 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 |
PHP-Nuke Exposed. |
 |
 Posted: Mon Jun 14, 2004 3:22 am |
 |
|
| Kliber |
| Beginner |
 |
|
| Joined: Jun 14, 2004 |
| Posts: 2 |
| Location: Venezuela |
|
|
 |
|
 |
|
That should be the name for your papers collection 
As a Nuke user afther reading some of them I got filled with a mix of disturbing and mesmerizing "stuff"; the "Exploit Explained" its one of the bests ways to understand security problems in order to fix them, and I enjoyed a lot the way you write them; as a full disclosure believer I must congratulate your work, BUT, would be REALLY nice to make public aviable the fix for each paper you wrote (I see your efforts on this, keep the good work) , so, web owners can test exploits and fix them at the same time. =)
PHP-Nuke its an open source (yet) software and that allow people like Waraxe to read the code and find those details that can compromise the code, ring the bell (releasing exploits and (or) proof of concept) so they can be fixed, hope in time; if evolution its right, this mean that the code should improve its security within the time, making, at least, not so easy to broke it.
Fulldisclosure its a double sided knife, too much or too less could be, er... bad? I just hope you guys keep a good level in the site, I see it like another approach to nuke security (and I know the site wont focus exclusive in Nuke) but the papers showing not only PHP nuke core problems, but also add onns and other scripts-nuke-related failures maked the site , IMHO, a must see for nuke owners (and lovers)  ; would be a shame to come back and see the forums full of "teach me how to deface a web" for script-kiddies wannabes 
Regards and Good Luck!, once again, thanks for the papers!!!  |
|
|
|
|
|
|
|
|
| Posted: Mon Jun 14, 2004 6:32 am |
|
|
| LINUX |
| Moderator |
|
|
| Joined: May 24, 2004 |
| Posts: 404 |
| Location: Caiman |
|
|
|
|
|
|
Waraxe is full disclosure RLZ  |
|
|
|
|
| Posted: Mon Jun 14, 2004 9:10 am |
|
|
| waraxe |
| Site admin |
 |
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| Thanks for good words, Kliber. By the way - i will use PhpNuke 7.3 as web site engine for my own new website in near future. So all nuke fans can be sure - i WILL beat out from phpnuke MOST of the bugs, still left there from ages ago, so stay tuned and wait for new advisories (which are coming out soon) |
|
|
|
|
| Posted: Wed Jun 16, 2004 2:11 pm |
|
|
| dotcomBOT |
| Regular user |
|
|
| Joined: Jun 11, 2004 |
| Posts: 12 |
|
|
|
|
|
|
|
wow
gr8 4 da nukers 
wht abt making out ur own package like nule cops? [ bNC bundle ]
or protection sys like "protector" and "fortress" |
|
|
|
|
| Posted: Wed Jun 16, 2004 3:45 pm |
|
|
| waraxe |
| Site admin |
|
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| I will publish from time to time some phpnuke modifications and improvements (from security side), but just dont have time to make new phpnuke derivate or bundle. Besides, there are allready enough phpnuke versions. |
|
|
|
|
|
hey |
|
| Posted: Wed Jun 30, 2004 7:23 pm |
|
|
| ernad |
| Regular user |
 |
|
| Joined: Jun 01, 2004 |
| Posts: 13 |
| Location: Serbia |
|
|
|
|
|
|
waraxe i want to talk with you about this site this site cant be so big because there are exploits only i will give you my hosting so you will dont need to pay it:
everything is unlimited bandwith and mysqls and others stuffs so we can upload big files and bandwith si no problem my hosting is like rocket plz if you have msn i want to talk with you :d |
|
|
|
|
www.waraxe.us Forum Index -> General discussion
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 50
Members: 0
Total: 50
