logo

NPDS : Gestion de contenu et de communauté

Content & Community Management System (CCMS) robuste, sécurisé, complet, performant, parlant vraiment français, libre (Open-Source) et gratuit.
20 visiteur(s) et 0 membre(s) en ligne.
Plus de contenu
Autres infos
Anciens articles
Activité du Site

Pages vues depuis 25/05/2001 : 109 382 484

  • Nb. de membres 8 696
  • Nb. d'articles 1 695
  • Nb. de forums 26
  • Nb. de sujets 8
  • Nb. de critiques 92

Top 10  Statistiques

Mémoire d'outre Web

Index du forum »»  Sécurité »» Piratage dans le forum

Nouveau sujet
 Piratage dans le forum#22834Répondre

19Contributeur(s)
PhilGuendeveloppeurAnonymefabinoboulBoriscanassonJireckabballeloup31mrottaaidadomicilkillingleclub666lopezxgoninGiamDocfliaigrejacma
3 Modérateur(s)
developpeurjpbJireck
xgonin xgoninicon_post
Rebelote aujourd'hui...

si c'est pas la même technique dans ce cas, c'est quoi alors ? :-?
04/10/2007 07:01
Répondre
Jireck Jireckicon_post
Citation : xgonin

Rebelote aujourd'hui...

si c'est pas la même technique dans ce cas, c'est quoi alors ? :-?

c'est un forum reservé au membres ???

c'est pas la meme chose puisqu'il utilise le compte anonyme ...
04/10/2007 08:05
Répondre
xgonin xgoninicon_post
non c'est un forum tout public, avec saisie de code antispam....
donc soit c'est un petit con qui écrit son post, soit c'est un robot qui trouve le bon code ???

et que faire dans ce cas là ?
04/10/2007 09:07
Répondre
GiamDoc GiamDocicon_post
analyse tes logs pour voir la façon dont il procède
vu que tu as l'ip , c'est facile a retrouver
04/10/2007 11:57
Répondre
xgonin xgoninicon_post
??? les logs de mon serveur... ?
Pas assez complet chez infomaniak...
04/10/2007 12:18
Répondre
GiamDoc GiamDocicon_post
Citation : xgonin 

??? les logs de mon serveur... ? voui
Pas assez complet chez infomaniak...  ah? ben j'croyais que c'était le top c't'hébergeur
04/10/2007 12:23
Répondre
xgonin xgoninicon_post
Parlé trop vite.... encore une fois, j'ai trouvé le log pour le dernier spam

voilou le log du dernier spam :
64.27.13.129 - - [04/Oct/2007:12:52:10 +0200] "GET /reply.php?topic=17&forum=41 HTTP/1.1" 200 58710 "-" "-"

04/10/2007 12:28
Répondre
Anonyme Anonymeicon_post
l'anti-spam a une faiblesse : les statistiques ... en gros il passera toujours un spam ou deux car il simule les calcul.

Le truc qu'il faut rajouter : limite du nombre d'url soumise dans un post
04/10/2007 22:55
Répondre
aidadomicil aidadomicilicon_post
RAS pour le moment :=!
15/10/2007 21:04
Répondre
lopez lopezicon_post
Cool çà semble efficace alors?
16/10/2007 20:27
Répondre
developpeur developpeuricon_post
bonne nouvelle
17/10/2007 13:35
Répondre
lopez lopezicon_post
Patch sécu ou pas Patch sécu Dev?
:-)
17/10/2007 22:27
Répondre
killing killingicon_post

Une solution serait peut être de filtrer aussi l'accès au site via le htaccess avec ça ou quelque chose du genre




RewriteEngine on

# Block Referrer Spam

# Drugs / Herbal

RewriteCond %{HTTP_REFERER} (sleep-?deprivation) [NC,OR]
RewriteCond %{HTTP_REFERER} (sleep-?disorders) [NC,OR]
RewriteCond %{HTTP_REFERER} (insomnia) [NC,OR]
RewriteCond %{HTTP_REFERER} (phentermine) [NC,OR]
RewriteCond %{HTTP_REFERER} (phentemine) [NC,OR]
RewriteCond %{HTTP_REFERER} (vicodin) [NC,OR]
RewriteCond %{HTTP_REFERER} (hydrocodone) [NC,OR]
RewriteCond %{HTTP_REFERER} (levitra) [NC,OR]
RewriteCond %{HTTP_REFERER} (hgh-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-hgh) [NC,OR]
RewriteCond %{HTTP_REFERER} (ultram-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-ultram) [NC,OR]
RewriteCond %{HTTP_REFERER} (cialis) [NC,OR]
RewriteCond %{HTTP_REFERER} (soma-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-soma) [NC,OR]
RewriteCond %{HTTP_REFERER} (diazepam) [NC,OR]
RewriteCond %{HTTP_REFERER} (gabapentin) [NC,OR]
RewriteCond %{HTTP_REFERER} (celebrex) [NC,OR]
RewriteCond %{HTTP_REFERER} (viagra) [NC,OR]
RewriteCond %{HTTP_REFERER} (fioricet) [NC,OR]
RewriteCond %{HTTP_REFERER} (ambien) [NC,OR]
RewriteCond %{HTTP_REFERER} (valium) [NC,OR]
RewriteCond %{HTTP_REFERER} (zoloft) [NC,OR]
RewriteCond %{HTTP_REFERER} (finasteride) [NC,OR]
RewriteCond %{HTTP_REFERER} (lamisil) [NC,OR]
RewriteCond %{HTTP_REFERER} (meridia) [NC,OR]
RewriteCond %{HTTP_REFERER} (allegra) [NC,OR]
RewriteCond %{HTTP_REFERER} (diflucan) [NC,OR]
RewriteCond %{HTTP_REFERER} (zovirax) [NC,OR]
RewriteCond %{HTTP_REFERER} (valtrex) [NC,OR]
RewriteCond %{HTTP_REFERER} (lipitor) [NC,OR]
RewriteCond %{HTTP_REFERER} (proscar) [NC,OR]
RewriteCond %{HTTP_REFERER} (acyclovir) [NC,OR]
RewriteCond %{HTTP_REFERER} (sildenafil) [NC,OR]
RewriteCond %{HTTP_REFERER} (tadalafil) [NC,OR]
RewriteCond %{HTTP_REFERER} (xenical) [NC,OR]
RewriteCond %{HTTP_REFERER} (melatonin) [NC,OR]
RewriteCond %{HTTP_REFERER} (xanax) [NC,OR]
RewriteCond %{HTTP_REFERER} (herbal) [NC,OR]
RewriteCond %{HTTP_REFERER} (drugs) [NC,OR]
RewriteCond %{HTTP_REFERER} (lortab) [NC,OR]
RewriteCond %{HTTP_REFERER} (adipex) [NC,OR]
RewriteCond %{HTTP_REFERER} (propecia) [NC,OR]
RewriteCond %{HTTP_REFERER} (carisoprodol) [NC,OR]
RewriteCond %{HTTP_REFERER} (tramadol) [NC]
RewriteRule .* - [F]

# Porn

RewriteCond %{HTTP_REFERER} (porno) [NC,OR]
RewriteCond %{HTTP_REFERER} (shemale) [NC,OR]
RewriteCond %{HTTP_REFERER} (gangbang) [NC,OR]
RewriteCond %{HTTP_REFERER} (-cock) [NC,OR]
RewriteCond %{HTTP_REFERER} (-anal) [NC,OR]
RewriteCond %{HTTP_REFERER} (-orgy) [NC,OR]
RewriteCond %{HTTP_REFERER} (cock-) [NC,OR]
RewriteCond %{HTTP_REFERER} (anal-) [NC,OR]
RewriteCond %{HTTP_REFERER} (orgy-) [NC,OR]
RewriteCond %{HTTP_REFERER} (singles-?christian) [NC,OR]
RewriteCond %{HTTP_REFERER} (dating-?christian) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumeating) [NC,OR]
RewriteCond %{HTTP_REFERER} (cream-?pies) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumsucking) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumswapping) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumfilled) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumdripping) [NC,OR]
RewriteCond %{HTTP_REFERER} (krankenversicherung) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumpussy) [NC,OR]
RewriteCond %{HTTP_REFERER} (suckingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (drippingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (pussycum) [NC,OR]
RewriteCond %{HTTP_REFERER} (swappingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (eatingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (cum-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-cum) [NC,OR]
RewriteCond %{HTTP_REFERER} (sperm) [NC,OR]
RewriteCond %{HTTP_REFERER} (christian-?dating) [NC,OR]
RewriteCond %{HTTP_REFERER} (jewish-?singles) [NC,OR]
RewriteCond %{HTTP_REFERER} (sex-?meetings) [NC,OR]
RewriteCond %{HTTP_REFERER} (swinging) [NC,OR]
RewriteCond %{HTTP_REFERER} (swingers) [NC,OR]
RewriteCond %{HTTP_REFERER} (personals) [NC,OR]
RewriteCond %{HTTP_REFERER} (sleeping) [NC,OR]
RewriteCond %{HTTP_REFERER} (libido) [NC,OR]
RewriteCond %{HTTP_REFERER} (grannies) [NC,OR]
RewriteCond %{HTTP_REFERER} (mature) [NC,OR]
RewriteCond %{HTTP_REFERER} (enhancement) [NC,OR]
RewriteCond %{HTTP_REFERER} (sexual) [NC,OR]
RewriteCond %{HTTP_REFERER} (gay-?teen) [NC,OR]
RewriteCond %{HTTP_REFERER} (teen-?chat) [NC,OR]
RewriteCond %{HTTP_REFERER} (gay-?chat) [NC,OR]
RewriteCond %{HTTP_REFERER} (adult-?finder) [NC,OR]
RewriteCond %{HTTP_REFERER} (adult-?friend) [NC,OR]
RewriteCond %{HTTP_REFERER} (friend-?finder) [NC,OR]
RewriteCond %{HTTP_REFERER} (friend-?adult) [NC,OR]
RewriteCond %{HTTP_REFERER} (finder-?adult) [NC,OR]
RewriteCond %{HTTP_REFERER} (finder-?friend) [NC,OR]
RewriteCond %{HTTP_REFERER} (discrete-?encounters) [NC,OR]
RewriteCond %{HTTP_REFERER} (cheating-?wives) [NC,OR]
RewriteCond %{HTTP_REFERER} (housewives) [NC,OR]
RewriteCond %{HTTP_REFERER} (-sex.) [NC,OR]
RewriteCond %{HTTP_REFERER} (xxx) [NC,OR]
RewriteCond %{HTTP_REFERER} (snowballing) [NC]
RewriteRule .* - [F]

# Weight

RewriteCond %{HTTP_REFERER} (fat-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-fat) [NC,OR]
RewriteCond %{HTTP_REFERER} (diet) [NC,OR]
RewriteCond %{HTTP_REFERER} (pills) [NC,OR]
RewriteCond %{HTTP_REFERER} (weight) [NC,OR]
RewriteCond %{HTTP_REFERER} (supplement) [NC]
RewriteRule .* - [F]

# Gambling

RewriteCond %{HTTP_REFERER} (texas-?hold-?em) [NC,OR]
RewriteCond %{HTTP_REFERER} (poker) [NC,OR]
RewriteCond %{HTTP_REFERER} (casino) [NC,OR]
RewriteCond %{HTTP_REFERER} (blackjack) [NC]
RewriteRule .* - [F]

