Elxis CMS Forum
Ελληνικό Forum => Ασφάλεια => Topic started by: anacon on December 22, 2014, 21:58:22
-
Όταν κάνεις share ένα θέμα στο Facebook μετά ο Elxis κάνει ban τους users που έρχονται απο το Facebook
Μερικά παραδείγματα
Elxis Defender blocked an attack to your site!
Reference code: SEC-DEFG-0054
Elxis Defender report
Signatures: general
Match method: inmatch
Haystack: querydec
Pattern match: http:
Reason: RFI (http).
Requested URI: /tainies/mozekcdn-a.akamaihd.net/gsd.html?v=3&d=http://www.greektenies.com
IP address: 79.131.χχχ.χχχ
Hostname: athedsl-40χχχχ.home.otenet.gr
HTTP Referrer: http://www.greektenies.com/tainies/strophe.html
User agent: Mozilla/5.0 (Windows NT 6.1; rv:34.0) Gecko/20100101 Firefox/34.0
Date (UTC): 2014-12-20 23:30:39
Site URL: http://www.greektenies.com
Elxis Defender blocked an attack to your site!
Reference code: SEC-DEFG-0054
Elxis Defender report
Signatures: general
Match method: inmatch
Haystack: querydec
Pattern match: http:
Reason: RFI (http).
Requested URI: /lifestyle/mozekcdn-a.akamaihd.net/gsd.html?v=3&d=http://www.tothemaonline.com
IP address: 87.228.χχχ.χχχ
Hostname: 87-χχχ-χχχ.netrun.cytanet.com.cy
HTTP Referrer: http://www.tothemaonline.com/lifestyle/sten-phulake-antones-remos.html
User agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Date (UTC): 2014-12-20 16:41:03
Site URL: http://www.tothemaonline.com
Καμία ίδεα πως να φτιαχτέι?
-
Άνοιξε τα γενικά φίλτρα του Defender και σβήσε ή κάνε comment τα φίλτρα http: και https:
αρχείο includes/libraries/elxis/defender/general.php
Κάπου στη γραμμή 70 άλλαξε αυτό:
array('inmatch', 'querydec', 'http:', 'RFI (http).'),
array('inmatch', 'querydec', '1http:', 'RFI (http).'),
array('inmatch', 'querydec', 'https:', 'RFI (https).'),
Σε αυτό:
//array('inmatch', 'querydec', 'http:', 'RFI (http).'),
array('inmatch', 'querydec', '1http:', 'RFI (http).'),
//array('inmatch', 'querydec', 'https:', 'RFI (https).'),