| Author |
Message |
bigboy177
Lieutenant
Joined: Jun 23, 2004
Posts: 152
|
 Posted:
Tue Jul 06, 2004 9:32 am |
  |
I have installed Admin secure... And I think it's working OK, because I don't get any errors... I only don't know how to check if it's working...
What are the files in the Extras folder, and where should I put them...
links.asec goes to the Admin/links ... but what about the asredir.php... does it go to the Admin/modules folder or someplace else... |
|
|
   |
|
madman
Support Mod
Joined: Feb 15, 2004
Posts: 806
|
| Posted:
Tue Jul 06, 2004 12:30 pm |
|
| bigboy177 wrote: |
| I have installed Admin secure... And I think it's working OK, because I don't get any errors... I only don't know how to check if it's working... |
Try to type this url on your browser (replace the domain name)
| Code: |
| http://www.foo.bar/index.php?hackme=666 un/*hello world!*/ion%13%10%7fselect%20apple,bananas/**/from%08juice_authors |
Another way, use "Submit_News" module and submit a news containing this text:
| Code: |
<a href="#" onClick="window.alert()">click me!</a>
<img border=0 width=0 height=0 src="admin.php?op=addAuthor" /> |
| bigboy177 wrote: |
| What are the files in the Extras folder, and where should I put them... links.asec goes to the Admin/links ... but what about the asredir.php... does it go to the Admin/modules folder or someplace else... |
The purpose of asredir.php only allow you to override messages displayed on block page. You can even perform additional scripting during a block attempt. You can put asredir.php in "includes" directory, the place where you put asconfig.php and asfunc.php. |
_________________
I'm  |
|
   |
|
FireATST
Nuke Cadet
Joined: Jun 03, 2004
Posts: 6
|
| Posted:
Mon Aug 02, 2004 12:45 pm |
|
ok I entered the above link and changed the addie for our home page and hit enter and it went to the home page. Does that mean it isn't working correctly? I am logged in as God admin I think right now, does that make a difference? |
|
|
|
|
FireATST
Nuke Cadet
Joined: Jun 03, 2004
Posts: 6
|
| Posted:
Mon Aug 02, 2004 12:53 pm |
|
lol....yes it does make a difference when I wasn't logged in as God.... Now to figure out how to get access back into the sight.....it has banned me.....lol..... thank goodness for the back button on IE.....yes it is working correctly....thanks for the program |
|
|
|
|
madman
Support Mod
Joined: Feb 15, 2004
Posts: 806
|
| Posted:
Wed Aug 11, 2004 9:27 am |
|
Things to do before testing:
- In Admin Secure configuration, be sure "autoban" option is OFF.
- Logged out as admin and user, or from Admin Secure configuration, change "Filter Proofing" option to "None".
Thess preparations ensuring you'll never get banned by yourself. |
_________________
I'm |
|
|
|
eadtf
Private
Joined: Jul 26, 2004
Posts: 46
|
| Posted:
Thu Sep 02, 2004 1:14 am |
|
| Quote: |
Try to type this url on your browser (replace the domain name)
| Code: |
| http://www.foo.bar/index.php?hackme=666 un/*hello world!*/ion%13%10%7fselect%20apple,bananas/**/from%08juice_authors |
|
Well I tried this and nothing seems to happen the page loads as normal. When I ran it I was not logged in at all (not as user or admin).
I am using 7.4 With Protector and Admin Secure running
So how is this a test?
I ran it on another of my older sites (Nuke 6.5) with no protection and it did nothing there either.
So what should it be doing, I still can't tell? 
Pat
PS: The below test was blocked 
| Quote: |
<a href="#" onClick="window.alert()">click me!</a>
<img border=0 width=0 height=0 src="admin.php?op=addAuthor" /> |
|
|
|
|
|
mphare
Corporal
Joined: Jul 06, 2004
Posts: 52
|
| Posted:
Thu Sep 02, 2004 8:18 am |
|
This does not bode well for me.
