| Author |
Message |
elrayjones
Regular
Joined: Oct 08, 2004
Posts: 55
Location: Texas
|
 Posted:
Sun Nov 21, 2004 1:10 am |
|
i am tring out some exploits but ip donot get post to the database
or .htaccess. i have turn off admin protection and i totaly logout of my site.
i use the exploits that someone gave me from the PM here at Raven site.
the exploits work... the screen comes up and tells me
"You have been blocked from entering this site.
You have attempted a Union attack on this site."
but nothing get loged anywhere?
EJ |
_________________
Shopping Mall at Only registered users can see links on this board! Get registered or login! We have Video Games,Toys,DVD,Camera,Magazine Subscriptions,Music,Apparel,Inkjet,Food,Garden,Electronics,Kitchen,Cell Phones, Tapestry and much more |
|
   
 |
|
Raven
Site Admin/Owner
Joined: Aug 27, 2002
Posts: 17088
|
| Posted:
Sun Nov 21, 2004 2:50 am |
|
Does your .htaccess have 666 or 777 permissions? Also make sure that you are not still logged in as admin. |
| |
|
|
|
|
elrayjones
|
| Posted:
Sun Nov 21, 2004 3:03 am |
|
| Raven wrote: | | Does your .htaccess have 666 or 777 permissions? Also make sure that you are not still logged in as admin. |
.htaccess is set to 666
here is my .htaccess file
RewriteEngine on
RewriteRule ^signature.gif /signature.php
RewriteRule ^signature.jpg /signature.php
<Files ana.php>
AuthType Basic
AuthName "Restricted Area"
AuthUserFile "/home/godotsho/.htpasswds/..................../................."
require valid-user
</Files>
do i need to place a "deny from" somewhere?
but, also the MySQL table "nuke_nsnst_ips" does not get updated, nothing gets posted... and yes i totaly logout and kill my cookies. |
Last edited by elrayjones on Sun Nov 21, 2004 3:49 am; edited 2 times in total |
|
|
|
|
elrayjones
|
| Posted:
Sun Nov 21, 2004 3:46 am |
|
you know what? i think i'm just going to bed! i found out what was happening, i guess it would help if i TURN ON BLOCKING!  |
| |
|
|
|
|
Raven
|
| Posted:
Sun Nov 21, 2004 9:59 am |
|
|
|
|
|
chicago
New Member
Joined: Apr 24, 2005
Posts: 6
|
| Posted:
Sun Apr 24, 2005 8:20 pm |
|
I haveing the same problem.
how do I trun on blocking ?
Seems to be configured correct
I get emails such as
|
| |
|
|
|
|
Raven
|
| Posted:
Sun Apr 24, 2005 9:01 pm |
|
Under NukeSentinel Configuration, for each type of block there are 2 settings:
Activate and Write to .htaccess. Make sure that the Activate option includes the 'Block' and that write to .htaccess is set to 'Yes'. Make sure the .htaccess permissions are 666 or 777. |
| |
|
|
|
|
chicago
|
| Posted:
Sun Apr 24, 2005 11:04 pm |
|
|
|
|
|
Spectral
New Member
Joined: Nov 15, 2005
Posts: 15
|
| Posted:
Tue Nov 15, 2005 6:37 pm |
|
I have mine set to blocking/email/default and i get the black page that gathers the users info and says they have been perm banned but their ip doesnt get written to the database. I dont have the .htaccess file on my server because i want to use the database. Anyone know whats going on? And also for some union exploits it says its an unkown exploit but still says its a perm ban. Anyway to change the unknown exploit time lengths? If not no worries i just want to be able to write th bans to the database. |
| |
|
|
|
|
Raven
|
| Posted:
Tue Nov 15, 2005 7:13 pm |
|
The advantage to .htaccess is that the IP gets banned BEFORE it reaches your site, whereas with only the DB, the bad guy is actually on your site. I strongly recommend that you use both for the most safety. You need to post the email you get for the unknown exploit so I can see what's going on. |
| |
|
|
|
|
Spectral
|
| Posted:
Tue Nov 15, 2005 7:45 pm |
|
so what file does it save the bans to .htaccess? and will .htaccess sync with the database? so if i block or unblock an ip it will remove it from both? |
| |
|
|
|
|
Raven
|
| Posted:
Tue Nov 15, 2005 7:54 pm |
|
It will save it to the file .htaccess and the table nsnst_blocked_ips. yes, when you remove it from the table it updates .htaccess. |
| |
|
|
|
|
Spectral
|
| Posted:
Tue Nov 15, 2005 8:14 pm |
|
ok one last question, it seems i wasnt logging out so it wasnt blocking me so i got the blocking working fine, is there an already made script to make a block so the banned ip's and reason will scroll in a block in my phpnuke site? Or do i need to make one? Didnt want to waste my time making one when there is one made. |
| |
|
|
|
|
Raven
|
| Posted:
Tue Nov 15, 2005 11:22 pm |
|
It comes with the download. |
| |
|
|
|
|
Spectral
|
| Posted:
Tue Nov 15, 2005 11:23 pm |
|
yea i saw it but i want to change it a bit so i think i will just go ahead and create one. ty |
| |
|
|
|
|
Spectral
|
| Posted:
Wed Nov 16, 2005 9:00 pm |
|
i just noticed a block but it didnt save to the .htaccess file it was like chmod 663 or something how it became a 3 i dont know but i changed it to 777 could this be why? Do i need to chmod anymore of my files? |
| |
|
|
|
|
Raven
|
| Posted:
Wed Nov 16, 2005 9:13 pm |
|
The instructions explain all the permissions settings  |
| |
|
|
|
|
|
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