# Loans / Finance

RewriteCond %{HTTP_REFERER} (mortgage) [NC,OR]
RewriteCond %{HTTP_REFERER} (refinancing) [NC,OR]
RewriteCond %{HTTP_REFERER} (cash-?advance) [NC,OR]
RewriteCond %{HTTP_REFERER} (cash-?money) [NC,OR]
RewriteCond %{HTTP_REFERER} (pay-?day) [NC]
RewriteRule .* - [F]

# User Agents

RewriteCond %{HTTP_USER_AGENT} (Program\ Shareware|Fetch\ API\ Request) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} (Microsoft\ URL\ Control) [NC]
RewriteRule .* - [F]

# Misc / Specific Sites

RewriteCond %{HTTP_REFERER} (netwasgroup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (nic4u.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (wear4u.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (foxmediasolutions.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (liveplanets.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (aeterna-tech.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (continentaltirebowl.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (chemsymphony.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (infolibria.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (globaleducationeurope.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (soma.125mb.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (mitglied.lycos.de) [NC,OR]
RewriteCond %{HTTP_REFERER} (foxmediasolutions.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (jroundup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (feathersandfurvanlines.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (conecrusher.org) [NC,OR]
RewriteCond %{HTTP_REFERER} (sbj-broadcasting.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (edthompson.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (codychesnutt.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (artsmallforsenate.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (axionfootwear.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (protzonbeer.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (candiria.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (bigsitecity.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (coresat.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (istarthere.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (amateurvoetbal.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (alleghanyeda.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (xadulthosting.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (datashaping.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (zick.biz) [NC,OR]
RewriteCond %{HTTP_REFERER} (newprinceton.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (dvdsqueeze.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (xopy.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (webdevboard.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (devaddict.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (eaton-inc.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (whiteguysgroup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (guestbookz.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (webdevsquare.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (indfx.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (snap.to) [NC,OR]
RewriteCond %{HTTP_REFERER} (2y.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (astromagia.info) [NC,OR]
RewriteCond %{HTTP_REFERER} (jixx.de) [NC,OR]
RewriteCond %{HTTP_REFERER} (free-?sms) [NC]
RewriteRule .* - [F]



24/10/2007 15:38
Répondre
aidadomicil aidadomicilicon_post
hello, moi j'ai mis ça, mais ça n'a pas l'air de fonctionner, j'en trouve dans les référents ...


order deny,allow
deny from mail
deny from srv01.launchworld.com
deny from nodomaintransfer
deny from index10.aol.externall.net
deny from 72.36.245.197.reversedns.resolve.ru
deny from 217.15.26.110.futures.ru
deny from 243.67.232.72.reverse.layeredtech.com //

//deny from buzznick.com
deny from web-libre.org
allow from all


je veux bien tenter ta version
24/10/2007 17:52
Répondre
killing killingicon_post

Pense à intégrer les site que tu cites dans "# Misc / Specific Sites"

Tiens nous informé

;-)
24/10/2007 21:51
Répondre
aidadomicil aidadomicilicon_post
ok :=!
24/10/2007 22:43
Répondre
Anonyme Anonymeicon_post
Ca marche le truc de Dev mais ya des erreur en prévisualisation. Faut creuser plus.
25/10/2007 22:36
Répondre
aidadomicil aidadomicilicon_post
Citation : killing 


Pense à intégrer les site que tu cites dans "# Misc / Specific Sites"

Tiens nous informé

;-)  

Bjr, passoire
contenu du htaccess :


référents :



:-( :-( :-(

<
27/10/2007 21:33
Répondre
Anonyme Anonymeicon_post
Bonjour,

J'ai eu moi aussi plusieurs insertions de message d'un user fantôme, j'ai fait les modifs proposées par dev et je surveille.

Merci.
29/10/2007 09:37
Répondre
fliaigre fliaigreicon_post
Mes excuses, c'était moi.
29/10/2007 09:39
Répondre