#49811
04/29/2002 12:14 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
Hi gang,
Sorry if this is the wrong place for this, but wasn't sure where to put it.
We are running UBB 6.04f with the last WOL (v4.0 I think), and recently have been noticing in the WOL list, "Guest #1 viewing (Private Discussion) in Administrators". A guest viewing a private forum.
I traced the IP and found out that it was a web-crawler. My question is, how can this be?? Is this normal or have I done something wrong, or is there a known bug in WOL, or what??
Any input greatly appreciated!
Cheers,
Chris
|
|
|
#49812
04/29/2002 12:17 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
Ahhh... ok, now check this out.
I remove the cookies from my system, and paste the URL to a specific thread in the private forum into a browser and hit GO, and Viola! I am taken there as a guest!
This must be a bug in the private forum code. Has anyone experienced this??
|
|
|
#49813
04/30/2002 2:17 AM
|
Joined: May 2001
Posts: 6,708
Member
|
Member
Joined: May 2001
Posts: 6,708 |
Do you have Hidden Private Forum hack installed? Could be that.
|
|
|
#49814
04/30/2002 12:05 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
No, I don't.
Charles Capps said he thought there were some security issues cleared up from either 6.03 or 6.04 but couldn't remember which. Suggested we upgrade to 6.3, which we would love to do but $$ do not permit.
|
|
|
#49815
05/01/2002 2:05 AM
|
Joined: May 2001
Posts: 6,708
Member
|
Member
Joined: May 2001
Posts: 6,708 |
Hmm, maybe the permissions don't say no guests. I really don't have any idea. Maybe this was fixed in 6.05. Ask CC is it was a IP issue.
|
|
|
#49816
05/08/2002 6:20 PM
|
Joined: Apr 2001
Posts: 13
Junior Member
|
Junior Member
Joined: Apr 2001
Posts: 13 |
We had the same concern raised but it is unfounded, the 'guest' is logging on the forum and seeing the message sorry you cannot access this restricted area, use your browsers back arrow to go back, and the 'guest' visit is recorded. They cannot see the details of any messages posted, but they do get ot the private forum entry point, to be greeted with the above.
|
|
|
#49817
05/09/2002 1:07 AM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
Interesting... haven't tested that, but I do know that the guest is a web-crawler.
Thanks for the info!
|
|
|
#49818
05/11/2002 11:29 AM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
Nope... sorry air-borg. I did a test with a Guest user and they got the access denied page but WOL still shows them viewing the Main Page not reading a private topic.
Thanks for the idea though!
|
|
|
#49819
05/11/2002 12:09 PM
|
Joined: Feb 2001
Posts: 817
Moderator / Kingpin
|
Moderator / Kingpin
Joined: Feb 2001
Posts: 817 |
quote: Originally posted by Raconteur: No, I don't.
Charles Capps said he thought there were some security issues cleared up from either 6.03 or 6.04 but couldn't remember which. Suggested we upgrade to 6.3, which we would love to do but $$ do not permit.
Just another word of warning and advice; back up your community regularly if you are going to keep on using 6.04f. There are several known exploits in the early 6.x releases that could allow someone to get control of your admin accounts. Once they do so they could easily delete all your forums/posts/members. Also make sure your FTP password is unique and is not used on any of your admin accounts since someone could try FTPing to the server if they should compromise them.
My best advice to you is try to raise some money and upgrade that board. Wash cars if you have to.
|
|
|
#49820
05/11/2002 5:59 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
Heh! Thanks Steve. Not just the money but also the litany of hacks and mods to incorporate...
|
|
|
#49821
05/11/2002 8:41 PM
|
Joined: May 2001
Posts: 6,708
Member
|
Member
Joined: May 2001
Posts: 6,708 |
It's better to be safe though. You never know what could happen...
|
|
|
#49822
05/11/2002 8:44 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
I agree, LD. Is there a place that I can check the hacks I have installed versus the features of 6.2.x? Maybe get an idea of how much work is going be needed to migrate?
|
|
|
#49823
05/11/2002 8:51 PM
|
Joined: May 2001
Posts: 6,708
Member
|
Member
Joined: May 2001
Posts: 6,708 |
You won't be able to port your hacks from 6.04 to 6.2 or 6.3.
What do you mean "check your hacks against?" You'll just have to remember what hacks you installed.
|
|
|
#49824
05/11/2002 9:00 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
No, what I mean is is there a list of major hacks that are now standard features in the newer versions? Like WOL is incorporated as "Recent Visitors".
|
|
|
#49825
05/11/2002 10:51 PM
|
Joined: May 2001
Posts: 6,708
Member
|
Member
Joined: May 2001
Posts: 6,708 |
Polls are in as Polls of course. User Titles Avatars Custom Titles (Both together is kinda like Custom Status/Rank hack)
Thats all I can remember.
|
|
|
#49826
05/11/2002 11:25 PM
|
Joined: Jun 2001
Posts: 165
Content King
|
Content King
Joined: Jun 2001
Posts: 165 |
|
|
|
Donate to UBBDev today to help aid in Operational, Server and Script Maintenance, and Development costs.
Please also see our parent organization VNC Web Services if you're in the need of a new UBB.threads Install or Upgrade, Site/Server Migrations, or Security and Coding Services.
|
|
Posts: 5,833
Joined: January 2000
|
|
Forums63
Topics37,573
Posts293,925
Members13,849
|
Most Online5,166 Sep 15th, 2019
|
|
Currently Online
Topics Created
Posts Made
Users Online
Birthdays
|
|
|
|