XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk


« 1 ... 89 90 91 (92) 93 94 95 ... 100 »


911
zyspec
Re: MyAds 2.x vulnerable!

  • 2006/6/30 16:21

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


This also looks like this is a problem in Jobs ver 1.9.

The code doesn't sanitize 'lid' as described and it also allows overloading of other variables via $_POST instead of just explicitly loading the variables needed ($yname, $ymail, $fname, $fmail).
Topic | Forum


912
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:58

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


One other thing you can do is report this to ImageShack
since this clearly violates their policies. Maybe they can help you track down the IP address. You can report the abuse here.

You'll need to give them the URL of the image (http://img48.imageshack.us/img48/2264/mads23af.jpg)
Topic | Forum


913
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:44

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


David,
An additional thing you may want to check is to verify that you're using the latest version of all your modules. For example piCal had a XSS bug in versions < 0.86. You can get the latest version here.
Topic | Forum


914
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:36

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


It appears most of the database is 'complete'. I can get to all of the "normal" screens (user.php, edituser.php, newbb forum, etc). It appears they may have either replaced your index.php file (or perhaps deleted it) or replaced the contents of mainfile.php.

I'd check the file date/times of index.php, index.html, and mainfile.php as likely suspects with a ftp client. I'd just copy over the index.html and index.php file with those from the XOOPS distribution just to make sure.

You'll need to look at the contents of mainfile.php to make sure it looks 'reasonable' - you can't just copy over it unless you have a previous backup.

In addition to bender's recommendation I would do the following:

1) empty your /cache and /templates directories.
2) put an index.html file in the /cache and /templates_c directories. Use the ones from the 2.0.14 zip file.
3) make sure that mainfile.php is read only (CHMOD 444).
4) delete the /install and /upgrade directories if they exist
Topic | Forum


915
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:57

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


One additional thing I've found is that there isn't an index.html file in the /cache or /templates_c directories - so I know there's a version of pical.
Topic | Forum


916
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:44

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


David,

I'm willing, but not sure how, to help with the information you've provided. You need to include a little more data so we can try and help you figure out what happened and how to prevent another occurrance.

1) Can you explain exactly what happened. For example, Were files replaced/deleted? Were additional files added?

2) You said you upgraded to 2.0.14 so I'm assuming this was completed. Can you explain exactly what steps you went through when upgrading. For example, did you reset mainfile.php to read only rights (CHMOD 444)? Did you delete the install and/or upgrade folders when you were done? etc.. etc..

3) Do you have access to a web stats type program (AWSTATS, etc) to help identify a visitors IP address, etc.?

4) Do you have a backup of your site or is it 'repairable'?

EDIT:
5) What other modules do you have installed?
Topic | Forum


917
zyspec
Re: Contact module with autorization code

  • 2006/6/29 4:43

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


Try XoopContact v1.6. It's a contact module that has the security graphic (captcha) check.
Topic | Forum


918
zyspec
Re: Turn off or change map in Mxdirectory 3.0 RC1

  • 2006/6/28 20:26

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


There are instructions and additional examples for several non-US countries in the /Maps directory.
Topic | Forum


919
zyspec
Re: Online course/teaching module - Help Please

  • 2006/6/28 13:53

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


technigrapha,

It looks like the obsclassroom link above is working again...

I found a link to Moodle4Xoops here - It doesn't look like this is the latest version (looks like this one is based on Moodle 1.2.1) but it is a link that was referenced in another place by the author.

Here's a link to another post on Moodle that may help.

You could also try and contact the author at their new website here
Topic | Forum


920
zyspec
Re: Cannot log into own site.

  • 2006/6/27 13:48

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


afterglow, I believe birdseed is correct. You may also need to check group permissions. You may not be allowing anonymous access to the module.

As birdseed suggests, go tohttp://your_xoops_url/admin.php and login using an administrator account and check the group settings.
Topic | Forum



TopTop
« 1 ... 89 90 91 (92) 93 94 95 ... 100 »



[Advanced Search]

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

168 user(s) are online (111 user(s) are browsing Support Forums)

Members: 0

Guests: 168

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Apr 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits