Jump to content
Sign in to follow this  
FIMBLE

IP trap Version 3 released

Recommended Posts

Ok soooo I got it to work but IF and only IF my IP is at the top of the list. I added it to the bottom of the list (whitelist) and I was instantly blocked upon visiting /personal directory. When I added myself to the top of the list I was not blocked.

 

I would invite anybody who has this working to take their IP and put it at the bottom of the whitelist and see if they get the same results. FIMBLE, hopefully you can test and look into this.

 

Hi

I have tried this on my server (both Windows amd Linux) i do not have this problem

 

i have moved my IP number up and down the list and it works fine.

Nic


Sometimes you're the dog and sometimes the lamp post

[/url]

My Contributions

Share this post


Link to post
Share on other sites

Hello,

 

I installed IPTrap v4 and am having a peculiar problem.

 

I was recently hacked and am getting flooded with requests to /images/ebay_login.php, so I created a symlink from ebay_login.php to /banned/index.php and those IP addresses are now being added to the IP_Trapped.txt file.

 

However, the IP_Trapped.txt file only records 3 IPs at any given time. If it tries to add a 4th IP, a previously banned IP address gets deleted from the file and rewritten with the new IP + 2 others.

 

Any suggestions would be greatly appreciated!

 

Joe

Share this post


Link to post
Share on other sites

I just installed this, Im little confused on what this actually does. it just protects the personal directory? but they still can access my site?

 

or am I supposed to put all commerce files in the personal directory?

Share this post


Link to post
Share on other sites

I just installed this, Im little confused on what this actually does. it just protects the personal directory? but they still can access my site?

 

or am I supposed to put all commerce files in the personal directory?

 

 

Hi,

No dont do anything like that, just follow the install file, in there you will find a description of what the IP trap does.

Once installed correctly then anyone in you banned file will not be able to access anything on your site. (this ONLY applies to the folder that osC is in so if your site has other files outside of osC folder they will not be protected)

Nic


Sometimes you're the dog and sometimes the lamp post

[/url]

My Contributions

Share this post


Link to post
Share on other sites

Hello,

 

I installed IPTrap v4 and am having a peculiar problem.

 

I was recently hacked and am getting flooded with requests to /images/ebay_login.php, so I created a symlink from ebay_login.php to /banned/index.php and those IP addresses are now being added to the IP_Trapped.txt file.

 

However, the IP_Trapped.txt file only records 3 IPs at any given time. If it tries to add a 4th IP, a previously banned IP address gets deleted from the file and rewritten with the new IP + 2 others.

 

Any suggestions would be greatly appreciated!

 

Joe

 

Hi

This depends on how fast they are coming, the file locks the banned ip file prior to writing to it so if you are getting a lot then this might be a cause, i would not use the IP trap for this reason as you are blocking unsuspecting victims of a phising attempt, users that may well want to be your customers in the near future!

I would put up a page in the location instead with some helpful information for users so they understand whaat has gone on and how it is nothing to do with the official site there.

Nic


Sometimes you're the dog and sometimes the lamp post

[/url]

My Contributions

Share this post


Link to post
Share on other sites

Hi all

 

I tried to install this addon, i see the block page i receive the mail but i am still able to surf the site.

 

With XSS also installed what I need to modify?

 

Thanks

Share this post


Link to post
Share on other sites

Hi all

 

I tried to install this addon, i see the block page i receive the mail but i am still able to surf the site.

 

With XSS also installed what I need to modify?

 

Thanks

 

 

Hi Some things to check,

all of the files uploaded to the server correctly

you have added the code to the application top

you do not have a frequently rotating IP number

 

If you want to PM me you URL i can see if it works on my IP

Nic


Sometimes you're the dog and sometimes the lamp post

[/url]

My Contributions

Share this post


Link to post
Share on other sites

Hi

 

I added the code to the application top, and changed the url to mi own site.

Maybe having XSS and shop/catalog/ folders are causing some trouble?

 

Thanks

Share this post


Link to post
Share on other sites

Hi

 

I added the code to the application top, and changed the url to mi own site.

Maybe having XSS and shop/catalog/ folders are causing some trouble?

