General questions

New Member Joined: Dec 07, 2004 Posts: 12

Hello, I have Nuke Sentinel installed on top of a new install of Chatservs Nuke Patched v7.6, and all is well. Install was cake! I especially love the ability to add server htaccess password protection to any admin.

I have several questions, if you would be so kind:

1) I am unable to change the crypt salt string from what I presume is the default of 'N$'. Everytime I change it and save prefs, it reverts to the original string. Does it really matter?

2) I couldn't find an answer to this next batch of questions, so if this has been thoroughly answered, please point me to a link. If it hasn't been thoroughly answered, maybe this would be a good place to put all the right answers in one place. The question is, what is the best typical setup overall? Should I turn everything on? And what is the reason to not turn everything on? Performance? My site performance does not seem to be suffering in any way with almost everything turned on. Here's where I'm at:

ADMIN Blocker Settings - ON
AUTHOR Blocker Settings - ON
CLIKE Blocker Settings - ON
UNION Blocker Settings - ON
Filters Blocker Settings - ON
Harvester Blocker Settings - ON - but have a question below
Referer Blocker Settings - ON - but have a question below
Scripting Blocker Settings - ON
Request Method Blocker Settings - OFF - I have a question below
String Blocker Settings - OFF - have a question below

3) RE Harvester blocker - is the default list strictly known bad bots (porn, etc), or do I need to be concerned that I'm eliminating my site from some potentially useful web cache services?

4) Referer blocker - same question - or those defaults all strictly porn/spam sites? And is the list up to date, or is Sentinel checking against a bunch of domains that may not even exist anymore?

5) Request method blocker -- what should I enter there? Not GET and POST. But what then?

6) String blocker - please tell me what a wise security admin would put there as well. Smile

Lastly, I have what I think is a very useful feature request. It would be very beneficial for 'superuser' admins and I think it might be very simple to implement, but I don't know for sure. It's definitely something I need, and perhaps theres a workaround I'm not aware of. Please check it ou here. Only registered users can see links on this board! Get registered or login!

Thanks!

Posted: Thu Dec 09, 2004 1:15 am

I guess I don't understand what the string blocker does exactly.

In string blocker, I entered a line:

thisphrasewillbanyou

Then I posted to my site forum (as a regular non-admin user) with this:

test one two three thisphrasewillbanyou test one two three

I posted the same thing via 'submit news'.

Nothing happened. Both posts were accepted as normal. Shouldn't that have banned me? I have no protected IPs specified.

I'm confused. Sad

Site Admin/Owner Joined: Aug 27, 2002 Posts: 17088

bry2k wrote:

I guess I don't understand what the string blocker does exactly.

In string blocker, I entered a line:

thisphrasewillbanyou

Then I posted to my site forum (as a regular non-admin user) with this:

test one two three thisphrasewillbanyou test one two three

I posted the same thing via 'submit news'.

Nothing happened. Both posts were accepted as normal. Shouldn't that have banned me? I have no protected IPs specified.

I'm confused. Sad

The string blocker works on HTTP GET protocol. It's searches for strings in the url. Type this into your URL (use your domain though)

Code:

http://YOUR_DOMAIN.com/?text=thisphrasewillbanyou

registered · Posted: Thu Dec 09, 2004 1:37 am

For 1), do the following: Open admin/modules/sentinel/ABMainSave.php and you will see:

Code:

      $admin_list = explode("\r\n", $xadmin_contact);


      sort($admin_list);


      $xadmin_contact = implode("\r\n", $admin_list);


      absave_config("admin_contact",$xadmin_contact);


      absave_config("block_perpage",$xblock_perpage);


      absave_config("block_sort_column",$xblock_sort_column);


      absave_config("block_sort_direction",$xblock_sort_direction);


      absave_config("display_link",$xdisplay_link);


      absave_config("display_reason",$xdisplay_reason);


      absave_config("force_nukeurl",$xforce_nukeurl);


      absave_config("help_switch",$xhelp_switch);


      absave_config("htaccess_path",$xhtaccess_path);


      absave_config("lookup_link",$xlookup_link);


      absave_config("staccess_path",$xstaccess_path);


      absave_config("http_auth",$xhttp_auth);


      absave_config("prevent_dos",$xprevent_dos);


      absave_config("proxy_reason",$xproxy_reason);


      absave_config("proxy_switch",$xproxy_switch);


      absave_config("search_block_perpage",$xsearch_block_perpage);


      absave_config("search_block_sort_column",$xsearch_block_sort_column);


      absave_config("search_block_sort_direction",$xsearch_block_sort_direction);


      absave_config("search_track_perpage",$xsearch_track_perpage);


      absave_config("search_track_sort_column",$xsearch_track_sort_column);


      absave_config("search_track_sort_direction",$xsearch_track_sort_direction);


      absave_config("search_user_perpage",$xsearch_user_perpage);


      absave_config("search_user_sort_column",$xsearch_user_sort_column);


      absave_config("search_user_sort_direction",$xsearch_user_sort_direction);


      absave_config("self_expire",$xself_expire);


      absave_config("site_reason",$xsite_reason);


      absave_config("site_switch",$xsite_switch);


      absave_config("track_active",$xtrack_active);


      absave_config("track_del",$xtrack_del);


      absave_config("track_max",$xtrack_max);


      absave_config("track_perpage",$xtrack_perpage);


      absave_config("track_sort_column",$xtrack_sort_column);


      absave_config("track_sort_direction",$xtrack_sort_direction);


      Header("Location: admin.php?op=ABMain");

Add:

Code:

      absave_config("crypt_salt",$xcrypt_salt);

Now it should look like:

Code:

      $admin_list = explode("\r\n", $xadmin_contact);


      sort($admin_list);


      $xadmin_contact = implode("\r\n", $admin_list);


      absave_config("admin_contact",$xadmin_contact);


      absave_config("block_perpage",$xblock_perpage);


      absave_config("block_sort_column",$xblock_sort_column);


      absave_config("block_sort_direction",$xblock_sort_direction);


      absave_config("crypt_salt",$xcrypt_salt);


      absave_config("display_link",$xdisplay_link);


      absave_config("display_reason",$xdisplay_reason);


      absave_config("force_nukeurl",$xforce_nukeurl);


      absave_config("help_switch",$xhelp_switch);


      absave_config("htaccess_path",$xhtaccess_path);


      absave_config("lookup_link",$xlookup_link);


      absave_config("staccess_path",$xstaccess_path);


      absave_config("http_auth",$xhttp_auth);


      absave_config("prevent_dos",$xprevent_dos);


      absave_config("proxy_reason",$xproxy_reason);


      absave_config("proxy_switch",$xproxy_switch);


      absave_config("search_block_perpage",$xsearch_block_perpage);


      absave_config("search_block_sort_column",$xsearch_block_sort_column);


      absave_config("search_block_sort_direction",$xsearch_block_sort_direction);


      absave_config("search_track_perpage",$xsearch_track_perpage);


      absave_config("search_track_sort_column",$xsearch_track_sort_column);


      absave_config("search_track_sort_direction",$xsearch_track_sort_direction);


      absave_config("search_user_perpage",$xsearch_user_perpage);


      absave_config("search_user_sort_column",$xsearch_user_sort_column);


      absave_config("search_user_sort_direction",$xsearch_user_sort_direction);


      absave_config("self_expire",$xself_expire);


      absave_config("site_reason",$xsite_reason);


      absave_config("site_switch",$xsite_switch);


      absave_config("track_active",$xtrack_active);


      absave_config("track_del",$xtrack_del);


      absave_config("track_max",$xtrack_max);


      absave_config("track_perpage",$xtrack_perpage);


      absave_config("track_sort_column",$xtrack_sort_column);


      absave_config("track_sort_direction",$xtrack_sort_direction);


      Header("Location: admin.php?op=ABMain");

Posted: Thu Dec 09, 2004 8:57 am

Thanks Bob! How about the other questions (above)?

-Bry

Hangin' Around Joined: Jan 11, 2004 Posts: 37

I just need an example... so I get the idea.

For example I get these spam bots submitting itself to submit_news module:

Quote:

phentermine

top medical links generic viagra phentermine xanax tramadol valium diazepam fioricet vicodin meridia Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1452]generic viagra[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1455]phentermine[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1461]xanax[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1456]tramadol[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1458]valium[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1449]diazepam[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1450]fioricet[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1460]vicodin[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1453]meridia[/link]

top medical links generic viagra phentermine xanax tramadol valium diazepam fioricet vicodin meridia Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! Only registered users can see links on this board! Get registered or login! [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1452]generic viagra[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1455]phentermine[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1461]xanax[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1456]tramadol[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1458]valium[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1449]diazepam[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1450]fioricet[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1460]vicodin[/link] [link=http://dice.ch/cgi-bin/board/robboard.cgi?action=display&num=1453]meridia[/link]

Now what do you recommend that I add in nukesentinel to stop these types of spam bots?

Please advise.