Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How did somebody exploit my programming?

Status
Not open for further replies.
748323

748323

Programmer
Dec 10, 2004
70
0
0
US
I created a basic members-only website. To ban a member, I had a script that will create a text file called "Banned user + .txt" and place that file in another directory.

Somebody found out the directory, and could create any text file he wanted and place it in that directory, and therefore banning anybody he wanted.

I created a script that will unban anybody who has been banned by the hacker, but the security hole is still there. How was this done? My website did deal with creating files in placing them in a different folder than the banned users folder. Do you think this was an exploit of my own programming, or another exploit? Thanks.
 
Sort by date Sort by votes
Did you add any checks on the script to make sure it could only be used by you? or did you leave it open to just be run and select a name? You should always have the script check and verify that it's you that is doing the ban by logging in etc.
 
Upvote 0 Downvote
>>Somebody found out the directory, and could create any text file he wanted and place it in that directory

that might just be by luck. do u display the path to this text file anywhere in your code???

Known is handfull, Unknown is worldfull
 
Upvote 0 Downvote
maybe you should make some logging functions to your script, so that it logs ip and time/date, as well as which script made the ban.

You also need to make sure that your script is only accessed by you.

it's hard to know if this was done by someone who also has an account on your server, or if it was done by one of your users.

I would check the chmod of the folders, to see who has permissions..

Olav Alexander Mjelde
Admin & Webmaster
 
Upvote 0 Downvote
Are you using a database for the users that are not banned? If so create a banned flag and activate it instead of using the .txt folder to ban members. It would be more secure.

Just a thought.
 
Upvote 0 Downvote
Give us the URL and we'll exploit it for you and tell you how we did it.
 
Upvote 0 Downvote
How did he have the permissions to write to the directory in the first place? Or did he just get the script url and start banning people?

Rick

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

mervgh
  • Locked
  • Question
My own custom error handler
Replies
1
Views
93
Chris Miller
Chris Miller
rogerte
  • Locked
  • Question
How to parse associative array
Replies
13
Views
233
Chris Miller
Chris Miller
ersatz
  • Locked
  • Question
How to send 2 select from mysql database in email like tables
Replies
5
Views
147
ersatz
ersatz
SashaBuilder3
  • Locked
  • Question
import CSV file into MySql table in PhpMyAdmin
Replies
0
Views
115
SashaBuilder3
SashaBuilder3
EdLentz
  • Locked
  • Question
I need a simple example of how to send a table of info .
Replies
8
Views
142
EdLentz
EdLentz

Part and Inventory Search

Sponsor

Back
Top