Register Members List Search Today's Posts Mark Forums Read

Reply
 
Thread Tools
  #1  
Old 30 Jul 2006, 04:04
D2S05 D2S05 is offline
 
Join Date: Oct 2005
Question How do I get sure I'm not being hacked?

Hi, I'm not sure if this is the correct subforum, feel free to move it if it's not.

I've been contacted by an agent from ztmc.com, this guy offered me $50.00 USD in advance each month for introducing text ads in our vb board. When I accepted, he sent me not a HTTP code as I though he would, but some php and xml files and I'd like to be sure those files are completely safe:

The instructions:

* Upload the empty file named ad_network_ads_405.txt set the web server to have write permissions to this file. An easy way to set the permissions would be with the following command:

chmod 666 ad_network_ads_265.txt

* Upload ad_network_405.php (note both files should be uploaded to the root of the forums)
* In the Styles/Templates section of the Admin section, edit the SHOWTHREAD_SHOWPOST, printthread and footer templates, and add the following to it (somewhere appropriate):

footer:
$ad_network


# Import product-advertising_links.xml under AdminCP -> Plugin System -> Manage Products -> Add/Import Product
The xml file:


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

The php file:


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

If you find anything suspicious or find them clean I'd really appreciate your opinion as I don't understand a bit of php or xml programming.


Thank you!

Last edited by peterska2; 30 Jul 2006 at 04:07. Reason: added code tags
Reply With Quote
  #2  
Old 30 Jul 2006, 13:28
Paul M's Avatar
Paul M Paul M is offline
 
Join Date: Sep 2004
Real name: Paul M
The XML is fine - it's just the vb product file to upload the plugins.

The php is quite complicated so it's hard to say really, do you have some reason to suspect it ?
__________________
Former vBulletin.org Staff Member


Cable Forum
Please do not PM me about custom work - I no longer undertake any.
Note: I will not answer support questions via e-mail or PM - please use the relevant thread or forum.
Reply With Quote
  #3  
Old 30 Jul 2006, 17:00
D2S05 D2S05 is offline
 
Join Date: Oct 2005
Yes, i never heard before about ads that would need this kind of scripts, and the emails received from the agent never were signed with phones, complete company name, charge, etc. He never sent a brochure or something, and Its maybe nothing, but as I am not sure I'm still investigating... I won't make a step until I know for sure these codes are safe.
Reply With Quote
  #4  
Old 30 Jul 2006, 17:06
AN-net's Avatar
AN-net AN-net is offline
 
Join Date: Dec 2003
have you considered google adsense or yahoo publishers network? they are somewhat more repuitable.
Reply With Quote
  #5  
Old 30 Jul 2006, 17:12
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
What i think it does is that it will pull the content (didn't really check the script) from an external server. That means that even if it is ok now, they could remotely insert unsecure things. Personally i would only allow this from well known trusted sites.

I don't know this website, but that means not much, not very familiar with advertisement suplliers.
Reply With Quote
  #6  
Old 31 Jul 2006, 06:47
D2S05 D2S05 is offline
 
Join Date: Oct 2005
What would be the worst escenario in case these guys were malicious?, I mean, introducing these scripts would put in danger the integrity of the whole forum?, we really don't need that much the money, I'm just curious about it... I think we'll check for google ads...

Thanks to you all.
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 03:26.

Layout Options | Width: Wide Color: