PEAK XOOPS - How to check if Protector is up and running 
How to check if Protector is up and running
- You cannot open a new topic into this forum
- Guests cannot post into this forum
Previous post
-
Next post
|
Parent
-
Children.1
|
Posted on 2004/10/26 2:40
beetlebug
Posts: 1
Posts: 1
Hi Xoopsers,
I guess this is a simple question,
How can I check if Protector is correctly installed an securing my site?
I patched the neccesary files mensioned in the readme so I guess taht part is allride.
Thanks,
beetlebug
I guess this is a simple question,
How can I check if Protector is correctly installed an securing my site?
I patched the neccesary files mensioned in the readme so I guess taht part is allride.
Thanks,
beetlebug
Votes:0
Average:0.00
GIJOE
Posts: 4110
Posts: 4110
hi beetle bug.
It sounds a good question.
Certainly, some checking stages are needed.
After turning "IP ban" off ...
access
http://(your site)/?xoopsOption[nocommon]=1
If you've set up XoopsProtector correctly, the report is recorded on your security center in XoopsProtector's admin
Don't forget turn "IP ban" off, before such cracking test.
It sounds a good question.
Certainly, some checking stages are needed.
After turning "IP ban" off ...
access
http://(your site)/?xoopsOption[nocommon]=1
If you've set up XoopsProtector correctly, the report is recorded on your security center in XoopsProtector's admin
Don't forget turn "IP ban" off, before such cracking test.
Votes:0
Average:0.00
JasonMR
Posts: 14
Posts: 14
GIJOE
Thanks for posting this tip, now I know, that I had forgotten to patch mainfile.php (after wondering why your tip didn't show anything in my security center).
I do believe there should be some checker included into Protector, though I'm not sure, how to go about that one. At least the described method should be mentioned in the ReadMe, I believe....just my 5c....
ThanX
Regards
JasonMR
Thanks for posting this tip, now I know, that I had forgotten to patch mainfile.php (after wondering why your tip didn't show anything in my security center).
I do believe there should be some checker included into Protector, though I'm not sure, how to go about that one. At least the described method should be mentioned in the ReadMe, I believe....just my 5c....
ThanX
Regards
JasonMR
Votes:0
Average:0.00
GIJOE
Posts: 4110
Posts: 4110
hi Jason.
Patching into mainfile.php is almost indispensability.
If someone use the method (xoopsOption[nocommon]=1) and the server is register_globals on, crackers can easily access XOOPS which is not protected by Protector.
Quote:Do you mean the tip of checking ?
It is hard to judge.
To describe it means that I teach how to attack XOOPS without Protector.
Anyway, I thank you for the suggestion.
Patching into mainfile.php is almost indispensability.
If someone use the method (xoopsOption[nocommon]=1) and the server is register_globals on, crackers can easily access XOOPS which is not protected by Protector.
Quote:
I do believe there should be some checker included into Protector, though I'm not sure, how to go about that one. At least the described method should be mentioned in the ReadMe, I believe....just my 5c....
It is hard to judge.
To describe it means that I teach how to attack XOOPS without Protector.
Anyway, I thank you for the suggestion.
Votes:0
Average:0.00
JasonMR
Posts: 14
Posts: 14
I did mean the checking, if install works....I thought of something like an option in the admin area "Click here to test your Protector installation", which then starts a script doing the test you described.
I am sorry, that currently I can only offer my smart comments.....
I am sorry, that currently I can only offer my smart comments.....
Votes:1
Average:0.00
GIJOE
Posts: 4110
Posts: 4110
hi Jason.
At first, I'm sorry my misunderstanding.
Quote:Good idea!
I'll implement it.
At first, I'm sorry my misunderstanding.
Quote:
I did mean the checking, if install works....I thought of something like an option in the admin area "Click here to test your Protector installation", which then starts a script doing the test you described.
I'll implement it.
Votes:0
Average:0.00
Previous post
-
Next post
|
Parent
-
No child
|
Posted on 2004/11/12 18:42
JasonMR
Posts: 14
Posts: 14
Hi GIJOE!
No worries about the misunderstanding, communication isn't as simple as it seems at first glance
Great to hear about your motivation to implement the idea!
Thanks a lot for that Your work is highly regarded and appreciated!
Regards
JasonMR
No worries about the misunderstanding, communication isn't as simple as it seems at first glance
Great to hear about your motivation to implement the idea!
Thanks a lot for that
Your work is highly regarded and appreciated!Regards
JasonMR
Votes:1
Average:0.00
Login