Setup issues

Hangin' Around Joined: May 27, 2004 Posts: 42

I installed it like it said .. chmoded htaccess to 666. go to the nuke admin click on Sentinel™ Administration .. theres 3 lines on the left side. Sentinel™ Administration
Sentinel™ Configuration
Site Administration

first one does nothing when clicked, config goes to the config panel and the site admin goes back to the nuke admin. Is the first one linked to ABMAIN should it show something on the screen?, also when i do a union inject it gives me page not found 404 error?..

Help please.

Site Admin/Owner Joined: Aug 27, 2002 Posts: 17088

speedx wrote:

I installed it like it said .. chmoded htaccess to 666. go to the nuke admin click on Sentinel™ Administration .. theres 3 lines on the left side. Sentinel™ Administration
Sentinel™ Configuration
Site Administration

speedx wrote:

first one does nothing when clicked

Actually it does - it takes you to the screen you're on, the Sentinel(tm) Admin Screen.

speedx wrote:

also when i do a union inject it gives me page not found 404 error?..

Have you added the include line to mainfile.php?

Posted: Sat May 29, 2004 5:00 am

got it working, my bad Razz

was going to the wrong dir, also does it email the admin to say someone tried to hack like the hackattempt script? if so that part is not working.

Posted: Sat May 29, 2004 6:19 am

It uses the email address set for you website not the phpnuke one so if that not set to a valid email address or your host has some restrictions on it (Like authentification) it might fail. So if your setting in php.ini say something like admin@mydomain and not a valid address there it might fail.

Posted: Sat May 29, 2004 10:03 pm

Well email is fine, but sentinal does not email me when a hack is performed. The hackattempt script worked fine, also when I do a hack on my site it does not bring up the banned webpage its just a blank page. If I hit refresh then it gives me your ip ... has been banned if this is an error contact the admin @..

What could be wrong with my setup?

Posted: Sun May 30, 2004 7:46 am

Look at your error log. See if there is an error being recorded.

Posted: Sun May 30, 2004 8:36 am

No errors in the log file, it is just not sending the email for some reason, as I mentioned the hackattempt script worked is there no way to make sentinal email like that?

Posted: Sun May 30, 2004 8:39 am

I thought that bob said something about it not workin right bc of the whois lookup and hes looking for a way arround it.
I think i read that some where, unless i dreamed it.

Posted: Sun May 30, 2004 8:50 am

Im not sure, i think i saw something about that also but cannot find it. Im trying alot of different things to try to get it to email admin on hack but so far no luck.

Posted: Sun May 30, 2004 8:57 am

I found it...
http://www.nukescripts.net/modules.php?name=News&file=comments&op=showreply&tid=712&sid=980&pid=708&mode=&order=0&thold=0#712

Posted: Sun May 30, 2004 9:30 am

Tried it and still no luck. I took out the whois info and the page that says you are banned now comes up, but still no email. I run my webserver off my personal linux machine, the email address i use is speedx@nukenews.ma.cx i dont see how this can be an issue as it sends the email directly to me without going though any domains. if someone was to do a union hack on my page Only registered users can see links on this board! Get registered or login! or Only registered users can see links on this board! Get registered or login! the email would go right to my linux sendmail and then i would use eudora to get it off my server. As I mentioned before it did work with the hackattempt script as it did not get it from the nuke_config db but you have to enter it in manualy in the hackattempt script? I have tried bobs editing of the popup line also.

registered · Posted: Sun May 30, 2004 11:58 am

If you are not getting the emails it is most likely that your host is blocking the pull from the ARIN site (hotlinking blockade) and you can comment out a section of the code to not use the ip lookup and will start getting the emails. Open includes/sentinel.php and goto lines 336-352 (most text editors allow for page numbering) which are as follows:

Code:

  $message .= "--------------------\n"._AB_WHOISFOR." ";


  // Copyright 2004(c) Raven PHP Scripts


  $ipToSearch = @get_ip();


  //$ipToSearch = empty($testIP)?$_SERVER["REMOTE_ADDR"]:$testIP;


  $data = @file_get_contents("http://ws.arin.net/cgi-bin/whois.pl?queryinput=".$ipToSearch) or die('Unable to query WhoIs information for '.$ipToSearch.'.');


  $data = explode('Search results for: ',$data);


  $data = explode('#',$data[1]);


  $data = explode('(NET-',strip_tags($data[0]));


  if (empty($data[1])) $msg .= $data[0];


  else {


    $data = explode(')',$data[1]);


    $data = @file_get_contents("http://ws.arin.net/cgi-bin/whois.pl?queryinput="."!%20NET-".strip_tags($data[0])) or die('Unable to query WhoIs information for '.strip_tags($data[0]).'.');


    $data = explode('Search results for: ',$data);


    $data = explode('Name',$data[1],2);


    $data = explode('# ARIN WHOIS ',$data[1]);


    $msg .= 'OrgName'.nl2br($data[0]);


  }

Now you just comment these out like so:

Code:

  //$message .= "--------------------\n"._AB_WHOISFOR." ";


  // Copyright 2004(c) Raven PHP Scripts


  //$ipToSearch = @get_ip();


  //$ipToSearch = empty($testIP)?$_SERVER["REMOTE_ADDR"]:$testIP;


  //$data = @file_get_contents("http://ws.arin.net/cgi-bin/whois.pl?queryinput=".$ipToSearch) or die('Unable to query WhoIs information for '.$ipToSearch.'.');


  //$data = explode('Search results for: ',$data);


  //$data = explode('#',$data[1]);


  //$data = explode('(NET-',strip_tags($data[0]));


  //if (empty($data[1])) $msg .= $data[0];


  //else {


  //  $data = explode(')',$data[1]);


  //  $data = @file_get_contents("http://ws.arin.net/cgi-bin/whois.pl?queryinput="."!%20NET-".strip_tags($data[0])) or die('Unable to query WhoIs information for '.strip_tags($data[0]).'.');


  //  $data = explode('Search results for: ',$data);


  //  $data = explode('Name',$data[1],2);


  //  $data = explode('# ARIN WHOIS ',$data[1]);


  //  $msg .= 'OrgName'.nl2br($data[0]);


  //}

Save it and upload it to yoru server. In the upcomning version there is a switch for this so you won't need to reedit when you get the newer version(s).

Posted: Sun May 30, 2004 12:16 pm

It now works after I did the //$message .= "--------------------\n"._AB_WHOISFOR." "; line, this was the only line i did not do before Razz

Go figure hahaha
Thanks Bob