Waraxe IT Security Portal

Kliber · Beginner

That should be the name for your papers collection Cool

As a Nuke user afther reading some of them I got filled with a mix of disturbing and mesmerizing "stuff"; the "Exploit Explained" its one of the bests ways to understand security problems in order to fix them, and I enjoyed a lot the way you write them; as a full disclosure believer I must congratulate your work, BUT, would be REALLY nice to make public aviable the fix for each paper you wrote (I see your efforts on this, keep the good work) , so, web owners can test exploits and fix them at the same time. =)

PHP-Nuke its an open source (yet) software and that allow people like Waraxe to read the code and find those details that can compromise the code, ring the bell (releasing exploits and (or) proof of concept) so they can be fixed, hope in time; if evolution its right, this mean that the code should improve its security within the time, making, at least, not so easy to broke it.

Fulldisclosure its a double sided knife, too much or too less could be, er... bad? I just hope you guys keep a good level in the site, I see it like another approach to nuke security (and I know the site wont focus exclusive in Nuke) but the papers showing not only PHP nuke core problems, but also add onns and other scripts-nuke-related failures maked the site , IMHO, a must see for nuke owners (and lovers) Wink

; would be a shame to come back and see the forums full of "teach me how to deface a web" for script-kiddies wannabes Rolling Eyes

Regards and Good Luck!, once again, thanks for the papers!!! Very Happy

LINUX · Moderator

Waraxe is full disclosure RLZ Idea

waraxe · Site admin

Thanks for good words, Kliber. By the way - i will use PhpNuke 7.3 as web site engine for my own new website in near future. So all nuke fans can be sure - i WILL beat out from phpnuke MOST of the bugs, still left there from ages ago, so stay tuned and wait for new advisories (which are coming out soon) Wink

dotcomBOT · Regular user

wow

gr8 4 da nukers Smile

wht abt making out ur own package like nule cops? [ bNC bundle ]
or protection sys like "protector" and "fortress"

waraxe · Site admin

I will publish from time to time some phpnuke modifications and improvements (from security side), but just dont have time to make new phpnuke derivate or bundle. Besides, there are allready enough phpnuke versions.

ernad · Regular user

waraxe i want to talk with you about this site this site cant be so big because there are exploits only i will give you my hosting so you will dont need to pay it:

everything is unlimited bandwith and mysqls and others stuffs so we can upload big files and bandwith si no problem my hosting is like rocket plz if you have msn i want to talk with you :d