Cloaked

+Clients
  • Content count

    235
  • Joined

  • Last visited


About Cloaked

  • Rank
    Advanced Member
  • Birthday 03/30/1955

Cloaked's Activity

  1. Cloaked added a post in a topic: Robots.txt and bad robots   

    This is what I have in my .htaccess file. It stops 99% off all the spam bots. I don't like to ban IP ranges because there are users from some of those countries that do contribute to the community.
     
    # Stops bots with these user agent strings RewriteCond %{HTTP_USER_AGENT} ^(aesop_com_spiderman|alexibot|backweb|bandit|batchftp|bigfoot) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(black.?hole|blackwidow|blowfish|botalot|buddy|builtbottough|bullseye) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(cheesebot|cherrypicker|chinaclaw|collector|baiduspider|copier|copyrightcheck) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(cosmos|crescent|curl|custo|da|diibot|disco|dittospyder|dragonfly) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(drip|easydl|ebingbong|ecatch|eirgrabber|emailcollector|emailsiphon) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(emailwolf|erocrawler|exabot|eyenetie|filehound|flashget|flunky) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(frontpage|getright|getweb|go.?zilla|go-ahead-got-it|gotit|grabnet) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(grafula|harvest|hloader|hmview|httplib|httrack|humanlinks|ilsebot) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(infonavirobot|infotekies|intelliseek|interget|iria|jennybot|jetcar) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(joc|justview|jyxobot|kenjin|keyword|larbin|leechftp|lexibot|lftp|libweb) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(likse|linkscan|linkwalker|lnspiderguy|lwp|magnet|mag-net|markwatch) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(mata.?hari|memo|microsoft.?url|midown.?tool|miixpc|mirror|missigua) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(mister.?pix|moget|mozilla.?newt|nameprotect|navroad|backdoorbot|nearsite) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(net.?vampire|netants|netcraft|netmechanic|netspider|nextgensearchbot) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(attach|nicerspro|nimblecrawler|npbot|octopus|offline.?explorer) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(offline.?navigator|openfind|outfoxbot|pagegrabber|papa|pavuk) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(pcbrowser|php.?version.?tracker|pockey|propowerbot|prowebwalker) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(psbot|pump|queryn|recorder|realdownload|reaper|reget|true_robot) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(repomonkey|rma|internetseer|sitesnagger|siphon|slysearch|smartdownload) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(snake|snapbot|snoopy|sogou|spacebison|spankbot|spanner|sqworm|superbot) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(superhttp|surfbot|asterias|suzuran|szukacz|takeout|teleport) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(telesoft|the.?intraformant|thenomad|tighttwatbot|titan|urldispatcher) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(turingos|turnitinbot|urly.?warning|vacuum|vci|voideye|whacker) [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^(libwww-perl|widow|wisenutbot|wwwoffle|xaldon|xenu|yandex|zeus|zyborg|anonymouse) [NC,OR] # Bot that start with web in the user agent string RewriteCond %{HTTP_USER_AGENT} ^web(zip|emaile|enhancer|fetch|go.?is|auto|bandit|clip|copier|master|reaper|sauger|site.?quester|whack) [NC,OR] # Stops the rest that the others miss RewriteCond %{HTTP_USER_AGENT} ^.*(craftbot|baiduspider|baidu|download|extract|stripper|sucker|ninja|clshttp|webspider|leacher|collector|grabber|webpictures).*$ [NC] # Show them a 403 no permission error RewriteRule . - [F,L]
  2. Cloaked added a post in a topic: Exploit in RHEL Servers   

    I haven't see this posted here. There is a nasty root exploit that affects CentOS and CloudLinux. From various discussions I've read no one has yet found the cause. The rootkit puts file /lib64/libkeyutils.so.1.9 on 64bit systems and /lib/libkeyutils.so.1.9 on 32bit systems
     
    I know CentOS is pretty popular and many hosts use it so if I were you I'd check the thread at http://www.webhostingtalk.com/showthread.php?t=1235797 and also this blog post http://www.cloudlinux.com/blog/clnews/sshd-exploit.php .There is a link to a bash script to clean this up, however, since this is a root exploit it's probably better to reload the OS. Those files might not be the only nasties that this dropped on the box.
     
    This is pretty nasty. One user reported a clean install of CentOS on a new server and it was exploited in minutes.
     
    The thread at WHT is long with a lot of good info so make sure you read it all.
  3. Cloaked added a post in a topic: About us/status spam?   

    I lockdown the default member group. The only thing they can do is post threads and replies. Nothing else. After 25 posts they get promoted to a new group which has full member permissions. I also use NenaDice hook to disallow links in posts until 25 posts.
  4. Cloaked added a post in a topic: Simply put..... add drag and drop uploading   

    Drag and drop would be a great idea and a timesaver for posters.
     
    I wouldn't want the feature to upload offsite to an image host. In fact I'd rather have the ability to import any images posted from external sites.
  5. Cloaked added a post in a topic: 3.4.2 Update Windows Permissions   

    Somewhere there is a file/image that is behind a password protected dir that is loading on those pages or you have files loading from a dir that is not accessible by IIS.
     
    Do you have some of your files placed outside the web root?
    If you do have granted access to those directories to the NETWORK user?
     
    How is PHP setup? The correct setup for the best security is to create a user with a strong password, give it permissions to read, write and modify on the web root and any folders outside the web root that you use to serve content. Then set that user as the app pool user in IIS manager.
  6. Cloaked added a post in a topic: (JG32 / JG33 / JG34) Forum Spammer IP & Email Check via Stop Forum Spam   

    I have short_open also off. Look forward to the update.
  7. Cloaked added a post in a topic: (JG32 / JG33 / JG34) Forum Spammer IP & Email Check via Stop Forum Spam   

    Getting the same errors on 2 different servers. Both Windows/IIS one with PHP 5.3.18 and the other with PHP 5.4.
     
    Also get an error about bad furl.
  8. Cloaked added a post in a topic: Loot of spam registration today   

    I use extremely long questions and yes in the end they are math questions. One that I use is.

    If you going on a 1200 mile trip traveling by train and the train averages 60 miles per hour how many hours will it take to complete your journey?

    I find the longer the question the longer it takes for a person to decipher and in the end many just give up. I always have a minimum of 5 questions and 1 of them has no answer.

Status Feed

  1. Cloaked

    I've got a never ending love for you. From now on that's all I wanna do. From the first time we met I knew. Get that song out my head now!

  2. Cloaked

    X-Men Origins is on Max tonight then King Arther v Andre Dirrel in the super 6 middleweight tourney on Showtime so it's time to go. Bye Bye

  3. Cloaked

    I've gone and done it again. Number 7 #ipb license waiting for approval. I admin it. I'm a #ipb junkie.

  4. Cloaked

    Time to watch a little TV. Getting bored reading.

  5. 7SiN » Cloaked

    I messaged you on IPBsetup. Do you think you can get on AIM or MSN to help me with this VBSEO rewrite? I've been at it for almost 12 hours now and just need a lil more direction.
    Thanks.