 23, 2003 Posts: 460 Location: Somewhere out there... Posted: Fri Feb 17, 2006 10:00 am Guys/Gals, sorry if I have inconenienced anyone, but I moved this here due to DJ's POC. Awesome POC by the way, but I just can't stand the thought of some kiddie out there getting it. Now come to think of it, I didn't actually see the exact forum it was in before, so I may have moved it to a forum with the same security perms. Want Raven to see this before putting it out there for all to see. -sting Raven Site Admin/Owner Joined: Aug 27, 2002 Posts: 16650 Location: Kansas Posted: Sun Feb 19, 2006 10:12 am Thanks Sting for your sensitivity in this matter. After having talked to DJ about it and reading it over, I think it will serve more purpose in the open than not. Display posts from previous:   All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year  Oldest FirstNewest First        Ravens PHP Scripts And Web Hosting Forum Index » General/Other Stuff  Jump to:  Select a forum Read Me First!!!----------------Board Rules and Regulations Web Hosting Services----------------RWH GeneralRWH Pre Sale QuestionsRWH Client Center Application OnlyRWH OtherFAQ - PHP5 w/phpSuExec Conversion From PHP4PHP5 Conversion Issues From PHP4 RavenNuke(tm) Programming Standards/Approaches/Philosophy----------------RavenNuke / Raven CMS CMS WikiSecurity IssuesConverting/Creating BlocksConverting/Creating ModulesConverting/Creating ThemesConverting/Creating OtherConverting/Creating General DiscussionCertification - Submit Scripts For RavenNuke(tm) CertificationCertification - Modules, Blocks, Other Scripts/Applications Converted For RavenNuke(tm)Certification - All Discussion RavenNuke(tm) v2.4x----------------v2.4 RN Announcementsv2.4 RN Documentationv2.4 RN Issues RavenNuke(tm) v2.3x----------------v2.3 RN Announcementsv2.3 RN Quick Fixesv2.3 RN Issuesv2.3 RN Documentationv2.3 RN Feedback/Suggestionsv2.30.01 RN Security Issuesv2.30.01 RN New Installation Issuesv2.30.01 RN Upgrade Issuesv2.30.01 RN All Other Issues RavenNuke(tm) v2.2x----------------RN v2.20.00 - AnnouncementsRN v2.20.00 - All IssuesRN v2.20.00 - Feedback RavenNuke(tm) Addons----------------FCKeditor/WYSIWYG IssuesnukeFeed/FeedCreatorForum Attachment ModnukeSEOShortLinks/TegoNukeNukePie/SimplePieeCommerce Recommended Reading----------------Reading - AnnouncementsReading - Digital BooksReading - Hard/Soft cover BooksReading - Digital MagazinesReading - Printed Magazines Site Specific Stuff----------------READ ME FIRSTAnnouncementsRaven's v7.0 Customized DistroHack Attempt ScriptRaven's Customized Distribution PacksBUGS/FIXES - Raven's v7.3 Customized DistroCache Lite Admin ModuleNuke Tool Box (TM)Captcha SecurityRaven's RavenNuke(tm) v1.x DistroRaven's RavenNuke(tm) v2.00.00 - v2.02.00 DistroWYSIWYG - Raven's RavenNuke(tm) v2.x DistroRaven's Collapsing Forums BlockGT - Raven's RavenNuke(tm) v2.x DistroRaven's RavenNuke(tm) v2.02.02 DistroPost Fixes - Raven's RavenNuke(tm) v2.02.02 DistroPublic Testing of RavenNuke(tm) v2.10.00HtAccesserIssues/Problems With This Site Security----------------NukeSentinel(tm) Country and IP2Country UpdatesSecurity - PHP NukeSecurity - OtherNukeSentinel(tm) v2.6.xNukeSentinel(tm) v2.5.xNukeSentinel(tm) v2.4.xNukeSentinel(tm)NukeSentinel(tm) Bug ReportsNukeSentinel(tm) Enhancement RequestsNukeSentinel(tm) AnnouncementsPHP-Nuke Patched Series By Chatserv Information About Forums----------------PHPBBBB2NukePunBB PHP-Portal Project (Not General phpnuke!)----------------AnnouncementsDesign Discussions Scripts - General----------------Bug FixesGeneral/Other StuffHow To'sInstallation HelpPost Installation HelpGT - Next Gen and StandardSeeking applications ...ThemesBlocksModulesMaking Nuke Efficientphpnuke 8.1phpnuke 8.0phpnuke 7.9phpnuke 7.8phpnuke 7.7phpnuke 7.6phpnuke 7.6 Bugs/Fixesphpnuke 7.5phpnuke 7.4phpnuke 7.3phpnuke 7.2phpnuke 7.1phpnuke 7.0phpnuke 6.9phpnuke 6.8Bug Fixes for phpnuke 6.5phpnuke 6.5Gallery/Gallery2CNB Your AccountBrowser Specific IssuesUpgrading NukeNuke Treasury NSN Scripts----------------NSN NewsNSN GroupsNSN OtherNSN Gr Downloads - a.k.a NukeDepositoryNSN NukeProject Other CMS/Portal Applications----------------Post NukeNuke PlatinumNuke Evolution PHPBB----------------Stand Alonew/Nuke 6.5w/Nuke 6.9BBtoNuke ModsBBtoNuke General Programming - Server Help----------------PHPMySQLFor HireApacheHTMLCSSJavaScriptServer Help Guestbook Application (KISGB)----------------KISGB General Support Stock Quote Application (KISSQ)----------------KISSQ General Support RavenNuke(tm) v2.10.01----------------RN v2.10.01 - All IssuesRN v2.10.01 - Feedback RavenNuke(tm) v2.10.00----------------RN AnnouncementsRN FAQRN Bug FixesRN Not BugsRN Documentation Issues/SuggestionsRN Enhancement Requests and SuggestionsRN NSN Groups IssuesRN Themes IssuesRN NukeSentinel(tm) issuesRN Installer/Setup IssuesRN Bug Reports - Other IssuesRN Conversion Issues From v2.02RN Conversion Issues From Standard phpNukeRN The Good, The Bad, The Ugly 6.5 Hacks----------------Old Articles Hack Nuke News Module Hack To Allow Ordering of Articles----------------News Module Hack - AnnouncementsNews Module Hack - BugsNews Module Hack - Enhancement RequestsNews Module Hack - Discussion Other Stuff----------------Other - DiscussionOther - Sites To VisitOther - Chit ChatOther - PoliticsOther - Movie ReviewsOther - Humor Religion----------------Religion - GeneralPrayer/Praise Requests Potpourri----------------Rants & Raves  View next topic View previous topic You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum Forums ©

All logos and trademarks in this site are property of their respective owner.
The comments are property of their posters, all the rest © 2002-2010 by Raven

You can syndicate our news using the file



Website engines core code is © copyright by PHP-Nuke but has been heavily patched and modified by myself and others.
PHP-Nuke is a free software released under the GNU/GPL.


:: fisubice phpbb2 style by Daz :: PHP-Nuke theme by www.nukemods.com :::: fisubice Theme Modified by the RavenNuke™ Team ::
:: :: ::

zerosum