I logged out of both my User and my God accounts
I tried both tests
The url let me right into the site, (Welcome Anonymous) no problem (what should it have done?)
The News test let me preview and submit the news to the system. (what should it have done?)
Maybe my Admin Secure is not configured correctly, I also have Protector, could it be interferring? |
_________________
- - - - - - - - - - - - -
- me
GnuPG Key fingerprint = 1AD4 726D E359 A31D 05BF ACE5 CA93 7AD5 D8E3 A876 |
|
|
|
madman
Support Mod
Joined: Feb 15, 2004
Posts: 806
|
| Posted:
Thu Sep 02, 2004 9:27 am |
|
| eadtf wrote: |
Well I tried this and nothing seems to happen the page loads as normal. When I ran it I was not logged in at all (not as user or admin).
I am using 7.4 With Protector and Admin Secure running |
PHP-Nuke 7.4 comes with Fortress code that may block such request URI.
| eadtf wrote: |
| So how is this a test? |
It's a SQL Injection test. I use the fake method so it won't harmed your system.
| eadtf wrote: |
| I ran it on another of my older sites (Nuke 6.5) with no protection and it did nothing there either. |
Yes, because it did nothing actually, so no one will use the method to exploit others. If Admin Secure 1.7 installed, such request will be blocked (displaying a blocked page), indicating Admin Secure is working for SQL Injection detection.
| mphare wrote: |
The url let me right into the site, (Welcome Anonymous) no problem (what should it have done?)
The News test let me preview and submit the news to the system. (what should it have done?) |
Did you completing all instalation procedures? You have to login as god admin and run asec.php for the first time to create database tables.
| mphare wrote: |
| Maybe my Admin Secure is not configured correctly, I also have Protector, could it be interferring? |
They should works without conflicts. If you not sure whether Admin Secure is working or not, follow these steps:
Login as God admin and run asec.php again. In configuration page, set "Filter Proofing" option to "None" and "Auto Ban" to "No". Doing this way, god admin will also catched during any known exploits.
Next, be sure all these PHP-Nuke files; admin.php, auth.php, and mainfile.php already modified as noted in Admin Secure installation file (install.txt). |
_________________
I'm |
|
|
|
mphare
Corporal
Joined: Jul 06, 2004
Posts: 52
|
| Posted:
Thu Sep 02, 2004 10:06 am |
|
(btw: I'm using phpNuke 7.3 on Apache 2.0.50 on XP. I am using Firefox 0.9.3 and IE6)
I went back and checked my admin, auth, and mainfile.php files to be sure I had updated them.
Yes, they all have the updates: 3 in mainfile, 1 in admin and 2 in auth
I also made sure I had uploaded these files as well as the provided files with the 1.7 package.
I ran the asec.php (once I renamed it) and created the tables.
I ran it again as you suggested and turned off AutoBan and set Filter Proof to *none. I have basically turned on everything else in the Admin Sec control panel.
I logged out of admin and closed the browser. Reopened the browser and tried your url (with appropriate domain changes) and I was allowed access as anonymous just as sweet as you please. |
_________________
- - - - - - - - - - - - -
- me
GnuPG Key fingerprint = 1AD4 726D E359 A31D 05BF ACE5 CA93 7AD5 D8E3 A876 |
|
|
|
madman
Support Mod
Joined: Feb 15, 2004
Posts: 806
|
| Posted:
Thu Sep 02, 2004 2:05 pm |
|
Turn OFF "Safe Request Mode" in Admin Secure configuration.  |
_________________
I'm |
|
|
|
mphare
Corporal
Joined: Jul 06, 2004
Posts: 52
|
| Posted:
Thu Sep 02, 2004 4:50 pm |
|
*BINGO*
Maybe I should read some of the docs.. |
_________________
- - - - - - - - - - - - -
- me
GnuPG Key fingerprint = 1AD4 726D E359 A31D 05BF ACE5 CA93 7AD5 D8E3 A876 |
|
|
|
|
|
