• Welcome to Simple Machines Community Forum. Please login or sign up.
October 17, 2021, 10:59:03 PM

News:

Follow SMF on Twitter.


Forum Firewall

Started by butchs, January 15, 2011, 11:00:37 AM

Previous topic - Next topic

butchs

Quote from: THE BRA1N on January 15, 2011, 03:31:21 PM
Installed it on RC3 and getting a blank page for Forum Firewall settings on all themes.

It is made for the default theme so if you have a custom theme that may be the issue.  Otherwise I need more info...   :-[

Quote from: busterone on January 15, 2011, 04:16:16 PM
OK, installed on a small test forum and all is well. I do have a question about one feature.
If I install it on my main site, we have more than one admin. If I enable Admin IP Confirmation, will it block out the other admins if I input mine, or can I input multiple comma separated IPs ?

It will block them if they have different internet providers.  Something to look at for future versions...   :'(

FYI - I recommend that this mod is run in logging mode for a few days and make adjustments before turning on blocking mode.  I recommend this just to make sure you do not block your members.  8)

Quote from: K@ on January 15, 2011, 05:13:58 PM
* K@ is confused...

"By downloading and/or using this MOD you agree to adhere to the following conditions for all versions of the Bad Behavior mod:"

Is that a typo?
:P
Quote from: JBlaze on January 15, 2011, 05:41:06 PM
If I'm not mistaken, it includes the Bad Behavior mod, thus the reason for having to agree to its terms as well.

It was a typo...  BB is a separate mod.   :o

Quote from: DoctorMalboro on January 15, 2011, 06:10:49 PM
How many resources does this mod consume... let's say monthly?

Not sure what you mean by that question.   :-X

But the mod is coded with speed and memory conservation in mind.  :laugh:

I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

busterone

Quote from: butchs on January 15, 2011, 09:45:56 PM
It will block them if they have different internet providers.  Something to look at for future versions...   :'(

FYI - I recommend that this mod is run in logging mode for a few days and make adjustments before turning on blocking mode.  I recommend this just to make sure you do not block your members.  8)
Ok, yep, that is an idea for future development. For now, once I install it on the live site and do eventually set it for blocking mode, I will leave the Admin IP Confirmation turned off. 
Thanks.  :)

Kindred

Yup... Just before approval, I bumped into a problem backed on a forum that ha been upgraded since yabb and thus has some odd artifacts in database data.  Looking forward to th update to fix it. :)
Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

Bigguy

Congrats Butchs, glad to see it approved. Works great on my forum and has for awhile now. :)

henrik1782

Hi Butch....

Thanks for a nice mod. Mods that extend security is always appreciated.

I have the Enotify mod installed and get a lot of error messages regarding this mod.

Bypass attempt!
for /index.php?PHPSESSID=7d31a4b254d2f144b620a4bacdb65264&action=enotify

Bypass attempt!
for /index.php?topic=287.msg590


Is this something in the configuration of your mod or something else....?
My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

butchs

Thanks Bigguy.

Quote from: Kindred on January 15, 2011, 10:02:16 PM
Yup... Just before approval, I bumped into a problem backed on a forum that ha been upgraded since yabb and thus has some odd artifacts in database data.  Looking forward to th update to fix it. :)

I wrote something I think will work yesterday but I still have to test it...  I usually run it a week live before publishing.  If you like, I can email you a copy and you can see if it works?
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

butchs

Quote from: henrik1782 on January 16, 2011, 07:36:32 AM
Hi Butch....

Thanks for a nice mod. Mods that extend security is always appreciated.

I have the Enotify mod installed and get a lot of error messages regarding this mod.

Bypass attempt!
for /index.php?PHPSESSID=7d31a4b254d2f144b620a4bacdb65264&action=enotify

Bypass attempt!
for /index.php?topic=287.msg590


Is this something in the configuration of your mod or something else....?

If you are not behind a proxy then uncheck "Enable Bypass Protection".  If you are you need to fix the information.  ie read "Admin Domain Name" for details.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

henrik1782

My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

DoctorMalboro

Quote from: butchs on January 15, 2011, 09:45:56 PM
Quote from: DoctorMalboro on January 15, 2011, 06:10:49 PMHow many resources does this mod consume... let's say monthly?
Not sure what you mean by that question.   :-X

But the mod is coded with speed and memory conservation in mind.  :laugh:

I mean if it does too many queries to the database... you know, some mods can be heavy and eat a lot of resources... that's what i'm asking.

Kindred

hey butchs,

Give it a day or two to confirm on your test site and then send it to me. I'll validate for you before you update the whole package (hopefully it's just a file overwrite instead of a mod re-install?) :)
Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

henrik1782

Hi Butch...

When mailing warrents like

Invalid ip!
for /index.php?action=login2

i would be much appreciated if the IP address was mentioned to.

This mod works great and captures some of the intruders that are not covered by Honeypot and Spammer mod.

Best regards.
My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

henrik1782

Hi Butch...

I have to ask and hopefully more will learn from it  ;)

What does this warning mean:

Hack:  Redirect!
for /index.php?wwwRedirect

Hack:  Repeated!
for /index.php?action=enotify


Best regards
Henrik Poulsen
My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

NanoSector

Quote from: henrik1782 on January 16, 2011, 11:24:33 AM
Hi Butch...

I have to ask and hopefully more will learn from it  ;)

What does this warning mean:

Hack:  Redirect!
for /index.php?wwwRedirect

Hack:  Repeated!
for /index.php?action=enotify


Best regards
Henrik Poulsen
That's normal.

The ?wwwRedirect is because the forum needed to get www. before the actual address.

The ?action=enotify is also nothing to worry about since eNotify needs to load from it.
My Mods / Mod Builder - A tool to easily create mods / Blog
"I've heard from a reliable source that the Answer is 42. But, still no word on what the question is."

henrik1782

My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

NanoSector

My Mods / Mod Builder - A tool to easily create mods / Blog
"I've heard from a reliable source that the Answer is 42. But, still no word on what the question is."

butchs

Impostor.   ;D Some want it some do not but if you remove "Redirect|" from the xss and injection list it will go away.  Remember to leave one "|" between each phrase.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

henrik1782

Sorry...  ;)

Thanks goes to Simple Series team

Best regards

My favorite mods: Forum Firewall, httBL, MessagePreviewOnHover, BoardHover Mod, VB Style Board Index, Separate Replies and Views Column, Realtime clock by Joker, ENotify, Topic Solved.

butchs

Quote from: Kindred on January 16, 2011, 10:08:08 AM
hey butchs,

Give it a day or two to confirm on your test site and then send it to me. I'll validate for you before you update the whole package (hopefully it's just a file overwrite instead of a mod re-install?) :)

Sorry but you will need to uninstall and reinstall the new mod version.  But not a DB uninstall.

Please PM me your email.
I have been truly inspired by the SUGGESTIONS as I sit on my throne and contemplate the wisdom imposed upon me.

Bancherd

Interesting mod  :), I will give it a spin.

THE BRA1N

Quote from: butchs on January 15, 2011, 09:45:56 PM
Quote from: THE BRA1N on January 15, 2011, 03:31:21 PM
Installed it on RC3 and getting a blank page for Forum Firewall settings on all themes.

It is made for the default theme so if you have a custom theme that may be the issue.  Otherwise I need more info...   :-[


Well, I get a blank white page with the default theme instead of a firewall settings page. There were no conflicts when installing with package installer. No error in the error log about it so I don't know where to start looking. What sort of info do you need?


Advertisement: