Codezwiz >> Forums >> General PHP Nuke Help >> Security help-info on phpnuke sites

I recieved an email from someone who hacked into codnation.com You go their site and it is splattered all over their first page. I run PHPNuke 7.9 what do I need to as far security to secure my site?

What are the best security measures?

Nuke 7.7 through 7.9 are not very secure, and they are no longer being patched with security fixes. 7.6 was the last real secure Nuke and is still being patched (latest patch version 3.2) You should also be running something like NukeSentinel� as an addon security measure. You can get the latest version [ Register or login to view links on this board.] .

Originally posted by echo @ Fri Apr 28, 2006 1:18 am:

Nuke 7.7 through 7.9 are not very secure, and they are no longer being patched with security fixes. 7.6 was the last real secure Nuke and is still being patched (latest patch version 3.2) You should also be running something like NukeSentinel� as an addon security measure. You can get the latest version [ Register or login to view links on this board.] .

Thank you so much for your help but which one would I use?

I believe it's this one: [ Register or login to view links on this board. ]
Just remember to backup all original files involved before editing/overwriting.

Originally posted by echo @ Fri Apr 28, 2006 5:32 am:

I believe it's this one: [ Register or login to view links on this board. ]

thanks but now its says it is an invalid file. It shows up as a .tar.tar

I will add it here in zip form, please tell me when you have it so I can remove it.

Originally posted by echo @ Fri Apr 28, 2006 5:48 am:

I will add it here in zip form, please tell me when you have it so I can remove it.

Thank you very much. Do I upload these into the existing file such as: All admin files go into the admin folder already in my site or do I upload the folder so it is all by itself?

Originally posted by tyler811 @ Fri Apr 28, 2006 6:32 am:

Originally posted by echo @ Fri Apr 28, 2006 5:48 am:

I will add it here in zip form, please tell me when you have it so I can remove it.

Thank you very much. Do I upload these into the existing file such as: All admin files go into the admin folder already in my site or do I upload the folder so it is all by itself?

Ok I got everything in but now I get this

Operation Status!

--------------------------------------------------------------------------------
Everything seems to have completed succeesfully

--------------------------------------------------------------------------------
Operation Complete!
Goto NukeSentinel� Admin

And then this:
It appears that NukeSentinel� has not been configured correctly. The most common cause is that you either have an error in the syntax that is including includes/nukesentinel.php from your mainfile.php, or you have not added the NukeSentinel� code to your mainfile.php. Details for including this code are included in the download package in the Edits_For_Core_Files directory.

What is wrong?

Did you edit the mainfile as stated in the "Edits_For_Core_Files" folder?

the mainfile 7.9 has this and tons more:

This file is for instructional use. */
/* By: NukeScripts Network (webmaster@nukescripts.net) */
/* [ Register or login to view links on this board. ] */
/* Modifications Copyright � 2000-2006 by NukeScripts Network */
/************************************************************************/
/* Based on Patched 3.1 mainfile.php your mainfile.php may differ from */
/* the examples found here. */
/************************************************************************/

#
#-----[ OPEN ]------------------------------------------
#
mainfile.php

#
#-----[ FIND ]------------------------------------------
#
if (defined('FORUM_ADMIN')) {
@require_once("../../../config.php");
@require_once("../../../db/db.php");
@require_once("../../../includes/sql_layer.php");
if (file_exists("../../../includes/custom_files/custom_mainfile.php")) { @include_once("../../../includes/custom_files/custom_mainfile.php"); }
@require_once("../../../includes/ipban.php");
if (defined('NUKE_HEADER') &&

What am I supposed to do? And thank you so much for all your help. You have went above and beyond the call for help