Support Forums - All Posts - XOOPS Web Application System

XOOPS

Forum

Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk

Forum Index

Board index » All Posts (martyboy)

« 1 ... 4 5 6 (7) 8 9 10 ... 23 »

61

Re: People making up fake URL's, whats the piont?

2006/7/29 18:28
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Hi, actually my site was compromised last year, what happened is they managed to alter files in templates_c or cache which allowed them to place links to various porn sites/crack downloads on my site it was simply fixed just delete cache and templates_c files. The thing is I didnt notice these other php files in the xcgal/albums directories because i have no need to check those folders once pics are uploaded.

As was said before the files usulaly 4 php files named different things and a htaccess file are placed in the directories ive read about this today happening with phpnuke and other CMS it makes your site or the albums URL redirect to carious Russian search sites.

This is the content of the htaccess file that is in the directories:


Options -MultiViews

ErrorDocument 404 //home/modules/xcgal/albums/killer_thriller_party_2002/create.php

Each one differes with the php filename I looked in the php file and its just php code i dont understand.

I have protector installed and it was installed when this attack took place, but protector just isnt the protector i dont think, it might protect against some sql injections or high loading bots but it simple boils down to the fact that some folders within XOOPS have to be writable chmod 777 which is just not secure.

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

62

Re: People making up fake URL's, whats the piont?

2006/7/29 11:35
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Actually you are correct i just found the sites on google.

A while back i was compromised and there where loads of php files placed inot xcgal album directories, these files where called base.php, includes.php, time.php and otehr names there was also a htaccess file which is probably what is redirecting to the crap search site.

I will need to go through every directory and remove all these files.

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

63

Re: People making up fake URL's, whats the piont?

2006/7/29 11:24
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Hi, thanks for your reply, I dont think i have been hijacked though, my site is mjtkop.com is that what you tried? I couldnt get anything to show in google for allinurl:http://mjtkop.com/home/modules/xcgal/albums

heres the google search results for pages containing the termshttp://mjtkop.com/home/modules/xcgal/ http://www.google.co.uk/search?hl=en&lr=&q=%22mjtkop.com/home/modules/xcgal/%22

If you scroll down a bit youll see what i mean with the fake URLs, they seem to be coming from crack, or porn seach sites or something.

I think i will contact google and see if they can remove these results as it just doenst look good to legitimate people doing a search for my gallery.

Thanks for your help

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

64

Re: A Fansite of a Singer

2006/7/29 11:12
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Very nice site, I have to admit I have never heard of Boa but the site seems to be very popular. All the essentials for a fansite are there, its great to see XOOPS being used for more fansites.

I also have a fansite to a singer using XOOPS sites in my profile.

Very nice job indeed on your site

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

65

People making up fake URL's, whats the piont?

2006/7/28 22:41
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Hey, i dont know if this is the correct forum this is kinda XOOPS related, let me explain what I am talking about.

I was just searching google to see how my site was placed, etc and i did a search for my xcgal module to see how many people linked to it, i found alot of mentions of the URL of my xcgal module listed all over the place, and on some dodgy looking sites, but the thing was at the end they all had filenames for cracks, porn passwords, etc, for examplehttp://mysite.com/home/modules/xcgal/albums/somealbum/porno-password-cracker.shtml, the list goes on from downloads of exe files and software password cracks.

I checked my logs and there is an absolute ton of requests for these URL's, i checked inside xcgal directories and of course none of these files that are on google are there, so there requests just bring up 404 errors, my question is why would people post links to these dodgy files that arent even on my site? Is there a name for this phenomenon and is there a way to stop it, has anyone else had a similar experiance with these fake URL's?

Cheers.

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

66

Re: Xoops theme editor/maker?

2006/7/28 9:43
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

I made my first theme, the xdef theme, a few weeks ago, granted its not the best theme but i was chuffed with what i had learned in making themes.

The way i learned the CSS was with basically looking at other themes CSS files, i also had alocal test site open in xampp, then i just edited the CSS and refreshed the test site to see what changed and I learned what most of the CSS things where for in relation to the theme eg. even and odd classes, etc.

A good place to goto to kearn abit about CSS is the w3schools site http://www.w3schools.com/css/default.asp

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

67

Re: Changing Forum Width Only

2006/7/24 23:48
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

The width of the forum will probably be defined in the css file found inside the newbb directory or defined in the templates file but more than likely in the css.

Just find where the 'Width' is defined for the main table, I dont use newbb so i cant help there and change the value which will either be in pixels (px) or percent. It will probably stretch your theme out though if you make the width wider.

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

68

Re: Major xcgal problem - blank page when batch adding pics

2006/7/24 10:47
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Thanks for the info I will give it a try,

Cheers

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

69

Re: Major xcgal problem - blank page when batch adding pics

2006/7/19 22:45
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

Hey, my problem started to come back again but I found a solution, sort of. When you upload a folder of pics for batch loading make sure there is less than 15 in the folder, any more than fifteen and xcgal has problems, red crosses on some of the images, etc and when you try to batch load you get a blank page, seems to work fine with 15 or less pics in a directory.

I am not sure why this is because xcgal used to batch load pics fine with more than 50 in a directory, the only thing I can think of is my host changed the server config somewhere and its causing this problem, I dont know the exact cause though.

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

70

Re: My first xoops theme - for 2.0.14

2006/7/15 20:51
martyboy
Quite a regular
Posts: 256
Since: 2004/5/25

I've changed the colors a bit so i think it looks a bit better now, ive been doing what you said, basically i have my test site open and refresh the page when i change the css basically trying different things to see what works.

I was going to have a bash at changing the theme.html but it went a bit wrong so i dont think i will bother the theme file is fine anyway it has all the block placements and the essentials so its just getting the theme to look good that i am concerned with.

Just trying to figure out what all the css elements are for and to get the colors corrects so there no clashing. I will get there eventually.

Check out the new look

Michael Jackson = King Of Pop

Xoops = King Of CMS

Topic | Forum

Top

« 1 ... 4 5 6 (7) 8 9 10 ... 23 »

Login

Username

Password

Remember me

Register now! | Lost Password?

Search

Advanced Search

Recent Posts

Re: Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

3/16 2:02 Mamba
Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

3/14 20:34 hnn_gerd
Re: NewBB v 5.1.0 b 6

3/7 12:07 Mamba
Re: NewBB v 5.1.0 b 6

2/23 2:57 Mamba
NewBB v 5.1.0 b 6

2/17 18:57 spierrard
Re: XOOPS 2.5.11 search user is not working

2/14 13:11 Mamba
Re: oledrion

2/14 11:29 Mamba
Re: oledrion

2/13 15:22 oswaldo
Re: oledrion

2/12 19:20 Mamba
Re: oledrion

2/12 16:02 oswaldo

Who's Online

239 user(s) are online (164 user(s) are browsing Support Forums)

Members: 0

Guests: 239

Donat-O-Meter

Stats
Goal:	$100.00
Due Date:	Apr 30
Gross Amount:	$0.00
Net Balance:	$0.00
Left to go:	$100.00

Latest GitHub Commits

{{ record.sha.slice(0, 7) }} - {{ record.commit.message | truncate }}

{{ record.commit.author.name }} {{ record.commit.author.date | formatDate }}