IntegraMOD

Posted: **Mon Oct 23, 2006 12:21 am**

It IS a local forum on my own server that I can directly access the whole hard drive on and I'm telling you... there's no php.ini in any system path or php program path.

My Security>Info:php says Configuration File (php.ini) Path C:WINDOWS
but it's not there.

Interesting huh?

Maybe that's why this board has been running like a dawg.

I think I'll start with the php.ini-recommended file and see what you guys say need's to be tweaked from there.

Posted: **Thu Oct 26, 2006 2:16 am**

Just make sure it's not hidden... after all it is windas... <img>

I will email you a copy you can use if you like...
Mike

Posted: **Thu Oct 26, 2006 9:07 am**

That would be helpful.

Thank You.

Discussion moved to new thread in General Discussion: php.ini or lack thereof

Posted: **Wed Jan 03, 2007 2:26 am**

There seems to be an exploit for the kb_constants.php now
http://integramod.com/home/viewtopic.php?p=70059#70059

Posted: **Tue Jan 09, 2007 4:39 pm**

Hello Drop Forged. Is there anyway without copying another authors word for word, give us the run down here per chance? It seems as though I , not sure about others, have been banned from that site or something. Why I would be is beyond me, I dont have permission to view portal.php on that server.

Posted: **Tue Jan 09, 2007 6:58 pm**

That site's down for some reason.

Basically, the fix is to place...

Code: Select all: if ( !defined('IN_PHPBB') ){ die("Hacking attempt");}

...at the top of each file, after the comment section(the file info section at the top).

Do this to each includes/kb_****.php file.

Posted: **Tue Jan 09, 2007 9:10 pm**

thx Teelk. I be sure to do that all.

Posted: **Wed Jan 10, 2007 6:42 am**

DO NOT DO THESE EDITS I POST, IT IS MERELY A QUESTION

Do you mean to add this on kb_constants.php or all of them?

It wouldn't be

Code: Select all: if( !defined('IN_PHPBB') ) { die('Hacking attempt'); exit; }

In kb_constants.php

and

Code: Select all: if ( !defined( 'IN_PORTAL' ) ) { die( "Hacking attempt" ); }

In all others except kb_constants.php?

[b]Edit]Or I just thought of something else, wouldn't it be safest to do

Code: Select all: if( !defined('IN_PHPBB') ) { die('Hacking attempt'); exit; } else { if( !defined('IN_PORTAL') ) { die('Hacking attempt'); exit; } }

?

Or maybe I should stick to what I'm decent at lol

Posted: **Wed Jan 10, 2007 2:48 pm**

The Knowledge Base MOD was designed to work with both phpBB and mxBB portal. The definition IN_PORTAL isn't used in phpBB or IM, so it is completely ignored. Placing if( !defined('IN_PHPBB') ) code at the start of the file is enough.

I'd do it to all the includes/kb_****.php files, since none of them have that code.

IntegraMOD

Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)

Re: Recent Hacking Discussion (continued...)