GoFuckYourself.com - Adult Webmaster Forum - View Single Post

Manie · 04-19-2003, 10:24 AM

Howdie,
I read on the Dutch Forum there was quite a fuzz about TTT.
Which is considered a good script. But really isn't flawless.

I myself don't use free scripts. (Cause I got the knowledge to programme them myself, like I'm doing for 1,5 years now)

However, over the past month we got extreemly enoing head request fromout the States. (BeJa) doing head request on all know scripts on: 'index.php?randomrefererhere' or 'out.php?radnomouthere'.

And this is done by socket HEAD request. Which means it isn't stopped by HTACCESS. (Scripts still get executed).

You can imagine the shit that happens if your script thinks he just got 100 hits from a dude (who actually didn't sent you anything) and the other way arround.

I've made myself a fix for my own script stopping the PHP process as soon a HEAD request is encountered. And people tried to convice you from the need of the feature. But you probably don't see the need of it in your probably bussy schedual.

I for one (and yeah, you will say who are you for saying that?) had the opinion towards the others that they should just make the changes. As long as you keep the skimming and it's for protection. EVEN you should understand.

And don't give me the copyright notice crap.
I believe I don't need to explain you that if you really don't want people to get in your code. You should programm PHP code. But take something compiled.

I understand your motivation for this post.
(And people that do rip the shaving out should die from herpes)
But if it's a security issue. You of all should understand.

Regards,
Armand aka Manie

04-19-2003, 10:24 AM
Manie Registered User Join Date: Apr 2003 Location: The Netherlands Posts: 12	Howdie, I read on the Dutch Forum there was quite a fuzz about TTT. Which is considered a good script. But really isn't flawless. I myself don't use free scripts. (Cause I got the knowledge to programme them myself, like I'm doing for 1,5 years now) However, over the past month we got extreemly enoing head request fromout the States. (BeJa) doing head request on all know scripts on: 'index.php?randomrefererhere' or 'out.php?radnomouthere'. And this is done by socket HEAD request. Which means it isn't stopped by HTACCESS. (Scripts still get executed). You can imagine the shit that happens if your script thinks he just got 100 hits from a dude (who actually didn't sent you anything) and the other way arround. I've made myself a fix for my own script stopping the PHP process as soon a HEAD request is encountered. And people tried to convice you from the need of the feature. But you probably don't see the need of it in your probably bussy schedual. I for one (and yeah, you will say who are you for saying that?) had the opinion towards the others that they should just make the changes. As long as you keep the skimming and it's for protection. EVEN you should understand. And don't give me the copyright notice crap. I believe I don't need to explain you that if you really don't want people to get in your code. You should programm PHP code. But take something compiled. I understand your motivation for this post. (And people that do rip the shaving out should die from herpes) But if it's a security issue. You of all should understand. Regards, Armand aka Manie