SHAD Posted May 23, 2010 Share Posted May 23, 2010 I was wondering if anyone could make a system for mccodes that tracks any hacking attempts made and give a littile details of where they are made and how they were made, so the owner can take action and fix the problem. Quote Link to comment Share on other sites More sharing options...
Danny696 Posted May 23, 2010 Share Posted May 23, 2010 Hmm, try something like a log user, see what the add to the URL e.g forum/crystal hack both use urls. Thats probabbly your best bet i think. Quote Link to comment Share on other sites More sharing options...
sniko Posted May 23, 2010 Share Posted May 23, 2010 It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition. Quote Link to comment Share on other sites More sharing options...
Dave Posted May 23, 2010 Share Posted May 23, 2010 It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition. Or you could just log every SQL query? Use regex to get out the data and then dump it in a logs table :) This could be slow though. Quote Link to comment Share on other sites More sharing options...
Curt Posted May 23, 2010 Share Posted May 23, 2010 There is a free log user system in these forums somewhere that log all url actions from a player while they are on your site. so if they went to this link: http://www.yourgame.com/crystalmarket.php?hack=hackhere then it will show in the logs. I made my system so it automatically logs all new players for a set limit because if someone wants to hack your game, most likely they are not gonna hang out for a few days before they attempt a hack. They usually go right for the hacks. So my log system will catch the attempts. Only downside to this is you have to manually go through and look at the logs. Its a nice mod and Thanks for whoever made it :) I would link you but ive had it for so long im not sure where to find it. maybe search "log system" ? hope that helps ya out some. Cheers Quote Link to comment Share on other sites More sharing options...
Dayo Posted May 23, 2010 Share Posted May 23, 2010 Only downside to this is you have to manually go through and look at the logs. try making a filter so it only shows urls that include certian phrases e.g. DROP, UPDATE, user_level etc etc... Quote Link to comment Share on other sites More sharing options...
Danny696 Posted May 23, 2010 Share Posted May 23, 2010 the fre log system doesnt work Quote Link to comment Share on other sites More sharing options...
Curt Posted May 23, 2010 Share Posted May 23, 2010 the fre log system doesnt work very strange...it works fine for me ? Quote Link to comment Share on other sites More sharing options...
SHAD Posted May 23, 2010 Author Share Posted May 23, 2010 Works perfect, i found it. it logs all the urls player enter. Quote Link to comment Share on other sites More sharing options...
Curt Posted May 23, 2010 Share Posted May 23, 2010 cool, i was also looking for it but didnt find it :P... lol but i did find this which im going to check out... [MMCODES V2] HACKING ATTEMPTS LOGGED Quote Link to comment Share on other sites More sharing options...
SHAD Posted May 23, 2010 Author Share Posted May 23, 2010 That works really well also, it gives details of any querys being manipulated. edit: here is the link to loging user [Free] Log Suspicious Users Quote Link to comment Share on other sites More sharing options...
Guest Drizzle Posted May 24, 2010 Share Posted May 24, 2010 It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition. Or you could just log every SQL query? Use regex to get out the data and then dump it in a logs table :) This could be slow though. You talking about logging every query into a "example.log", and then using regex to interpret the data and put it in a table? Sounds good, but not many people here know how to use regex that well. Quote Link to comment Share on other sites More sharing options...
Jordan Palmer Posted May 24, 2010 Share Posted May 24, 2010 Then they'll have to learn or pay someone Quote Link to comment Share on other sites More sharing options...
CrazyT Posted May 24, 2010 Share Posted May 24, 2010 You can simply edit the class to see if a query fails? Example... $rs = mysql_query($sql, self::$link); if ($rs === false) { mysql_query('INSERT INTO `db_logs` (`sql`, `time`) ..... ect'); } Quote Link to comment Share on other sites More sharing options...
Jordan Palmer Posted May 24, 2010 Share Posted May 24, 2010 Good idea Alan.. I totally didn't think of making use off the class lol Quote Link to comment Share on other sites More sharing options...
Danny696 Posted May 24, 2010 Share Posted May 24, 2010 I did, before this topic was even alive. Previously posted on DF, ill bring it here now. Quote Link to comment Share on other sites More sharing options...
Danny696 Posted May 24, 2010 Share Posted May 24, 2010 [mccode v2.x] Log databse errors Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.