Messages posted by: Anonymous

I'm going to be guessing here basically based on the appearance of the subroutine titles and the html inside of those routines.

Since I did not write the script and I don't use it, it is just an educated guess. Hoping it helps

I use a text editor that displays the line numbers for me so the numbers are a reference if you also have that ability.

Find the subroutine "show_entries" (at about line 41

(if you have changed the script at all, it may be moved.) Scroll down about 75 more lines to the body tag.

Try adding the TEXT="#ffffff" to the body tag

Then scroll down more to the subroutine "enterpass" (at about line 613) and scroll down a bit more to that body tag and do the same thing.

Normally mySQL is only avalable to "localhost" but WHM/cPanel systesm seem to do funny things.
I run myself (well I lost count) but a lot of sites and most of them use the Advanced Guestbook script.
Apart from the hakers it's the best guestbook script on the net.
but locking the admin folder with a .htaccess works a treat.
I am guessing that they are using something in there to send there stupid html to the databse or using some sort of script to fool the server.

Just tried a tiny picture and it still won't upload. I have a max. of 600k and 320 x 80 as a border width and height. If I set this border ratio any larger it totally blows up previous thumbnails way too large. And even upon trying to set it higher it still won't upload a new picture. I have checked "create thumbnails" and set the minimum file size at 12kb.
Thanks for replying.

Picture upload is broken again. It worked for a while by not clicking "preview" when uploading, but now it's broken again. Didn't change any settings. Just tried to upload a 150kb .gif and even took out the numerals in the file name but it won't work. My guests really want to use this function. Can anyone help?

A few weeks ago, a friend of mine died. His obituary was posted in the newspaper with a link to a GuestBook to enter condolences for the family. Doing that was a two step process. You fill out online a form with your message, that then goes electronically and automatically to the Webmaster for review -- then the webmaster lets it go on into the GuestBook and be posted.

I am using Advanced Guestbook 2.3.1 -- specifically how can I modify its software so that a new guestbook entry will first be transmitted to me -- then I let it go on into the Guestbook to be posted there if it is not spam? Wouldn't that system catch most all of the Hackers who now can immediately get to the Guestbook with a spam/trashing posting?

Does GuestBook 2.3.1 have any password (for Administrator) vulnerabilities that need to be fixed to prevent hacking?

Are we facing a losing battle such that GuestBooks cannot be made secure and sooner or later they are trashed?

If you have been hacked CHANGE your database password.
Edit your config.inc.php with your new password.
Put a .htaccess password protection file in the admin folder.

The Hackers are Editing the Database not the Guestbook.
If you have not yet been hacked then
Put a .htaccess password protection file in the admin folder

This stops the hackers reading the config.inc.php file to get your dbs username and password.
Just Deleting the entry and turning the smileys, html and other codes of will not stop the hackers.
I know I have had my guestbook hacked 7 times. (the same guestbook)
Also notice that when you remove the hacked entry you will lose your last valid guestbook entry as the hackers just overwrite the last entry in your guestbook.

I have now installed some patches för agbook 2.3.1 found on this forum.

I looked in my file manager and all files in my guestbook drawer have the chmod 644, and the files have probably had that all the time. In easy admin I cannot change the templates (getting warnings), so I downloaded some of them to my computer with my ftp program so I could patch and redesign a little.

Wonder what, if anything, the hacker can do now?

i really dont know which page contains it. but when you add a panel, panel_editor.php assists you.

thanks

You can reach the CMS in my page at www.mud.gen.tr
At the left of the page, you can see the Advanced Poll.
thanks

Yes, the problem is from the comments (replys to guestbook posts).
I noticed when you have lots of comments it slows the guestbook down.
When i purged the comments, the guestbook became fast. When i added the comments back again, it slowed down.

I did have 20 per page and now i changed to 10. still having the same problem
GSSO

Allright!

Thank you so much, especially ET! You outclassed the tech support of the company that hosts my site (they couldn't help me much)!

I removed the crap through that phpMyAdmin thingy, and now my guestbook looks good.

By some reason I had to remove the message (the previous record number 102), written by myself, to get back the normal look of the guestbook. But since they could changed so the puke smily appeared by the letter "e" maybe they can mess with the last input/record as well.

I thought I already before the hacker attack had some good curse words to stop bad code, but I now have improved that list.

Thanks again!

http://www.FarbrorTorsten.com/english.htm

Thanks, but I could only delete the last input. Now, before the easy admin page has loaded the edit and delete buttons the black hacker page arrives and sends me to www.cia.gov

This screen shows how far I can come now:
http://www.farbrortorsten.com/temp/gb.jpg
When I try to go to record number 102, 103 or 104 that black hacker page comes too quickly.

I'm afraid I need another trick!

Hi, I cant find any solution to my problem so here it goes:

My guestbook at:
http://www.farbrortorsten.com/gastbok/
is hacked.

I still have my password and I can login to admin, but I cannot use the easy admin-page. When I try a black page with stupid text is shown for a while, then I get sent/redirected to www.cia.gov

HTML was and still is disabled.

Smilys were and are still on. All letters "e" is now shown as a vometing smily, and if change that in general settings a visit to my guestbook page will show the black page (mentioned above) instead of my brown page.

After the attack I upgraded to version 2.3.1 but these problems remains. HELP PLEASE!

I'd like to recognize Auron for posting to my last thread. We posted
simultaneously.

I have a new script error--Method Not Allowed
The request method is not allowed for URL/links/cgi-bin/links.pl

Sounds like a HTML problem in the addlinks.html, however I have
used other scripts successfully with a simple <form action="cgi-bin/--.pl">
(Also I have changed this command variable to
<form action="mysite/cgi-bin/links.pl" & mysite/links/cgi-bin/links.pl> to no avail). Therefore, I have discounted this solution.

So, I turn my thoughts toward the setup variables.

Here are the two setup doggies

#url of the script
$cgiurl="http://mysite/cgi-bin/links.pl";

#base url to all link files
$link_url="http://mysite/links";

The script seems to want to generate a cgi-bin in the links directory,
even though I specifically defined the path to links.pl as
"http://mysite/cgi-bin/links.pl"

Next using intuition, and you may have already guessed, I placed
a cgi-bin in the links directory and uploaded a new links.pl with new perl
pathways.

Nope--same error message.

Two indians are better than one.
Perl doesn't care how many pathways are defined, so I added
$cgiurl="http://mysite/cgi-bin/links.pl"; "http://mysite/links/cgi-bin/links.pl";

Nope--same error message, again.

Obviously, the script is creating a command string and searching for
links.pl outside the setup protocol of $cgiurl="http://mysite/cgi-bin/links.pl";

The script is available two doors to the left on this web-site. (FFA)

Who votes I chunk the script and get a nice guest book.

Regards,
ikbin9

Thanks, I'll do just that then.