rejetto forum

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - bmartino1

Pages: 1 ... 46 47 48 49 50 ... 61
706
http://www.rejetto.com/forum/hfs-~-http-file-server/new-version-2-3b/

rejeto released a new build 290 to fix some security issues, seing as this is template issue, i was wondering if there will be an upgrade to a new version soon?

707
HFS ~ HTTP File Server / Re: New version: 2.3b
« on: August 25, 2014, 03:13:12 PM »
can you post the new hfs.tpl file for download?
NVM:

see attach

708
HFS ~ HTTP File Server / Re: How to Host Your Own Cloud v2.0
« on: August 19, 2014, 03:43:25 PM »
so, as a reference, as your guide is using ubuntu. are you on ubuntu if so, what version of ubuntu?  ???

----as a start prereq, this guide uses this:
The following list describes the major updates in this guide will cover this:

Software: Ubuntu Server 14.04 64-bit
Easier file transferring between server and client
Fixed many permission issues
Fixed some potential security issues
Developed automated scripts to backup data to the server from the client
Updated configuration steps for Apache2
For those who read my previous cloud guide, I included a software called Ampache, which allowed music to be streamed from the cloud. I will not be including this software configuration initially in this guide. Ampache is currently undergoing major changes and I do not want to write the configuration before the changes are complete.
Other minor fixes
----------


as it may be that you haven't allowed the service/port through on ubuntu!:

https://help.ubuntu.com/10.04/serverguide/networking.html

set a static ip:
http://www.howtoforge.com/linux-basics-set-a-static-ip-on-ubuntu


-------------
then ther are better guides, as such i recomed yousetup "LAMP" first, then go to that guide for turnign it into a cloud server:

https://www.digitalocean.com/community/tutorials/how-to-install-linux-apache-mysql-php-lamp-stack-on-ubuntu

709
Started a New topic for this:
http://www.rejetto.com/forum/hfs-~-http-file-server/how-to-host-your-own-cloud-v2-0/

-------------------------------
Hey Guys,

I've been following this guide http://www.instructables.com/id/How-to-Host-Your-Own-Cloud-v20/

and I'm stuck in Step 4 currently. I have a Linksys E2500 router and I tried using this http://www.yougetsignal.com/tools/open-ports/

But it seems that all my ports are closed and I've tried a million different things and nothing. I can't externally access my publicIP:8080

I don't know what else I can try at this point.

Any help will be very much appreciated,

Thanks!

-----------

review step 3 and make sure you reread all and configure it all...
http://www.instructables.com/id/How-to-Host-Your-Own-Cloud-v20/step3/Configure-Apache2/

dopuble check you port configuration with netstat:
http://manpages.ubuntu.com/manpages/precise/man8/netstat.8.html

Restart to guarantee configs saved and reloaded!

710
HFS ~ HTTP File Server / How to Host Your Own Cloud v2.0
« on: August 19, 2014, 03:37:13 PM »
http://www.instructables.com/id/How-to-Host-Your-Own-Cloud-v20/step1/Prerequisites/

---in response for --
http://www.rejetto.com/forum/hfs-~-http-file-server/i-cant-get-port-8080-to-work-out-side-my-internet-is-it-a-possible-bug/msg1059401/#msg1059401

---------
Offline jetbreaker
Occasional poster
*
Posts: 1
View Profile  Email  Personal Message (Offline)

Re: I can't get port 8080 to work out side my internet , is it a possible bug ?
« Reply #13 on: August 16, 2014, 10:11:49 AM »
QuoteThank You
Hey Guys,

I've been following this guide http://www.instructables.com/id/How-to-Host-Your-Own-Cloud-v20/

and I'm stuck in Step 4 currently. I have a Linksys E2500 router and I tried using this http://www.yougetsignal.com/tools/open-ports/

But it seems that all my ports are closed and I've tried a million different things and nothing. I can't externally access my publicIP:8080

I don't know what else I can try at this point.

Any help will be very much appreciated,

Thanks!-------

711
HFS ~ HTTP File Server / Re: Deconfiguring template
« on: August 12, 2014, 09:48:29 PM »
ok, thank you for making a video, iu see the problme now...

That is how the web browsers cashes the page...

it is sometimes a problem with hfs default template due to your secreen being a "wide screen"

what is your curent desktop resolution???
at a guess i would say (1920 × 1080)
http://en.wikipedia.org/wiki/Display_resolution

what has happened is that the default hfs template doesn't define where the items look and will look.
so when you go to that page the browser read the cashe and the tpl file in order...

it a fairly easy fix... rejeto would be of beter help as it is hfs default template
but you need to apply a "HTML Layouts"
http://www.w3schools.com/html/html_layout.asp

712
btw... c$ is a windows default read only share, as this scrpt gave them acess to c, i asume he was on c$...
http://en.wikipedia.org/wiki/Administrative_share

--------------------------
lolz.. he closed the forum and youtube link... rofl.....
(guess he didn't want to get into trouble...)

well, its was a python code that used rpc

----------------------------
anyways if it helps:
(hfsrpc.py) - was in the cmd windows...

---------picture in with post had:
setting the local host and rhost to the same port something like "444444"
(both were the same for coming in

and remote port, setting up windows traffic to a random connecting port....
something like "124445"
(creating a fake random port conection)
(both were the same for going out...)

