Results 1 to 10 of 1988

Hybrid View

  1. #1
    Join Date
    Jun 2008
    Location
    Canada
    Posts
    134
    Plugin Contributions
    0

    Default Re: Link Manager 3.0 Support Thread

    Quote Originally Posted by fajmp View Post
    I recently unchecked my link from the layout boxes until I get a chance to work on getting some links. But this morning I had a link, placed in there (even though I had it unchecked)
    It was a ######## link. How can that happen? Is there some weakness in the addon? I am timid of leaving it on.
    Anyone else ever have this problem?
    Can someone reply to this? It's a very weird and possibly dangerous (to my website) happening.

  2. #2
    Join Date
    Nov 2005
    Location
    Colorado Springs, CO USA
    Posts
    7,033
    Plugin Contributions
    31

    Default Re: Link Manager 3.0 Support Thread

    Quote Originally Posted by fajmp View Post
    Can someone reply to this? It's a very weird and possibly dangerous (to my website) happening.
    URL for your site?

    You can turn the sidebox off admin -> tools -> layout boxes controller

  3. #3
    Join Date
    Jun 2008
    Location
    Canada
    Posts
    134
    Plugin Contributions
    0

    Default Re: Link Manager 3.0 Support Thread

    That's what concerns me...I had it turned off! I had turned it off a couple of days before to think about the best way to use it. And then I got the email saying that someone had put in a new link.
    A bad link.

    http://www.talkingwalls.ca/talkingwalls/

    Do you suppose it would take that long for the email to get through?

  4. #4
    Join Date
    Nov 2005
    Location
    Colorado Springs, CO USA
    Posts
    7,033
    Plugin Contributions
    31

    Default Re: Link Manager 3.0 Support Thread

    Quote Originally Posted by fajmp View Post
    That's what concerns me...I had it turned off! I had turned it off a couple of days before to think about the best way to use it. And then I got the email saying that someone had put in a new link.
    A bad link.

    http://www.talkingwalls.ca/talkingwalls/

    Do you suppose it would take that long for the email to get through?
    If it was a link from a spammer; they wouldn't necessarily need to link to the submit link page from the sidebox. They could have used a "bot" that would search for and then submit a link automatically.

    That's why ALL links must be approved from your admin panel before they are displayed.

    You might want to check through the support thread for the "captcha" fix which can help reduce spam links.

  5. #5
    Join Date
    Jun 2008
    Location
    Canada
    Posts
    134
    Plugin Contributions
    0

    Default Re: Link Manager 3.0 Support Thread

    that's very true. It wasn't spam I guess, just a ###### link..so it makes me think that reciprical linking is not such a great idea.
    thank you for your input.

  6. #6
    Join Date
    Nov 2005
    Location
    Colorado Springs, CO USA
    Posts
    7,033
    Plugin Contributions
    31

    Default Re: Link Manager 3.0 Support Thread

    Quote Originally Posted by jabbawest View Post
    Well, a little searching found that this needs to be allowed in the php.ini file by adding the following.
    allow_url_fopen = On;
    allow_url_include = On;


    More research suggests that doing this would allow a huge opening for DoS attacks and scripting injections both of which I'm quite familiar with from running php-nuke sites. Back then I was able to install a security module that would automatically ban anyone trying hack into my sites.

    Any opinions about this, or maybe it should be a new topic in the security forum?

    Thanks
    I'm looking at alternatives for this.

  7. #7
    Join Date
    Nov 2005
    Location
    Colorado Springs, CO USA
    Posts
    7,033
    Plugin Contributions
    31

    Default Re: Link Manager 3.0 Support Thread

    Quote Originally Posted by jabbawest View Post
    Well, a little searching found that this needs to be allowed in the php.ini file by adding the following.
    allow_url_fopen = On;
    allow_url_include = On;


    More research suggests that doing this would allow a huge opening for DoS attacks and scripting injections both of which I'm quite familiar with from running php-nuke sites. Back then I was able to install a security module that would automatically ban anyone trying hack into my sites.

    Any opinions about this, or maybe it should be a new topic in the security forum?

    Thanks
    Quote Originally Posted by clydejones View Post
    I'm looking at alternatives for this.
    This fix uses a CURL alternative to "allow_url_fopen".

    Just unzip the package and upload the file to your admin folder.

    jabbawest_fix.zip

 

 

Similar Threads

  1. Testimonial Manager Support Thread
    By clydejones in forum All Other Contributions/Addons
    Replies: 1500
    Last Post: 4 Feb 2021, 04:12 PM
  2. v154 News Box Manager v2.0.0 [Support Thread]
    By lat9 in forum All Other Contributions/Addons
    Replies: 84
    Last Post: 19 Jan 2021, 04:17 PM
  3. Download File Manager Support Thread
    By balihr in forum All Other Contributions/Addons
    Replies: 24
    Last Post: 17 Aug 2017, 10:32 PM
  4. Poll Manager Support Thread
    By boudewijn in forum Addon Sideboxes
    Replies: 148
    Last Post: 27 Jan 2016, 09:53 AM
  5. Empty Cart Manager [support thread]
    By Steven300 in forum All Other Contributions/Addons
    Replies: 49
    Last Post: 26 May 2010, 10:26 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg