Search found 44 matches

by traverlaw.com
Fri Jul 01, 2005 1:56 am
Forum: 2.0.x Discussion
Topic: Good, CMS's
Replies: 5
Views: 529

[spam] has a phpBB component that lets you use Mambo as your CMS and run phpBB integrated within Mambo. I find it very powerful and handy. However, there is a learning curve for Mambo and the documentation is poor.
by traverlaw.com
Sat Jun 25, 2005 1:02 am
Forum: [2.0.x] MODs in Development
Topic: [ABD] RSS Feed 2.2.4
Replies: 426
Views: 159883

Thank you for the explanation.
by traverlaw.com
Tue Jun 21, 2005 1:17 pm
Forum: [2.0.x] MODs in Development
Topic: [ABD] RSS Feed 2.2.4
Replies: 426
Views: 159883

MoLew wrote: @ Web Medic: Would love to see how you integrate your existing work with this set.


What?
by traverlaw.com
Fri Jun 17, 2005 9:34 pm
Forum: [2.0.x] MODs in Development
Topic: [ABD] RSS Feed 2.2.4
Replies: 426
Views: 159883

Use of this mod in the Mambo phpBB component

With very minor modification the RSS Feed 2.2.3 mod as distributed by phpbb.com works well for the tim-online.nl version of the Mambo/phpBB comonent.

It is discussed here:

http://tinyurl.com/arntb
by traverlaw.com
Sun Apr 03, 2005 10:35 pm
Forum: 2.0.x Support Forum
Topic: Moving phpBB to a subdirectory
Replies: 1
Views: 546

Moving phpBB to a subdirectory

When my systems person installed phpBB on the server, he loaded it directly into the root directory. Now, I want to add a CMS. What files and tables do I need to change when I move phpBB to a subdirectory of the root directory?
by traverlaw.com
Sun Jan 02, 2005 1:24 am
Forum: 2.0.x Discussion
Topic: Idea to prevent exploits of phpBB in the furure?!
Replies: 36
Views: 2867

Anti-Santy Worm

I was a little saddened by the lack of creativity of the hacker(s), who failed to recognize the benefits of correcting a problem, rather than simply pointing it out on a mass scale. Since one can make a harmful worm that overwrites files with junk in vulnerable systems, one can also make a worm tha...
by traverlaw.com
Sat Jan 01, 2005 9:19 pm
Forum: 2.0.x Support Forum
Topic: Apache forbidden rule for Santy.A worm
Replies: 226
Views: 84542

Re: .htaccess code issues

I received permission from my service provider to use an .htaccess file. When I used the code suggested above, I got this message: Forbidden You don't have permission to access / on this server. Are there parameters to this code that I should fiddle with? What precisely is in your .htaccess file? I...
by traverlaw.com
Sat Jan 01, 2005 4:44 pm
Forum: 2.0.x Support Forum
Topic: Apache forbidden rule for Santy.A worm
Replies: 226
Views: 84542

.htaccess code issues

RewriteEngine On RewriteCond %{QUERY_STRING} ^(.*)wget\%20 [OR] RewriteCond %{QUERY_STRING} ^(.*)echr(.*) [OR] RewriteCond %{QUERY_STRING} ^(.*)esystem(.*) [OR] I am trying to implement this to our system. But could someone explain what the above codes do? That code does nothing because it's not co...
by traverlaw.com
Fri Dec 31, 2004 3:47 pm
Forum: 2.0.x Support Forum
Topic: Apache forbidden rule for Santy.A worm
Replies: 226
Views: 84542

Follow up.

Also, referencing my posting above, it does not add anything to the banned file. This suggests there might be an error in this line of code? if ($userdata['user_id'] == ANONYMOUS) { $sql = "INSERT INTO phpbb_banlist (ban_ip) VALUES ('" . $user_ip . "')"; if ( !$db->sql_query($sql...
by traverlaw.com
Fri Dec 31, 2004 3:38 pm
Forum: 2.0.x Support Forum
Topic: Apache forbidden rule for Santy.A worm
Replies: 226
Views: 84542

Error?

Here's what I did... finally had the bot attack tonight. OPEN viewtopic.php FIND $highlight = urlencode($HTTP_GET_VARS['highlight']); ADD BELOW if ($userdata['user_id'] == ANONYMOUS) { // viewtopic.php?t=282&highlight=%2527%252Esystem(chr(112)%252Echr(101)%252Echr(114)%252Echr(108)%252Echr(32)%...
by traverlaw.com
Fri Dec 31, 2004 1:53 am
Forum: 2.0.x Discussion
Topic: Banning all bots
Replies: 2
Views: 305

Banning all bots

I've been getting way too many visits from bots in the last few days, allegedly working as mindless slaves for nasties trying to kick in the door of my site while eating up my bandwidth. So, I was thinking I'd just include a robot.txt file to stop all bots. If they can’t see me, maybe they will go s...
by traverlaw.com
Thu Dec 30, 2004 2:27 pm
Forum: 2.0.x Discussion
Topic: 2.0.11 not secure?
Replies: 5
Views: 819

2.0.11 not secure?

SecurityFocus HOME Vulns discussion: PHPBB Remote URLDecode Input Validation Vulnerabil "A remote input validation vulnerability due to a failure in the urldecode function reportedly affects phpBB. This issue is due to a failure to filter critical characters from user-supplied input. An attack...
by traverlaw.com
Sun Dec 26, 2004 4:38 pm
Forum: 2.0.x Discussion
Topic: Counters gone wild
Replies: 4
Views: 412

Er, you just answered your own question. A robot, in this case, the Santy worm. The counters just don't just get up and decide they're going to start reporting false stats. ;) Thanks, and happy holidays. I thought Google had stepped on the santy worm, so this was done. Santy must be using other sea...
by traverlaw.com
Sun Dec 26, 2004 4:15 pm
Forum: 2.0.x Discussion
Topic: Counters gone wild
Replies: 4
Views: 412

Counters gone wild

I posted this on my board today and removed the counters, including Smartor's previously reliable texted-based counter mod: In the past few days, phpbb boards worldwide have had an onslaught of hits and hacking attacks from all kinds of strange robots. It is not unusual for very obscure boards (like...
by traverlaw.com
Thu Dec 23, 2004 1:38 pm
Forum: 2.0.x Discussion
Topic: Idea to prevent exploits of phpBB in the furure?!
Replies: 36
Views: 2867

Re: One-click solution.

I was a little saddened by the lack of creativity of the hacker(s), who failed to recognize the benefits of correcting a problem, rather than simply pointing it out on a mass scale. Since one can make a harmful worm that overwrites files with junk in vulnerable systems, one can also make a worm tha...

Go to advanced search