Translate
Sub Menu
Links Menu
Online Users

In total there are 118 users online :: 2 registered, 0 hidden and 116 guests

Most users ever online was 561 on Fri Mar 20, 2020 1:13 am

Registered users: Bing [Bot], Majestic-12 [Bot] based on users active over the past 60 minutes

Last Online
In order to view the online list you have to be registered and logged in.



We are a free and open
community, all are welcome.

Click here to Register

CrackerTracker Exploit False Positives

Support for IntegraMOD 141

Moderator: Integra Moderator

Re: CrackerTracker Exploit False Positives

PostAuthor: viragotech » Thu May 28, 2009 11:10 am

error
Last edited by viragotech on Wed Sep 15, 2010 9:53 pm, edited 1 time in total.
User avatar
viragotech
Sr Integra Member
Sr Integra Member
 
Posts: 292
Joined: Wed Jul 04, 2007 11:30 am

Re: CrackerTracker Exploit False Positives

PostAuthor: Karl-D » Thu Aug 19, 2010 5:36 am

Can somebody remind me how to activate the debug mode.
User avatar
Karl-D
Integra Supporter
Integra Supporter
 
Posts: 104
Joined: Tue May 30, 2006 6:23 am
Location: Cornwall UK

Re: CrackerTracker Exploit False Positives

PostAuthor: CaNNon » Thu Aug 19, 2010 5:44 am

Try this KB post, if you still need help post back. <img>
[url=http]http://www.integramod.com/forum/knowledge/kb_show.php?id=12[/url]
Image
Image
User avatar
CaNNon
Sr Integra Member
Sr Integra Member
 
Posts: 750
Joined: Thu Apr 19, 2007 12:15 pm

Re: CrackerTracker Exploit False Positives

PostAuthor: viragotech » Wed Sep 15, 2010 9:50 pm

canot find said line in said file, CT error when trying to optmize DB

"include($phpbb_root_path . 'common.'.$phpEx);"


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Script-Filename: /xxx/admin/admin_db_utilities.php
----------------

Attack-Time: 15.09.2010 23:47 pm
------------

Request-Method: POST

Matching rule: _server
In variable: selected_tbl

Matching rule: _server
In variable: selected_tbl

Possible solution:
------------------

#
#-----[ OPEN ]------------------------------------------
#
/xxx/admin/admin_db_utilities.php

#
#-----[ FIND ]------------------------------------------
#
include($phpbb_root_path . 'common.'.$phpEx);

#
#-----[ BEFORE, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignorepvar = array('selected_tbl');

#
#-----[ SAVE/CLOSE ALL FILES ]------------------------------------------
#
# EoM


Typical fix works,

#-----[ FIND ]------------------------------------------
#
define('IN_PHPBB', 1);

#
#-----[ AFTER, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignoregvar = array('this_query');

#
#-----[ SAVE/CLOSE ALL FILES ]----------------------------------------- -
#
# EoM
User avatar
viragotech
Sr Integra Member
Sr Integra Member
 
Posts: 292
Joined: Wed Jul 04, 2007 11:30 am

Re: CrackerTracker Exploit False Positives

PostAuthor: Helter » Thu Sep 16, 2010 2:11 am

FIND

Code: Select all
define('IN_PHPBB', 1);


AFTER, ADD

Code: Select all
define('CT_SECLEVEL', 'LOW');$ct_ignorepvar = array('selected_tbl');
Image
Please do not PM for support
User avatar
Helter
Administrator
Administrator
 
Posts: 4126
Joined: Sat Mar 11, 2006 4:46 pm
Location: Seattle Wa

Re: CrackerTracker Exploit False Positives

PostAuthor: viragotech » Thu Sep 16, 2010 7:36 am

Yep the old goto code strikes again <img>

Any tips for random folks getting CT blocked doing the required profile updates, yet some are fine. Age of account seems to make no matter.

I had no problem.
User avatar
viragotech
Sr Integra Member
Sr Integra Member
 
Posts: 292
Joined: Wed Jul 04, 2007 11:30 am

Re: CrackerTracker Exploit False Positives

PostAuthor: Helter » Thu Sep 16, 2010 1:59 pm

you should be able to look through the CTracker logs to find the blocked functions.
Image
Please do not PM for support
User avatar
Helter
Administrator
Administrator
 
Posts: 4126
Joined: Sat Mar 11, 2006 4:46 pm
Location: Seattle Wa

Previous

Return to IntegraMOD 141

Who is online

Registered users: Bing [Bot], Majestic-12 [Bot]

cron