 

Thanks

 

Nothing to do with XSS. This is just a poor addon. It has an overabundance of flaws and does not secure your site from anything more than a snooping bot or otherwise. Using this will place your payment modules at risk as it may block their callback URLs. It is also very resource intensive. There are much more elegant ways to implement something that will block prying eyes. If you read this topic well you will see that many users suffer from trying to use this addon. This mod appears to be started from an idea posted on these forums between a few other individuals some time back. Perhaps real support can be found in that thread.

Share this post


Link to post
Share on other sites

I wont reply anymore, so don't worry about me wasting your time anymore. ... In the meantime I will create a real IP Trap.

 

 

does this mean you kept your word on one of those statements. Is there a real trap available from you?

Share this post


Link to post
Share on other sites

does this mean you kept your word on one of those statements. Is there a real trap available from you?

 

It is clear to anyone who reads this guys posts that he can only criticise and bring people down, to me that is not the sign of a nice person and certainly not one I would pay attention to!

At least Fimble helps and has given a lot of contributions, the other just has bad reputation marks.

It does not matter to me who made it first, he released it when the others did not so if he had not we would have missed out on a great addon, I use it and have never had a problem with payment services.

I say thank you for keeping going despite him, and for the updates.

Share this post


Link to post
Share on other sites

It is clear to anyone who reads this guys posts that he can only criticise and bring people down, to me that is not the sign of a nice person and certainly not one I would pay attention to!

At least Fimble helps and has given a lot of contributions, the other just has bad reputation marks.

It does not matter to me who made it first, he released it when the others did not so if he had not we would have missed out on a great addon, I use it and have never had a problem with payment services.

I say thank you for keeping going despite him, and for the updates.

 

 

total agreement. :thumbsup:

Edited by mariemeh

Share this post


Link to post
Share on other sites

Hi, I have uploaded all the relevant files to the correct locations with the exception of robots.txt.

 

I currently have a robots.txt file in my root directory which has the following info in it:

 

# These settings will keep spiders from indexing your unwanted pages

# This assumes that your OSC install is in your web site's CATALOG directory

# ie: http://www.yoursite....talog/index.php <- Use if this brings up your OSC main page

 

Disallow: /mystore/includes

Disallow: /mystore/cgi-bin

Disallow: /mystore/account.php

Disallow: /mystore/account_edit.php

Disallow: /mystore/account_history.php

Disallow: /mystore/account_history_info.php

Disallow: /mystore/account_password.php

Disallow: /mystore/add_checkout_success.php

Disallow: /mystore/address_book.php

Disallow: /mystore/address_book_process.php

Disallow: /mystore/advanced_search.php

Disallow: /mystore/checkout_confirmation.php

Disallow: /mystore/checkout_payment.php

Disallow: /mystore/checkout_payment_address.php

Disallow: /mystore/checkout_process.php

Disallow: /mystore/checkout_shipping.php

Disallow: /mystore/checkout_shipping_address.php

Disallow: /mystore/checkout_success.php

Disallow: /mystore/contact_bean.php

Disallow: /mystore/cookie_usage.php

Disallow: /mystore/create_account.php

Disallow: /mystore/create_account_success.php

Disallow: /mystore/login.php

Disallow: /mystore/password_forgotten.php

Disallow: /mystore/popup_image.php

Disallow: /mystore/shopping_cart.php

Disallow: /mystore/product_reviews_write.php

 

# Feel free to add any other pages on your site that you don't want to be indexed by

# the search engines.

# PLEASE NOTE: Any pages that you list here should be secured by other means if you

# don't want people to be able to view them, as some malicious users will look at a

# robots.txt file to try to find "hidden" or "secret" areas of web sites to find

# confidential information.

 

# IF YOU DO NOT WISH TO HAVE THE GOOGLE IMAGE BOT SCAN YOUR DOMAIN FOR IMAGES

# THEN YOU CAN INCLUDE THE FOLLOWING IN YOUR ROBOTS FILE.

# I FOUND THAT MY BANDWIDTH USAGE DROPPED BY A MASSIVE AMOUNT AFTER I GOT RID

# OF THE GOOGLE IMAGE BOT. ALL I HAD WAS IMAGE HUNTERS STEALING PRODUCT SHOTS

# AND NOT EVEN BROWSING THE SITE.

 

User-agent: Googlebot-Image

Disallow: /mystore/

 

Do I just add the contents of your robots.txt file to my current robots.txt file or should I let your file overwrite mine?

 

Thanks

 

Michael

Edited by offie

Share this post


Link to post
Share on other sites

It is clear to anyone who reads this guys posts that he can only criticise (should be criticize) and bring people down, to me that is not the sign of a nice person and certainly not one I would pay attention to!

At least Fimble helps and has given a lot of contributions, the other just has bad reputation marks.

It does not matter to me who made it first, he released it when the others did not so if he had not we would have missed out on a great addon, I use it and have never had a problem with payment services.

I say thank you for keeping going despite him, and for the updates.

 

Reputation marks are but a joke to say the least. What I offered in this thread was honest advice. I once used this so called IP-Trap and quickly saw it was sub-standard. Yes it works somewhat, but overall is much more difficult than should be. It follows none of the standards used in osCommerce and introduces new functions that replicate already existing ones. The application uses more resources than should be allowed, and even the file size could be reduced considerably.

 

I do not come here offering thrown together contributions loosely based on the code of others, nor do I then turn around and offer "cheap" support for other things once I have their attention. I have clear conscience and clear intentions. If any one person wants a better suited IP Address containment and management system, then I shall provide every person with one.

Edited by sky_diver

Share this post


Link to post
Share on other sites

In the UK we spell it that way, guess you do not know everything.

There is nothing stopping you from adding you own, but i wonder why you seem to have taken a personal dislike to someone who has done so much to help, perhaps not to your liking but has a least tried to help.

You seem to criticise a lot, it must be difficult being so unhappy at everything, I feel sorry for you.

I hope you find peace and joy one day.

Share this post


Link to post
Share on other sites

does this mean you kept your word on one of those statements. Is there a real trap available from you?

There is an IP Containment and Management System available from me. Bless you for asking dear.

Share this post


Link to post
Share on other sites

There is an IP Containment and Management System available from me. Bless you for asking dear.

I'd like to try it out.

Share this post


Link to post
Share on other sites

There is an IP Containment and Management System available from me. Bless you for asking dear.

 

Shoot... I don't know which is more insulting... that it took you so little time to produce one that it would have been less effort to produce something instead of criticizing someone else's efforts? That you could have put your time contributing to help others but chose not to before being called on it? That you would add "Bless you for asking" when you knew that I wasn't asking, just pointing out that you are a loud mouth. Or maybe it's because of people like you that getting help for people less knowledgeable is virtually impossible???

 

Always amazes me how a question can be ignored because it wasn't asked in the right place or was asked one too many times or that people are ignored because they don't have basic knowledge of all this and people like you show up who apparently have the knowledge and could actually help but would rather spend their time criticizing others and not offering the help this community needs. But then maybe you don't know the meaning of the word.

Share this post


Link to post
Share on other sites

Shoot... I don't know which is more insulting... that it took you so little time to produce one that it would have been less effort to produce something instead of criticizing someone else's efforts? That you could have put your time contributing to help others but chose not to before being called on it? That you would add "Bless you for asking" when you knew that I wasn't asking, just pointing out that you are a loud mouth. Or maybe it's because of people like you that getting help for people less knowledgeable is virtually impossible???

 

Always amazes me how a question can be ignored because it wasn't asked in the right place or was asked one too many times or that people are ignored because they don't have basic knowledge of all this and people like you show up who apparently have the knowledge and could actually help but would rather spend their time criticizing others and not offering the help this community needs. But then maybe you don't know the meaning of the word.

 

I know all of the things he said about the IP Trap being poorly written, at least it works!

I have just tried his and it does not.

Nowhere in admin for you to see these IP numbers.

I have mailed him, but don’t expect any response.

There is also an amount of spelling errors during the install file, (he pointed out one of mine that is due to the Languages used, and I’m British so it was spelt right for here)

I think people who live in glass houses should not throw stones.

It is a shame because as you say he could be a benefit to the forum, but would rather try to stop people helping.

I will stick with the IP trap for now.

Share this post


Link to post
Share on other sites

For those that need direction on adding a link for admin access to the banned_ip.php page, I have updated the install file.

 

Thanks everyone for your comments. As always there will always be people that would rather run older contributions for various reasons. This is a personal choice, and I wish you all the best of luck no matter what your choices are. For me the choice is clear, I would rather experience the comfort and durability of a Nike VS a no name brand. Gas mileage goes further in a modern vehicle compared to the clunkers of the past. Webster's dictionary is more apt to being correct than others... ect; ect;

Share this post


Link to post
Share on other sites

For those that need direction on adding a link for admin access to the banned_ip.php page, I have updated the install file.

 

 

 

Unless you posted an update to IP Trap Version 3, you posted this on the wrong thread.

Share this post


Link to post
Share on other sites

Hi

 

For some reason this is not working on my server. All changes made but it seems it's not getting the full FS Path.

 

[client *********] PHP Warning: file(): Unable to access DOCUMENT_ROOT/../banned/IP_Trapped.txt in /var/www/vhosts/******.co.uk/httpdocs/catalog/includes/secret.php on line 11, referer: http://******.co.uk/catalog/index.php

 

[client ********] PHP Warning: file(DOCUMENT_ROOT/../banned/IP_Trapped.txt): failed to open stream: No such file or directory in /var/www/vhosts/******.co.uk/httpdocs/catalog/includes/secret.php on line 11, referer: http://******.co.uk/catalog/index.php

 

Where is the var DOCUMENT_ROOT derived? Should I hard code the full path to make it work?

 

or use the OSC var DIR_FS_CATALOG ?

 

 

Permissions set to 666 for the files and 755 for the dir.

 

Wayne.....

 

Hello Wayne!

Since you didn't come back on this and nobody else either, I thought I should tell what I found about on this. I installed the contrib too and I'm glad about having someone like FIMBLE who cares about the hacking issues - big up FIMBLE and massive respect!

 

Anyway, after installing it didn't work at all with the textfiles, so i played arround a bit with the /personal/index.php. I found out that the references to the DOCUMENT_ROOT var didn't resolve.

Finally I changed:

 

$ipw = file ('DOCUMENT_ROOT/../../banned/Whitelist.txt');

 

to

 

$ipw = file ("$DOCUMENT_ROOT/catalog/banned/Whitelist.txt");

 

and

 

$IPtrap = file ('DOCUMENT_ROOT/../../banned/IP_Trapped.txt');

 

to

 

$IPtrap = file ("$DOCUMENT_ROOT/catalog/banned/IP_Trapped.txt");

 

and

 

$fp = fopen ('DOCUMENT_ROOT/catalog/banned/IP_Trapped.txt', 'w');

 

to

 

$fp = fopen ("$DOCUMENT_ROOT/catalog/banned/IP_Trapped.txt", 'w');

 

I hope this will help someone and besides, if anybody thinks this variation implies any bad efects, please let me know.

 

Peace,

 

dirk

Share this post


Link to post
Share on other sites

Question...

First I'd like to say thanks for a great add on....

Installed no problem...

Works when I tested....

No bans from any snoopers yet....

 

Anyhow.

What if we were to add the bad ip addresses listed on this website:

http://www.stopforumspam.com/

I use this database on another site and it helps prevent spammers from registering... and it works GREAT!

Can it be as simple as adding the list of ip addresses to the "banned" list?

Makes sense to me. What do any of you think?

Thanks.


That "Can" you're about to open... has worms!

Don't say I didn't worn ya.

n. pl. cans of worms Informal - A source of unforeseen and troublesome complexity.

Share this post


Link to post
Share on other sites

Unless you posted an update to IP Trap Version 3, you posted this on the wrong thread.

This thread fits quite well as this is the ultimate upgrade to the IP Trap. Because of this update the IP Trap is now obsolete. For even greater protection one should use the PHPIDS for osCommerce 1.4 by Celextel, http://addons.oscommerce.com/info/7374 . It makes use of great features for securing you site as well as the IP Containment and Management System.

Share this post


Link to post
Share on other sites

Well on the bright side of things I have had IP Trap installed for quite a while and snagged several intruders. Doing an IP whois search on the intruders, I usually don't find out much other than where the nosey person was from. Today got a good one, my IP search for today's intruder yields results that that IP was involved located in eastern Europe and associated with many porn related sites. Just guessing but I think this visitor was hoping to plant code on my site creating links back to the porn sites. I am very grateful Nic provided this add on to help protect from that kind of thing. :thumbsup:


I am not a professional webmaster or PHP coder by background or training but I will try to help as best I can.

I remember what it was like when I first started with osC. It can be overwhelming.

However, I strongly recommend considering hiring a professional for extensive site modifications, site cleaning, etc.

There are several good pros here on osCommerce. Look around, you'll figure out who they are.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×