| Author |
Message |
Dreakon
New Member
Joined: Aug 17, 2004
Posts: 11
|
 Posted:
Tue Aug 17, 2004 4:18 pm |
|
I have NukeSentinel installed and everything appears to be working. Now I am lost. I have no idea what options to turn on or off or change or whatever to have the most protection possible.
What should I change/add for the most protection without limiting normal users to any parts of the site? |
| |
|
|
|
Muffin
Client
Joined: Apr 10, 2004
Posts: 649
Location: UK
|
| Posted:
Tue Aug 17, 2004 5:00 pm |
|
Well i've set mine to the last option in the drop down box on all
but left block proxies to off as a lot of my members couldnt get on with that set to 'on' as some of them use aol which uses a proxy. |
_________________
Classic Mini rules the bends & bends the rules!
[img] |
|
|
|
|
Dreakon
|
| Posted:
Tue Aug 17, 2004 6:38 pm |
|
Thanks for the reply, but I do not understand completely. I went through the NukeSentinel™ Administration and I think I have everything set well enough. For example, Force Nuke URL is set to Yes, I set the path to the htaccess file and I turned on Admin HTTP Auth and DOS Protection. That's correct right?
The thing that is really confusing me is the NukeSentinel™ Configuration. Here are some of the main questions:
1. The first option in each of the configurations is Activate. I set it to default page. Is that okay? What one should I set it to?
2. What does "write to htaccess" mean and is it a good idea to turn it on?
3. What's IP Block Type and what should I set it to?
4. What's Block Duration and what should I set it to?
Keep in mind I want to make sure everything works for all the members of my site, while keeping the site as protected as possible. Thanks  |
| |
|
|
|
|
GeekyGuy
Client
Joined: Jun 03, 2004
Posts: 302
Location: Huber Heights Ohio
|
| Posted:
Tue Aug 17, 2004 7:48 pm |
|
| Quote: | | 1. The first option in each of the configurations is Activate. I set it to default page. Is that okay? What one should I set it to? |
Off - Turns off this protection method
Email Admin - Sends an email to the Admin(s) listed in the NukeSentinel™ Administration page
Forward - Forwards the attacker to the URL listed in the Forward to:
Default Page - Sends the attacker to the default NukeSentinel™ banned page
Email & Forward - Sends an email, and forwards attacker to the URL
Email & Default Page - Sends an email and sends attacker to the default page
Email, Block & Forward - Sends an email, blocks the IP by adding to .htaccess and the database, and forwards to the URL
Email, Block, & Default Page - Sends an email, blocks the IP by adding to .htaccess and the database, and sends the attacker to the default page
I think that most of us use the Email, Block, and Default Page setting.
| Quote: | | 2. What does "write to htaccess" mean and is it a good idea to turn it on? |
Yes - Writes the blocked IP address to the htaccess file
No - Does not write the blocked IP address to the htaccess file
Adding the blocked IP to the .htaccess file will stop the attacker at the server level. The attacker will never be able to get to any part of your website again
| Quote: | | 3. What's IP Block Type and what should I set it to? |
Full IP (127.2.3.4) - Blocks the specific IP address and writes this IP to the htaccess and database
1 Octet (127.2.3.*) - Blocks the subnet of the IP and writes this to the htaccess and database
2 Octets (127.2.*.*) - Blocks the subnet of the IP and writes this to the htaccess and database
3 Octets (127.*.*.*) - Blocks the subnet of the IP and writes this to the htaccess and database
The full IP blocks just that specific IP. The other ranges allow you to block subnets, up to and including specific countries using that IP range
| Quote: | | 4. What's Block Duration and what should I set it to? |
Permanent - This type of ban does not expire and will not be removed until you clear it
Days 1 to 365 - This type of ban will expire in the amount of days selected and the IP will be removed from the banned list after the selected time period.
Most 'normal' users should not trigger NukeSentinel™ during normal viewing.
Hope this info helps  |
_________________
"The Daytona 500 is ours! We won it, we won it, we won it!", Dale Earnhardt, February 15th, 1998, Daytona 500 |
|
  
  |
|
Dreakon
|
| Posted:
Tue Aug 17, 2004 9:05 pm |
|
Okay, I set all 9 parts of NukeSentinel™ Configuration with
Activate: Email, Block and Default Page
Write To htccess: Yes
Forward to:
IP Block Type: 1 Octet
Default Page: Author (each one corresponds with the section)
Email IP Lookup: Off
Reason: Abuse-Author (each one corresponds with the section)
Block Duration: Perminant
Does having this in each section of the Configuration make it as protected as it can be without effecting normal users?
Also, how do I edit the Site Disabled Site Reason page? |
| |
|
|
|
|
GeekyGuy
|
| Posted:
Tue Aug 17, 2004 9:24 pm |
|
I think that you have your site protected with the best protection script available at this time.
Should you find that a user has a problem, NukeSentinel™ is very configurable and you can always clear the IP ban quickly and easily. And the guys and gals here are always ready to help you work through any problems you encounter.
| Quote: | | Also, how do I edit the Site Disabled Site Reason page? |
This is the file: html/abuse/admin_site_reason.tpl |
| |
|
|
|
|
Dreakon
|
| Posted:
Tue Aug 17, 2004 9:52 pm |
|
| GeekyGuy wrote: | | I think that you have your site protected with the best protection script available at this time. |
I hope so, I have NukeSentinel and Protector running. I doubt any hackers are gettin' through here.
I made the adjustments I wanted to the Site Disabled thing, now I need to get rid of the seperate one I installed a while ago.
Thanks for all of your help! |
| |
|
|
|
|
GeekyGuy
|
| Posted:
Tue Aug 17, 2004 9:58 pm |
|
You're welcome. Trying in my small way to help others the way everyone here has helped me.
 |
| |
|
|
|
|
|
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
