| Author |
Message |
broose
Regular
Joined: Feb 17, 2006
Posts: 94
|
 Posted:
Sat Apr 08, 2006 1:21 pm |
|
i have noticed that Nukesentinal have banned an ip address for reason Union, what is union?
cheers |
| |
|
|
|
hitwalker
Sells PC To Pay For Divorce
Joined:
Posts: 5661
|
| Posted:
Sat Apr 08, 2006 1:52 pm |
|
basically thats a sql injection...
nothing special.. |
| |
|
|
|
|
Susann
Moderator
Joined: Dec 19, 2004
Posts: 3191
Location: Germany:Moderator German NukeSentinel Support
|
| Posted:
Mon Apr 24, 2006 1:53 pm |
|
Hitwalker, I believe for you it s nothing special.
| Quote: |
tried to load</b></font><font color=#FF0000><b> /member.asp?id=-1%20UNION%20SELECT%201,memName,3,4,5,6,7,8,9,10,11,memPassword,13,14,15,16%20FROM%20member+where+memID=1
User Agent = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727) |
Is it typical for Union Attacks to have a high number of quests online ? |
| |
|
|
|
|
hitwalker
|
| Posted:
Mon Apr 24, 2006 2:32 pm |
|
to my knowledge no...
with these types of attack they dump info into your database.
in the beginning of my site i had an attack to,that was fun...
had 800 visitors online,nice dos attack. |
| |
|
|
|
|
evaders99
Former Moderator in Good Standing
Joined: Apr 30, 2004
Posts: 3221
|
| Posted:
Mon Apr 24, 2006 2:48 pm |
|
Could be a bot net trying to exploit your system with various robot scripts. It happens |
_________________
- Only registered users can see links on this board! Get registered or login! -
Need help? Only registered users can see links on this board! Get registered or login! |
|
|
|
Susann
|
| Posted:
Mon Apr 24, 2006 2:51 pm |
|
That was fun... I don't see the fun of it. But I´ll check my logs tomorrow to fight back.
evaders99 you are right. |
Last edited by Susann on Mon Apr 24, 2006 2:58 pm; edited 1 time in total |
|
|
|
|
hitwalker
|
| Posted:
Mon Apr 24, 2006 2:55 pm |
|
fight back?
You cant....if you get a dos attack like i had then you cant do anything at all.
only thing you can do is call your host like i did and pull the plug...
then it takes an hour for all connections to drop dead.
after that i came back online...
as for any sql attacks,sentinel should deal with that.
and sure susann,...allways smile... |
| |
|
|
|
|
Susann
|
| Posted:
Mon Apr 24, 2006 3:05 pm |
|
No, I meant the bots or possible some of the members anyway the guest are normal again.
I had today a little accident with a shop window can t smile because of my face.   |
| |
|
|
|
|
wildnsyko
New Member
Joined: Jun 19, 2006
Posts: 4
|
| Posted:
Mon Jun 19, 2006 1:09 pm |
|
I've blocked myself out of my site 4 times now via Union attack. I was trying to copy and paste some stuff from a Word doc into the Content section of my site. It automatically blocks me. I don't understand what this Union attack thing is when I'm not adding any script....just words. Even if I retype the paragraph, it does the same thing.
Any ideas?? I'm using Nuke Evolution and they don't seem to know why it does it either. |
| |
|
|
|
|
wildnsyko
|
| Posted:
Mon Jun 19, 2006 1:19 pm |
|
I think I have it narrowed down.....it's the word "union" in a paragraph. Now how can I stop Sentinel from doing that? |
| |
|
|
|
|
Susann
|
| Posted:
Mon Jun 19, 2006 1:28 pm |
|
You can use a combination with that word because sentinel is sometimes overagressive.
Do a search here for this word and you ´ll find examples, I believe.
I tested this long time ago and its really possible to use several word combinations without ban problems. |
| |
|
|
|
|
wildnsyko
|
| Posted:
Mon Jun 19, 2006 1:45 pm |
|
It's hard to change it when you're talking about the Civil War and Union forces. That's my problem. |
| |
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 9457
Location: Arizona
|
| Posted:
Mon Jun 19, 2006 10:12 pm |
|
Unfortunately, that is vital protection that although is deemed "overly aggressive", would require a tremendous amount of redesign (from what I have read elsewhere). For now, it is an unfortunate, but necessary reality. Although it may look a little bit "odd" to some, maybe replace the "o" with a zero or the "i" with a "1". Sorry, for now, that is the best that I know to do. |
_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! |
|
|
|
|
wildnsyko
|
| Posted:
Tue Jun 20, 2006 7:30 am |
|
Thanks for all your help. I will figure something out. We're in the middle of getting ready to move to Missouri, so I'm trying to hurry up and get things done before I take my computer down. |
| |
|
|
|
|
reformedman
New Member
Joined: Sep 15, 2006
Posts: 3
|
| Posted:
Wed Sep 20, 2006 1:25 pm |
|
That's great that you found that out, I was wondering how I could fix my problem with the same situation. I am going to try
un<font size=1>.</font>ion
this way it does not see a super-small dot smaller than 10% of a pixel in the middle of the word.
See if that works. |
| |
|
|
|
|
fkelly
Former Moderator in Good Standing
Joined: Aug 30, 2005
Posts: 3312
Location: near Albany NY
|
| Posted:
Wed Sep 20, 2006 1:39 pm |
|
Please see this thread:
Only registered users can see links on this board! Get registered or login!
The Onion issue is due to a bug in mainfile, not Sentinel as explained in that thread. There is also a "fix" you can put in if you are comfortable with patching code and the overall issue will be fixed in RN2.10. |
| |
|
|
|
|
reformedman
|
| Posted:
Wed Sep 20, 2006 4:05 pm |
|
Best way to fix this problem without having to patch is to use ascii
instead of union
type:
u ; nion
I put spaces in the above but don't put any spaces at all, stick everything together. |
| |
|
|
|
|
montego
|
| Posted:
Wed Sep 20, 2006 8:29 pm |
|
And U ; for the UPPER case U. |
| |
|
|
|
|
|
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
