I'm a PHP-Nuke tester and developer of the community Italian of phpnukefordonkeys.
For ours community I have written up a tutorial appropriate, drawn from the present material in package of Asec and translate the addon in Italian.
Premised this I go to expose my problem.
I'm in the condition for using the option exclude system rather than an other method in order to allow the access to determines IPs in a module (in specific the Sections).
Therefore I find myself to having to insert a range of IP (255 IPs in total) that they can approach the aforesaid module. All the others will come "cut" outside but they will be able to navigate the site.
This has been a good reason in order to test the famous option as well as ignored how much adviced against to times.
Well, here that we find ourselves in the panel of the exclude:
we can see 3 lines (IP, strings, modules).
Perhaps of these 3 only the last one work (...) In fact the first two do not insert neither the IPs that I go to write neither the strings for paths.
Forcing the insertion from the database here that it is begun to see some result, but it seems useless.
Trying to exclude before a single IP then a range and then other solutions, I do not come blocked in no way.
Then they I asked to me if this is truly the way in order to prevent that sure IPs sees one block.
I don't want to create users not to use of the groups.
I use a patched version 6.9.
Exists an other way through Asec or as I was proceeding it is right?
There are other cases that demonstrate that the insertion of IPs or strings from the exclude system not functions?
Whichever aid very is accepted.
Hello
Darsch
madman Support Mod
Joined: Feb 15, 2004
Posts: 806
Posted:
Tue Nov 16, 2004 10:27 am
First, consider to refer to /docs/exclude_system.txt provided in Admin Secure compressed package. Admin Secure take multiple check on submitted input, either on IP, script path/file, or modules. For IP exclusion, there's a known bug (parse error within regular expression) on v1.7 when you submit IP address. The fix already published in this forum.
Note: Admin Secure always perform two-sides checking on both input sources (user submitted data) and database entries. If you alter db table directly that does not seem to meet valid data, Admin Secure will discard them (for security reason).
For IP exclusion, upon submitting IP address (and range) take a look at the following input rules (taken from exclude_system.txt):
For script exclusion, be sure to always prepend the path with a slash (/). The path must be relative to your www document root. For example if you want to exclude the script path from the following URL:
Code:
http://yoursite/html/modules/Downloads/upload.php
Submit the path as follow:
Code:
/html/modules/Downloads/upload.php
If you supplied query string on script exclusion, be sure to put ampersands as "&" and not "&". The following example will demonstrate on how to ignore Admin Secure activity log from the following request:
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
