Gossamer Forum
Home : Products : Links 2.0 : Discussions :

I found out how I managed to get 'hacked' !

Quote Reply
I found out how I managed to get 'hacked' !
Hi all,

I'm one of the many people who cannot add password protection to my cgi-bin directory for links and in the past have had various problems with people validating records in an adult/unsuitable way.

As a fix to the problem I found that if I rename the admin script when not in use I don't have any unauthorised access, but until today I couldn't figure out how people were finding the admin script in the first place.

I found out how because on validating a record I got the following error from the server that was supposed to be hosting the submitted site:

HTTP Referrer: http://www.qango.com/cgi-local/amdinscriptname?db=links&validate_form=1

Now this obviously gets recorded in some people's stats/logs and in the past people have been curious and tested the URL, found my admin script, and had some 'fun' with it (not so fun for me to have to explain to people why their link reads like an adult porn link Frown).

Now although I rename the admin script now so as to invalidate requests to the 'proper' name I was wondering if there is a way to stop links leaving this info behind when I'm validating records?


All the best
Shaun

------------------
Shaun Hague
Webmaster - Qango.com
www.qango.com/central/

[This message has been edited by qango (edited February 06, 2000).]
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Renaming the admin script is not a smart thing to do, because you have to constantly edit the links.cfg file.

THERE IS A PASSWORD ADMIN MOD IN THE MODIFICATION FORUM! SEARCH IT! USE IT!

Regards,

------------------
Eliot Lee
Anthro TECH,L.L.C
www.anthrotech.com
* Be sure to visit the Resource Center for FAQ's, Modifications and Extra Goodies!!
* Search Forums!
* Say NO to Duplicate Threads. :)
----------------------








Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Eliot,

Firstly I don't have to edit my links.cfg file at all, I simply rename THE ADMIN SCRIPT FILENAME to something different (the whole point being that when someone checks their server logs they find the 'true' filename to my admin script and I don't want them using it!) - when I want to validate records, etc I temporarily change the filename back to the correct one referred to in links.cfg!

Secondly I jumped for joy when I saw the Password Admin Mod in the 'Mods' section of the links support directory as it would have solved all my problems, but unfortunately the link is broken so I can't get the mod.

So its still a valid question - "Do you know if there is a way to stop the validate link reffering to the admin script?"


All the best
Shaun
------------------
Shaun Hague
Webmaster - Qango.com
www.qango.com/central/

[This message has been edited by qango (edited February 06, 2000).]
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Hi there,

There are plenty of password scripts about.

try searching at http://www.cgi-resources.com



------------------
Regards
MDJ
http://www.isee-multimedia.co.uk
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Did you look for the ADMIN MOD in the Modification Forum as I suggested or did you just look in the Resource Center????????????????????????????

Regards,

------------------
Eliot Lee
Anthro TECH,L.L.C
www.anthrotech.com
* Be sure to visit the Resource Center for FAQ's, Modifications and Extra Goodies!!
* Search Forums!
* Say NO to Duplicate Threads. :)
----------------------








Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
I looked in the Resource Centre - has someone posted a mod in the Modifications Forum?

I hadn't look there (silly me) I'll go an look now Smile

I assume that will add the password protection INTO the admin script itself?

... I'll have a look and see ...

All the best
Shaun

------------------
Shaun Hague
Webmaster - Qango.com
http://www.qango.com/central/
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Uh...the Mod is LOCATED in the MODIFICATION FORUM! NOT in the Resource Center!

Wink

Regards,

------------------
Eliot Lee
Anthro TECH,L.L.C
www.anthrotech.com
* Be sure to visit the Resource Center for FAQ's, Modifications and Extra Goodies!!
* Search Forums!
* Say NO to Duplicate Threads. :)
----------------------








Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Eliot, I looked in the Modification forum and did several searches but couldn't find the thread you mentioned - although I do recall reading it myself !!

Is there a technique you have for using the search tool, because all I got was zillions of threads from people ASKING about the password protection who'd just installed links?

I tried looking at the thread names, but got no clues there either.

This one time would you mind pointing me to the URL for the thread where this is being discussed - THANKS Smile


All the best
Shaun

------------------
Shaun Hague
Webmaster - Qango.com
http://www.qango.com/central/
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
GO HERE:

http://www.gossamer-threads.com/scripts/forum/resources/Forum3/HTML/004702.html

AND HERE:

http://www.gossamer-threads.com/scripts/forum/resources/Forum3/HTML/002427.html


Geez...I don't understand why so many people cannot find relevant
Threads! I know that the UBB search engine is NOT the best, but
I have very few problems finding relevant Threads!

Regards,

------------------
Eliot Lee
Anthro TECH,L.L.C
www.anthrotech.com
* Be sure to visit the Resource Center for FAQ's, Modifications and Extra Goodies!!
* Search Forums!
* Say NO to Duplicate Threads. :)
----------------------








Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
Eliot, thanks for the quick reply but neither of those threads are realted to adding password protection into the admin script itself.

I'll trawl through the latest posts in the Mods Forum instead - thanks anyway.

... did that ...

and here it is:

http://www.gossamer-threads.com/...um3/HTML/004698.html

All the best
Shaun

------------------
Shaun Hague
Webmaster - Qango.com
www.qango.com/central/

[This message has been edited by qango (edited February 07, 2000).]
Quote Reply
Re: I found out how I managed to get 'hacked' ! In reply to
UH...The second one provides codes for protecting the admin.cgi if you had read it carefully.

Regards,

------------------
Eliot Lee
Anthro TECH,L.L.C
www.anthrotech.com
* Be sure to visit the Resource Center for FAQ's, Modifications and Extra Goodies!!
* Search Forums!
* Say NO to Duplicate Threads. :)
----------------------