Can't Edit Admins as Sentinel detects an Authors Table attac

Regular Joined: Jul 27, 2007 Posts: 77

I am currently working on a local WAMP version of RN with the Sentintel install as per the disti.

Just re-copied my forum data from my online phpbb service and I wanted to check my previously setup admins were OK!

However with Sentinel Activated as standard I get a hacking attempt black screen

You have been blocked from entering this site.

You have attempted an Authors Table attack on this site.

With sentinel disable I get the following message:

Illegal Operation

Any suggestions?

As I am working locally I have already editting RNCONFIG (i think) to bypass the IP checking

Paul

Posted: Thu Aug 16, 2007 3:15 pm

Are you signed in as the God admin? You also need to let Sentinel scan for new administrators ... it's on the Sentinel setup page.

Posted: Thu Aug 16, 2007 3:19 pm

Ah, off course. No I have created a god admin but I don't use it day to day - Didn't really occur to me, but good feature.

Logged in as 'god' and every'ting' cool!

Cheers

Paul

Posted: Thu Aug 16, 2007 6:36 pm

Good for you! In another life time (which I would love to find more time for) I am working on the absolutely ridiculous code for authors.php. It starts out:

Code:

if (($row['radminsuper'] == 1) && ($row['name'] == 'God')) {

and basically anything in it doesn't work unless you are a super user AND God. Yet throughout the code there are all sorts of test to see if the person running it is a super user or God or has admin access to a module or whatever. So for now just login as God and hopefully in some future RN we will bring you something that makes more sense.

Parenthetically this whole authors.php is destructing the more I look at it. You'd hope that God would be a superuser.