Looking for good software to prevent password sharing and hacking to to my site. I heard good things of ProxyPass.com. Could anyone co-sign for them or any other programs?
ProxyPass ?
Collapse
X
-
Tags: None
-
it's awesome100% Real Thai Girls - Tiniest Pornstar in the world Thainee.com & Dream Teen Tussinee.com Asian Teens, Asian EMO, Asian G/Fs THAI GIRLS WILD

-
-
make sure you change the default admin pass when you use strongbox! Dont use default folders at all. Use generated user/pass combinations to prevent bruteforce attacks. I woudnt use one of the famous adult-cms too. To many "well-known" bugs like remote-file-inclusions in those products..
Use a selfmade form login with a strong ocr image, course as far as i remember the strongbox ocr image is just fake or not working or what ever. If you enter a valid user/pass you can enter whatever you want in the image form.
Sit*depth 2 => cookie trick to gain admin access
Sit*depth 3 => remote file inclusion
m*a2 => remote file inclusion
m*a3=> remote file inclusionLast edited by Pimpin_J; 07-04-2006, 11:11 PM.Comment
-
-
Wasted money without generated user/pass combinations. If your going to use it with letting your members choose their combination its wasted money in my eyes. Its the same easy to bruteforce like a simple .htaccess with the right tools. Google for "C-Force" or "Form@" if you dont believe me.Originally posted by gooddomainsstrongbox is the right tool
Just register at some passwordtrading forums and check their tutorials and look how they act to gain free access to paysites. Its good to watch your enemies and know their tricks to prevent your site from beeing hacked.
Comment
-
-
Good info. Thx for the hints.Originally posted by Pimpin_JWasted money without generated user/pass combinations. If your going to use it with letting your members choose their combination its wasted money in my eyes. Its the same easy to bruteforce like a simple .htaccess with the right tools. Google for "C-Force" or "Form@" if you dont believe me.
Just register at some passwordtrading forums and check their tutorials and look how they act to gain free access to paysites. Its good to watch your enemies and know their tricks to prevent your site from beeing hacked.
Comment
-
-
strongbox, bad thing is from what i hear they all have exploits ;(Amateur Australian Porn At It's Finest: Girls Out West --> Girls Out West Affiliate ProgramComment
-
There is no default admin pass for Strongbox.Originally posted by Pimpin_Jmake sure you change the default admin pass when you use strongbox!
Our order form just asks you which user names should have access to the admin.
We don't even know your admin password, so I don't think a cracker will know it.
For our own testing we randomly generate a different password for each site.
Umm, no. You CAN set it to bluff mode, if you want to, but most people don't.Originally posted by Pimpin_Jcourse as far as i remember the strongbox ocr image is just fake or not working or what ever. If you enter a valid user/pass you can enter whatever you want in the image form.
That's an option for webmasters who want to make it as easy as possible for users
who may not pay attention to what they are doing.
If you've ever seen a post on any of the forums where anyone has ever cracked StrongboxOriginally posted by Pimpin_JJust register at some passwordtrading forums and check their tutorials and look how they act to gain free access to paysites.
I'd really love to see it. I have yet to find such a post anywhere. When I search the
cracker forums for "Strongbox" I normally find posts where the noob asks how to crack
it and they either get no response or responses saying "there is no known way".
On one of the largest forums (you have a good idea which one, probably, if you've
been surfing them), a noob asked about that and the owner of the forum replied simply
"How to get around Strongbox: find a different site that has the same stuff but isn't
using Strongbox." It would of course be of GREAT interest to me if anyone found a
way to brute force Strongbox, so PLEASE let me know if you see anyone claiming
to have done so. That's the reason for the $500 bounty of course - if there is any way
to do it I damn sure want to know about it. Nobody has claimed the money yet and the
the better crackers that I mentioned it to (using my alter ego) said they wouldn't even
bother hitting the test site because they had already tried on regular Strongbox sites
before the prize money was announced and found it pretty much impossible.
By the way, you've posted at least three different things about Strongbox that were
totally wrong. Have you ever even SEEN Strongbox?For historical display only. This information is not current:
support@bettercgi.com ICQ 7208627
Strongbox - The next generation in site security
Throttlebox - The next generation in bandwidth control
Clonebox - Backup and disaster recovery on steroidsComment
-
We use proxypass and np probs with it as yet.
I also hear a lot of good things about strongbox.ICQ:119936Comment
-
@raymor
send me an email to webmaster | at | pimpshots | com
and ill show you how to come along with strongbox. Youll see that i was right.. in most of my parts.. seen so many sites which used to have a admin pass like "sb1n****" , so it looked like a default pass to me!
Just msg me and we can have a chilled talk
Comment
-
Check out KillerSecurity (http://www.killersecurity.com/). Free to try tooOriginally posted by Booty BucksLooking for good software to prevent password sharing and hacking to to my site. I heard good things of ProxyPass.com. Could anyone co-sign for them or any other programs?
Comment



Comment