Comments on: PHPIDS Threesome

By: .mario

.mario — Wed, 05 Sep 2007 15:33:28 +0000

Thanks for the info SIrDarckCat! I will put this link into the Google Group this weekend to discuss this option with the team..

Greetings,
.mario

By: sirdarckcat

sirdarckcat — Tue, 04 Sep 2007 16:15:33 +0000

mario:
you can use http://free-mysql.bizhostnet.com/ — maybe add a table with a username and password xD
I think that with mysql is more than enough :P

Greetz!!

By: .mario

.mario — Tue, 04 Sep 2007 15:57:09 +0000

@Giorgio: Will do!

@SirDarckCat: Yep - you’re right. I’ve been switching between three blogs during fixing the rules and doing some daily business ;)

An SQL Injection sandbox is pretty hard to build but I will see what I can do this weekend. It will most probably built on my Server and not on the PHPIDS box. The problem though remains only that there can only be a limited amount of DBMS which makes the results pretty unsharp.

By: sirdarckcat

sirdarckcat — Tue, 04 Sep 2007 12:54:36 +0000

is it just me, or sla.ckers is a little forgotten?
now we post on each other blogs xD
I was wondering why today I got some refers from planet-websecurity.org, and (I thought I was added to the feed, but.. no hehe) well.. the PHPIDS hacking (un?)official contest is on (again).

As ma1 said, the SQL Injection filters are a little forgotten, but we should have a sandbox to test (as the script tags in php-ids), any way..

Greetz!!

PS. the window.name trick rules xD

By: Giorgio

Giorgio — Tue, 04 Sep 2007 12:20:14 +0000

@Gareth Heyes:
thanks, that’s why I didn’t post comments on your blog anymore — not that a GreaseMonkey script couldn’t do the trick, but enabling JS just to post a comment is against my faith ;)

@christ1an:
thanks for the addition, I changed the feed to “full content” — no big deal now, since I enabled both transparent gzip compression and caching for all the blog content…

@.mario:
Thanks for the challenge. Let me know when you’re ready for SQL Injections!

By: .mario

.mario — Tue, 04 Sep 2007 11:43:01 +0000

Fixed, fixed and fixed!

I guess Christian just forgot - no offense intended at all. BTW - he just added your blog as far as I can see ;)

Greetings’n'thx!

By: christ1an

christ1an — Tue, 04 Sep 2007 11:18:26 +0000

Thanks for your feedback. I have absolutely no clue why these vectors slip through our rules as I ‘ve tried it before about 2 million times the same way. Consider them fixed. ;)

Ah and, be sure I don’t have anything against you. It’s just that I tend to forget about such things. You’re added now but I’ll release a new version of the planet next weekend anyway.

Hey could you provide a feed that contains the full text of your entries?

By: Gareth Heyes

Gareth Heyes — Tue, 04 Sep 2007 11:10:31 +0000

Nice!

The biggest compliment I can pay you and Sirdarkcat is that I won’t enable javascript looking at your sites LOL.

I was also wondering why your site wasn’t included in the Planet Web Security. Come on Christ1an, you know he deserves to be on there.