Bad Behavior for SMF mod

Started by butchs, April 12, 2010, 05:23:56 PM

Previous topic - Next topic

butchs

It is recommended that you completely uninstall this mod before applying the new "SMF 2.0 RC4 Security Patch".  You can reinstall the mod afterwards.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

butchs

New version, BB 2.1.11 support, works behind reverse proxies, "Search Engine DNS" check box, lots of changes and SMF 1.1.13 compatibility.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

Lou69

Looking at the download page for this mod, I see that it does not parse for the 2.0 RC4 + Security Patch but will parse for the RC 5. Is this indeed a fact or just an oversite showing the RC 4 + SP is not parsable?

thanks

butchs

I have the security patch and it installs just fine on my server.

But if you experience this go to "Admin/Package Manager/Browse Packages".  Click "Advanced Options" and confirm that "Emulate Version" is "SMF 2.0 RC4".
8)
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

Lou69

Thanks butchs, I will give it a go. If it worked for you then I am certain it shall work for me.

By the way, a 'thumbs up' on this mod and your ForumFirewall. The bad actors are being deflected by the bucket load.

thanks,

Lou

packman

Every few hours I get this error logged...

QuoteDatabase Error: No database selected
File: /home/mydomain.com/public_html/smf/Sources/bad-behavior/BadBehavior-SMF.php
Line: 74

The errors correspond to 'users' hitting the httpBL warning.php file if that's significant.
Chris

ac19189

Having an issue with the mod I think when I turn it on I get the following error at the bottom of all pages. Any idea how I fix it?

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '}log_badbehavior AS bb
WHERE id >= 0' at line 2
File: /home/xxx/public_html/xxx/Forums/Sources/bad-behavior/BadBehavior-SMF.php
Line: 496

Note: It appears that your database may require an upgrade. Your forum's files are currently at version SMF 1.1.13, while your database is at version 1.1.5. The above error might possibly go away if you execute the latest version of upgrade.php.

hardcore_f

Badb.  ver 1.4

When clicking on the  "key" col  in the denied records I get  a 404 error, is this correct?

DENIED
#17566707tuy

butchs

Quote from: hardcore_f on February 21, 2011, 05:54:13 PM
Badb.  ver 1.4

When clicking on the  "key" col  in the denied records I get  a 404 error, is this correct?

DENIED
#17566707tuy

You should not get any errors as long as you are logged in as the admin.  Seems you logged out or your session expired.

17566707 means and invalid request was received from your browser. This may be caused by a malfunctioning proxy server or browser privacy software.  Required header \'Accept\' missing'.

I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

butchs

Quote from: packman on February 21, 2011, 02:31:59 AM
Every few hours I get this error logged...

QuoteDatabase Error: No database selected
File: /home/mydomain.com/public_html/smf/Sources/bad-behavior/BadBehavior-SMF.php
Line: 74
The errors correspond to 'users' hitting the httpBL warning.php file if that's significant.

Odd, I have used both with no issues.  But I use SMF 2.0.  I need to get more info so I can find out what is going on...  But for now I will blame my bud snoopy.   ;)
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

butchs

Quote from: ac19189 on February 21, 2011, 05:50:02 PM
Having an issue with the mod I think when I turn it on I get the following error at the bottom of all pages. Any idea how I fix it?

I believe I am working with you over at SMF helper.  Lets do it in one place to keep things neat.  I am going to do what I can do to help you but please be patient with me because I have little time during the week to support my mods.  But is seems you have more of a forum installation issue and those SMF Helper guys are better than me with that stuff...
8)
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

busterone

butchs, I have an odd situation with B.B. and httpBL. It is a test forum that I have allowed bots into just to test B.B., so it is not an urgent issue.  I have a denied entry for an IP that I can confirm is a bad bot, but it seems to be a minor conflict with httpBL. My log shows that IP being caught by httpBL at 10:11:30, and the B.B. logs that it denied the IP at 10:11:32 from going to warning.php, which of course is where httpBL had just redirected it. It is not an issue to me, the bot was stopped, but I am wondering if this has been seen before, or am I the first?

butchs

New version posted today.  It only contains changes for SMF 1.1.x.  SMF 2.0 RCx users need not upgrade.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

butchs

Quote from: busterone on February 22, 2011, 05:49:21 PM
butchs, I have an odd situation with B.B. and httpBL. It is a test forum that I have allowed bots into just to test B.B., so it is not an urgent issue.  I have a denied entry for an IP that I can confirm is a bad bot, but it seems to be a minor conflict with httpBL. My log shows that IP being caught by httpBL at 10:11:30, and the B.B. logs that it denied the IP at 10:11:32 from going to warning.php, which of course is where httpBL had just redirected it. It is not an issue to me, the bot was stopped, but I am wondering if this has been seen before, or am I the first?

Sounds like snoopy is not ending php properly even after I told him how to do it several times.  He never listens to me...   :'(

Try this:

Search "warning.php" for "?>" and replace it with
"die();
?>".

That should force httpbl to stop further activity.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

busterone


butchs

Quote from: busterone on February 22, 2011, 07:25:15 PM
Done. Will watch and see. Thanks.   :)

If I am correct, you get ot tell snoopy he goofed again.  If I told him, he will stalk me for a week.   :o
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

busterone


butchs

Hah...  My site just proved that bots can pass thru httpbl unblocked!  Httpbl loads before BB so if a bot was stopped it would not reach BB.  A bot hit warning php but then then was blocked by BB.   8)

BB does have project honey pot capabilities, though not as good as httpbl but it does stop the bot.  BB author insisted that I retain all the capabilities.  So if you can not wait for snoopy to fix his code go to phpmyadmin in the "settings" DB entry and populate the following:

badbehavior_httpbl_key
badbehavior_httpbl_threat
badbehavior_httpbl_maxage
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

busterone

Since this is on a test forum, I populated the db to see what happens.   :)   

packman

Quote from: butchs on February 22, 2011, 07:40:39 PM
badbehavior_httpbl_key
badbehavior_httpbl_threat
badbehavior_httpbl_maxage

httbl_key is obvious, but the other two values aren't quite so obvious? The httpBL mod has two threat values and three values that might correspond to maxage, or maybe your values mean something completely different?
Chris

Advertisement: