ddlx 4 Posted August 28, 2012 Report Share Posted August 28, 2012 Hi all, My fisrt contribution, hope you ll like it. This is an astuce to protect your compiled boot with loggin and password, simply by using an "htaccess" protection : HOW TO : 1) Fisrt : make an html page with like this : mypage.html <html> <head> <META NAME="keywords" CONTENT="passwordok"> <title>Hello dolly</title> </head> <body> hello dolly </body></html> 2) Protect this page with htacess : (Login and password) 3) Then tell the bot to connect to this page using : http://login:pass@my...com/mypage.html 4) And verify if meta keyword contain "passwordok" If meta keyword show "passwordok" (password and login OK)Them the bot will run If metakeyword dont show passwordok (Password and login not ok)Them the bot will stop Simple but working THE CODE : ui text box("Login", #login) ui text box("Pass", #pass) navigate("http://{#login}:{#pass}@mysite/mypage.html", "Wait") if($comparison($meta keywords, "=", "passwordok")) { then { alert("OK GOOD") } else { alert("NO GOOD") stop script } } =====Then you ll just have to add all allowed "login and password" to your htaccess (witch is working like an licence server).===== Have fun (if it work) 1 Quote Link to post Share on other sites
blumi40 222 Posted August 28, 2012 Report Share Posted August 28, 2012 search google for socketsniffingits easy to crack that i thing Quote Link to post Share on other sites
ddlx 4 Posted August 28, 2012 Author Report Share Posted August 28, 2012 Well if the hacker succed in craking htaccess yes, but .htaccess is already a good protection i think. Quote Link to post Share on other sites
blumi40 222 Posted August 28, 2012 Report Share Posted August 28, 2012 no not realy because hacker are hacking most for fame that means if one hacker got it the torrent and warez world got itby the way u dont must crack htaccess cause socket sniffs the rawdata Quote Link to post Share on other sites
ddlx 4 Posted August 28, 2012 Author Report Share Posted August 28, 2012 OK, well... i think this is anyway a good starting protection for bot. Quote Link to post Share on other sites
merkaba 36 Posted August 28, 2012 Report Share Posted August 28, 2012 Thats pretty much how I did it years ago in vb6, parsing data from a page. Really depends on who your market is, if its not geared for or of no use to people in the seo/cracking/hacking market, not many people are going to bother. If it is though (like bot, friend adder or anything else) it'll be cracked. Quote Link to post Share on other sites
Josh 37 Posted October 21, 2012 Report Share Posted October 21, 2012 I don't understand how this is any protection at all? If one person buys the bot, couldn't they simply share that bot with anyone and it would always work? since the password it built into the bot? Quote Link to post Share on other sites
LoWrIdErTJ - BotGuru 904 Posted October 21, 2012 Report Share Posted October 21, 2012 htaccess or any login process can be bypassed by a cracker with host file changes on the local machine.easy common process used. login process would be a first step defense, but not a solid deterrent for crackers/hackers Quote Link to post Share on other sites
blumi40 222 Posted October 21, 2012 Report Share Posted October 21, 2012 TJ and whats about the idea to check the hostsfile before check the lizenz?should work i thing Quote Link to post Share on other sites
LoWrIdErTJ - BotGuru 904 Posted October 21, 2012 Report Share Posted October 21, 2012 no, because there are other ways besides the host file check that can be done, but im for obvious reasons not going to mention those.. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.