Ports are from (memory/don't remember them ... weren't assigned to specific services/protocols as such they must have been random...)

then script sending it through the broadcast to gain access to the root folder of hfs... (random victim)

as if you remotely oppend a cmd prompt on that machine...(unknown if it gave write permissions definitely read/traverse)
didn't have/give much, but it was a python code(he replied back and said so not so much who.how.what)... but deliberate to gain access into hfs2.3a and the c: drive of an hfs machine...

i haven't been hacked, and i'm surprised to see comments of those who have.
-----------------------

this is as much as i can be of help, unknown what protocol/data/how they are getting in, just trying to share form what i saw when i replied to this post... (the fact that on a previous chinese post shows that this user has used this script miscoulious, and possible that he isn't the creator, show that he might never "sign in"...

http://www.rejetto.com/forum/italiano/template-craccato-***importante***-11437/

itialin poster saying xpolit user did this:
-------
https://translate.google.com/#auto/en/Ciao%20a%20tutti%2C%0Ami%20rifaccio%20vivo%2C%20perch%C3%A8%20oggi%20ho%20notato%20che%20il%20mio%20webserver%20era%20stato%20craccato!%0AIn%20pratica%2C%20digitando%20l'indirizzo%20associato%2C%20al%20posto%20della%20pagina%20template%20che%20avevo%20impostato%2C%20compariva%20il%20messaggio%3A%0A%0Ahacked%20by%20xpl01t%20HFS%200day%20exploiter%0A%0ACollegandomi%20al%20server%2C%20mi%20sono%20accorto%20che%20era%20presente%20un%20file%20*tpl%20modificato%20dall'hacker.%20Ho%20subito%20ripristinato%20il%20mio%20ma%20la%20cosa%20mi%20allarma.%20Mi%20sa%20che%20urge%20una%20patch%20correttiva!%20La%20versione%20che%20uso%20%C3%A8%20la%202.3%0A%0AVedi%20anche%20http%3A%2F%2Fwww.rejetto.com%2Fforum%2Fhfs-~-http-file-server%2F%2528hfs-2-3a%2529-0day-vulnerability-discovered-by-me!%2F%20%0A%0ASaluti%0AAL
----------

713
Italiano / Re: Template craccato ***IMPORTANTE***
« on: August 09, 2014, 03:19:23 PM »
http://www.rejetto.com/forum/hfs-~-http-file-server/(hfs-2-3a)-0day-vulnerability-discovered-by-me!/

--------
https://translate.google.com/#auto/en/Ciao%20a%20tutti%2C%0Ami%20rifaccio%20vivo%2C%20perch%C3%A8%20oggi%20ho%20notato%20che%20il%20mio%20webserver%20era%20stato%20craccato!%0AIn%20pratica%2C%20digitando%20l'indirizzo%20associato%2C%20al%20posto%20della%20pagina%20template%20che%20avevo%20impostato%2C%20compariva%20il%20messaggio%3A%0A%0Ahacked%20by%20xpl01t%20HFS%200day%20exploiter%0A%0ACollegandomi%20al%20server%2C%20mi%20sono%20accorto%20che%20era%20presente%20un%20file%20*tpl%20modificato%20dall'hacker.%20Ho%20subito%20ripristinato%20il%20mio%20ma%20la%20cosa%20mi%20allarma.%20Mi%20sa%20che%20urge%20una%20patch%20correttiva!%20La%20versione%20che%20uso%20%C3%A8%20la%202.3%0A%0AVedi%20anche%20http%3A%2F%2Fwww.rejetto.com%2Fforum%2Fhfs-~-http-file-server%2F%2528hfs-2-3a%2529-0day-vulnerability-discovered-by-me!%2F%20%0A%0ASaluti%0AAL

----------

714
interesting...
rejetto should be informed!

i recall a previous version with issue in sharing a real folder giving access to the whole drive....

from what it looks like, you took the source code and turned a specific script into a hacking tool. (  :) / :(  )
do you wish to share any suggestions on how to possibly secure/ prevent remote acess?

and/or as windows "c$" is what it looks like your on, do you have write capabilities???

715
Pусский / Re: Шаблон Salaf для HFS
« on: August 04, 2014, 01:54:49 PM »
Cool, i look forward to seeing it.

--------------------------------------
https://translate.google.com/

(russian) -english

>translated<

---------------

717
HFS ~ HTTP File Server / Re: accept connection on
« on: August 04, 2014, 01:44:03 PM »
you have to setup bans:

http://www.rejetto.com/wiki/index.php?title=HFS:_IP_masks

in hfs> Menu > Limits > Bans:

its a litle bit more than just this, but you will need this:

what may work:

*.*.*.*
\192.168.X.X (The ip address that hfs is on)
\192.168.X.0-192.168.X.254 (the local network)

-- if works, the blocks tell hfs to ban all ip but to exclude the ip hfs is using and to allow connection for that ip subnet range. --

Good luck and have fun!
:)


718
FHFS / Re: 500 - This account is missing it's root file folder
« on: July 31, 2014, 01:17:02 AM »
raybob would be of better help, but review this forum post first:

http://www.rejetto.com/forum/fhfs/way-to-change-default-url-root/msg1059177/#msg1059177

since you've stated that you have fhfs on a separate drive,

i'm almost willing to bet that you didn't specify the users to be on that drive(so it is defaulting to "c:///etc...") and/or that drive path that you have set was not set to be the same drive letter at each usb insertion/startup...

719
HTML & templates / Re: i need help please !
« on: July 26, 2014, 12:16:14 PM »
see previous post:
http://www.rejetto.com/forum/hfs-~-http-file-server/information-(mime-types)-embed-pdfsvideo-and-audio/

In hfs double check your mime types to include the flv / fpmeg, that will allow it to open your html and play...

720
HFS ~ HTTP File Server / Re: Webcam on HFS
« on: July 26, 2014, 12:11:46 PM »
you can use this here:
http://www.testwebcam.com/

and download the flash files that it uses... via internet save website as (which wilg et the resources and revamp the html page...

then you will be using the webcam via flash...

seeattachment

Pages: 1 ... 46 47 48 49 50 ... 61