Elxis CMS Forum

Ελληνικό Forum => Ασφάλεια => Topic started by: anacon on December 22, 2014, 21:58:22

Title: Αλλαγή του Facebook
Post by: anacon on December 22, 2014, 21:58:22
Όταν κάνεις share ένα θέμα στο Facebook μετά ο Elxis κάνει ban τους users που έρχονται απο το Facebook
Μερικά παραδείγματα

Elxis Defender blocked an attack to your site!
Reference code: SEC-DEFG-0054

Elxis Defender report
Signatures:    general
Match method:    inmatch
Haystack:    querydec
Pattern match:    http:
Reason:    RFI (http).


Requested URI:    /tainies/mozekcdn-a.akamaihd.net/gsd.html?v=3&d=http://www.greektenies.com
IP address:    79.131.χχχ.χχχ
Hostname:    athedsl-40χχχχ.home.otenet.gr
HTTP Referrer:    http://www.greektenies.com/tainies/strophe.html
User agent:    Mozilla/5.0 (Windows NT 6.1; rv:34.0) Gecko/20100101 Firefox/34.0
Date (UTC):    2014-12-20 23:30:39
Site URL:    http://www.greektenies.com

Elxis Defender blocked an attack to your site!
Reference code: SEC-DEFG-0054

Elxis Defender report
Signatures:    general
Match method:    inmatch
Haystack:    querydec
Pattern match:    http:
Reason:    RFI (http).


Requested URI:    /lifestyle/mozekcdn-a.akamaihd.net/gsd.html?v=3&d=http://www.tothemaonline.com
IP address:    87.228.χχχ.χχχ
Hostname:    87-χχχ-χχχ.netrun.cytanet.com.cy
HTTP Referrer:    http://www.tothemaonline.com/lifestyle/sten-phulake-antones-remos.html
User agent:    Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Date (UTC):    2014-12-20 16:41:03
Site URL:    http://www.tothemaonline.com

Καμία ίδεα πως να φτιαχτέι?
Title: Re: Αλλαγή του Facebook
Post by: datahell on December 23, 2014, 13:06:21
Άνοιξε τα γενικά φίλτρα του Defender και σβήσε ή κάνε comment τα φίλτρα http: και https:

αρχείο includes/libraries/elxis/defender/general.php

Κάπου στη γραμμή 70 άλλαξε αυτό:
array('inmatch', 'querydec', 'http:', 'RFI (http).'),
array('inmatch', 'querydec', '1http:', 'RFI (http).'),
array('inmatch', 'querydec', 'https:', 'RFI (https).'),

Σε αυτό:
//array('inmatch', 'querydec', 'http:', 'RFI (http).'),
array('inmatch', 'querydec', '1http:', 'RFI (http).'),
//array('inmatch', 'querydec', 'https:', 'RFI (https).'),