Moderator: Integra Moderator
"Texas-Racer" wrote:I am having problems with cracker tracker going off on different occasions. I have been reading the bug fixes, and to be totally honest I can't find anything that everyone talks about changing in those post. Debug is on, I can't find the c tracker engines, I can't find anything you all talk about modifying. No one can register on my site right now. I go in to the admin panel to look at stuff and the dang cracker tracker goes off. I'm lost I don't have a clue and I'm frustrated/pissed off. I need a step by step by step guide and I can't find anything. I just need a guide that explains things better so I can learn it.
define('CT_DEBUG_MODE', false);
define('CT_DEBUG_MODE', true);
#
#-----[ OPEN ]------------------------------------------
#
/forum/admin/admin_forums_extend.php
#
#-----[ FIND ]------------------------------------------
#
include($phpbb_root_path . 'common.'.$phpEx);
#
#-----[ BEFORE, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignorepvar = array('desc');
#
#-----[ SAVE/CLOSE ALL FILES ]------------------------------------------
#
# EoM
define('CT_SECLEVEL', 'MEDIUM');
define('CT_SECLEVEL', 'LOW');
define('CT_DEBUG_MODE', false);
define('CT_SECLEVEL', 'LOW');
$ct_ignorepvar = array('desc');
define('IN_PHPBB', 1);
define('CT_SECLEVEL', 'LOW');
$ct_ignorepvar = array('create','delete','name','icon','desc');
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Script-Filename: /admin/admin_phpbbmyadmin.php
----------------
Attack-Time: 02.04.2011 8:10 am
------------
Request-Method: GET
Matching rule: _php
In variable: tablename
Possible solution:
------------------
#
#-----[ OPEN ]------------------------------------------
#
/admin/admin_phpbbmyadmin.php
#
#-----[ FIND ]------------------------------------------
#
require('./pagestart.' . $phpEx);
#
#-----[ BEFORE, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignoregvar = array('tablename');
#
#-----[ SAVE/CLOSE ALL FILES ]------------------------------------------
#
# EoM
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Script-Filename: /profile.php
----------------
Attack-Time: 02.04.2011 8:16 am
------------
Request-Method: POST
Matching rule: '
In variable: phpBBSecurity_answer
Possible solution:
------------------
#
#-----[ OPEN ]------------------------------------------
#
/profile.php
#
#-----[ FIND ]------------------------------------------
#
include($phpbb_root_path . 'common.'.$phpEx);
#
#-----[ BEFORE, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignorepvar = array('phpBBSecurity_answer');
#
#-----[ SAVE/CLOSE ALL FILES ]------------------------------------------
#
# EoM
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Script-Filename: /profile.php
----------------
Attack-Time: 02.04.2011 8:16 am
------------
Request-Method: POST
Matching rule: '
In variable: phpBBSecurity_answer
Possible solution:
------------------
#
#-----[ OPEN ]------------------------------------------
#
/profile.php
#
#-----[ FIND ]------------------------------------------
#
include($phpbb_root_path . 'common.'.$phpEx);
#
#-----[ BEFORE, ADD ]------------------------------------------
#
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignorepvar = array('phpBBSecurity_answer');
#
#-----[ SAVE/CLOSE ALL FILES ]------------------------------------------
#
# EoM
<?php
/***************************************************************************
* profile.php
* -----------
* begin : 08/05/2003
* copyright : Ptirhiik
* email : <a>admin@rpgnet-fr.com</a>
*
* version : 1.0.9 - 17/10/2003
*
***************************************************************************/
define('IN_PHPBB', true);
define('CT_SECLEVEL', 'MEDIUM');
$ct_ignorepvar = array('helpbox','delete','deleteall','phpBBSecurity_question','user_interests');
if ( (isset($HTTP_GET_VARS['mode']) && ($HTTP_GET_VARS['mode'] == 'viewprofile')) || (isset($HTTP_POST_VARS['mode']) && ($HTTP_POST_VARS['mode'] == 'viewprofile')) )
{
define('IN_CASHMOD', true);
define('CM_VIEWPROFILE',true);
}
$phpbb_root_path = './';
include($phpbb_root_path . 'extension.inc');
include($phpbb_root_path . 'common.'.$phpEx);
include($phpbb_root_path . 'profilcp/functions_profile.'.$phpEx);
include($phpbb_root_path . 'includes/functions_selects.'.$phpEx);
include($phpbb_root_path . 'includes/functions_validate.'.$phpEx);
include($phpbb_root_path . 'includes/functions_post.'.$phpEx);
include($phpbb_root_path . 'includes/bbcode.'.$phpEx);
include($phpbb_root_path . 'includes/emailer.'.$phpEx);
include_once($phpbb_root_path . 'includes/functions_topics_list.' . $phpEx);
<?php
/***************************************************************************
* admin_phpbbmyadmin.php
* -------------------
* copyright : (C) 2003, 2004 Armin Altorffer
* email : [url=http://www.phpmyadmin.net]http://www.phpmyadmin.net[/url])
* Nor does the author of this product offer support for phpMyAdmin.
* For support on phpMyAdmin or for phpMyAdmin itself, visit [url=http://www.phpmyadmin.net]http://www.phpmyadmin.net[/url]
*
***************************************************************************/
define('IN_PHPBB', 1);
define('CT_SECLEVEL', 'LOW');
if (!empty($setmodules))
{
$file = append_sid(basename(__FILE__));
$module['General'][' phpBBMyAdmin'] = $file;
return;
}
//
// Let's set the root dir for phpBB
//
$phpbb_root_path = "./../";
require($phpbb_root_path . 'extension.inc');
require('./pagestart.' . $phpEx);
include($phpbb_root_path . 'language/lang_' . $board_config['default_lang'] . '/lang_phpbbmyadmin.' . $phpEx);
// Main Admin or not?
if ($userdata['user_id'] != 200)
{
exit();
}
// Going the powerful way here, using $file in links and not a literal text:
$file = append_sid(basename(__FILE__));
// Define the template file to use:
$template->set_filenames(array(
'body' => 'admin/phpbbmyadmin.tpl')
);
$ct_ignorepvar = array('helpbox','delete','deleteall','phpBBSecurity_question','user_interests');
$ct_ignorepvar = array('helpbox','delete','deleteall','phpBBSecurity_question','user_interests','phpBBSecurity_answer');
define('CT_SECLEVEL', 'MEDIUM');
"Texas-Racer" wrote:I used FileZilla to make the changes, went to the forum and checked it out, saw what happened and changed the files back to original 10 minutes later. I put everything back exactly like it was and I still have the problem. I saved copies of them unedited so I could change them back in case I goofed up, they are identical to what they was.
"Texas-Racer" wrote:Since doing it that way I learned to download the file to my computer (saved as PHP) and also to upload it back to the forum root.
Since it did save everything I did as PHP on the forum root, could it still have changed something since it was opened in text document?
Registered users: App360MonitorBot, Bing [Bot], Google [Bot]