md5 sum encyclopedia terms?

Regular Joined: Oct 15, 2005 Posts: 92 Location: Brazil

hi

how can i encrypt encyclopedia terms? its d*** easy to steal content:

modules.php?name=Encyclopedia&op=content&tid=4

just change to

modules.php?name=Encyclopedia&op=content&tid=5

and you will get the next term to steal....

how can i encrypt like:

modules.php?name=Encyclopedia&op=content&tid=45893shds3#sds

?

registered · Posted: Mon Nov 07, 2005 3:44 pm

Well you'd have to MD5 all the output for $tid.
To do the query, you'd have to check the correct term in the query

Need to add to the query something like

Code:




WHERE MD5($tid) = MD5(tid)

Posted: Tue Nov 08, 2005 5:35 pm

there is the following code:

modules/Encyclopedia/index.php

Code:

         $tid = intval($row3['tid']);

Code:

         echo "<tr><td><a href=\"modules.php?name=$module_name&amp;op=content&amp;tid=$tid\">$title</a></td></tr>";

Code:

function content($tid, $ltr, $page=0, $query="") {

Code:

   $tid = intval($tid);

Code:

   $ency = $db->sql_fetchrow($db->sql_query("SELECT * FROM ".$prefix."_encyclopedia_text WHERE tid='$tid'"));

Code:

      $db->sql_query("UPDATE ".$prefix."_encyclopedia_text SET counter=counter+1 WHERE tid='$tid'");

Code:

href=\"modules.php?name=$module_name&amp;op=content&amp;tid=$tid&amp;page=$next_pagenumber$fromsearch\">"._NEXT."

Code:

href=\"modules.php?name=$module_name&amp;op=content&amp;tid=$tid&amp;page=$next_pagenumber\"><img src=\"images/right.gif\" border=\"0\" alt=\""._NEXT."\" title=\""._NEXT."\"></a>";

Code:

href=\"modules.php?name=$module_name&amp;op=content&amp;tid=$tid&amp;page=$previous_pagenumber$fromsearch\"><img src=\"images/left.gif\" border=\"0\" alt=\""._PREVIOUS."\" title=\""._PREVIOUS."\"></a>

Code:

href=\"modules.php?name=$module_name&amp;op=content&amp;tid=$tid&amp;page=$previous_pagenumber$fromsearch\">"._PREVIOUS." ($previous_pagenumber/$pageno)</a>";

Code:

   case "content":


   content($tid, $ltr, $page, $query);

11 entries, wich shoud i change???

Posted: Tue Nov 15, 2005 4:11 pm

i still need it guys =/

registered · Site Admin Joined: Jun 04, 2004 Posts: 6437

How do you expect using an encrypted ID to stop anyone from "stealing" content? They can find the encrypted link easily enough, and use that instead of an integer ID...

Posted: Tue Nov 15, 2005 7:25 pm

ehhh?

i just want to stop this:

modules.php?name=Encyclopedia&op=content&tid=203

modules.php?name=Encyclopedia&op=content&tid=204

this way anyone will steal stuff EASILY

Posted: Tue Nov 15, 2005 7:46 pm

How is that any different than (with the MD5 values for 203 and 204, respectively):

modules.php?name=Encyclopedia&op=content&tid=e2c0be24560d78c5e599c2a9c9d0bbd2

modules.php?name=Encyclopedia&op=content&tid=274ad4786c3abca69fa097b85867d9a4

?

As long as there is a link to the content on your site, people will be able to access it easily.

Posted: Wed Nov 16, 2005 9:50 am

listen, i know what i am doing; please, can you help me?

Posted: Wed Nov 16, 2005 12:49 pm

I'd like to help, but I don't understand what you want to do.

Posted: Wed Nov 16, 2005 3:47 pm

do what u posted

modules.php?name=Encyclopedia&op=content&tid=e2c0be24560d78c5e599c2a9c9d0bbd2

instead of

modules.php?name=Encyclopedia&op=content&tid=203

understood?