2008-06-01, 01:02 AM
Pages: 1 2
2008-06-01, 01:37 AM
You can hide from the spam! EVAR!!! LoL.
2008-06-01, 01:39 AM
Quote:we have an intrusion detection system that logs all suspicious looking requests
Holding out on us?
2008-06-01, 01:41 AM
labrocca Wrote:Quote:we have an intrusion detection system that logs all suspicious looking requests
Holding out on us?
The script is internal use only.
2008-06-01, 03:21 AM
Ahh..so you admit the holding out! OMG you suck...you're terrible. lol...you know I am kidding. Well maybe you guys can at least tell us the logic in case we can reproduce it. Something like that could be very useful. Is it run as a plugin? Server script? Modification to core mybb files? Hints to how it's done would be helpful.
And btw...does this mean I shouldn't try SQL injection here even as a test?
And btw...does this mean I shouldn't try SQL injection here even as a test?
2008-06-01, 03:51 AM
Can't you configure ModSecurity to do something like that? I'm getting a crapload of "warnings" in my logs about policy violations and they are only coming from my sites running MyBB.
2008-06-01, 04:14 AM
labrocca Wrote:Ahh..so you admit the holding out! OMG you suck...you're terrible. lol...you know I am kidding. Well maybe you guys can at least tell us the logic in case we can reproduce it. Something like that could be very useful. Is it run as a plugin? Server script? Modification to core mybb files? Hints to how it's done would be helpful.
And btw...does this mean I shouldn't try SQL injection here even as a test?
It's an external app written in binary that is setup as a service on the server and run in conjunction with apache. Chris had to make modifications to apache so it's not exactly easy to install.
Pages: 1 2