Kye-U Browser Security Pack v4.49 [Proxomitron]

Discussion in 'other security issues & news' started by Kye-U, Dec 30, 2005.

Thread Status:
Not open for further replies.
  1. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Version 4.49 is Released!

    Last Updated: December 30th, 2005 - 12:09 AM EST

    What's New?

    http://kyeu.info/proxo/forums/viewtopic.php?p=1115#1115

    Download here!

    MD5: D8E224D4AF0C4FA37B11BB70A11CC503
     
  2. dog

    dog Guest

    Hmmm - The Download leads to the 404 page. :doubt: :(
     
  3. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Gee that was fast xD

    Thanks, updated!
     
  4. dog

    dog Guest

    LOL now it's leading to this 403 page :D
     

    Attached Files:

    • 403.jpg
      403.jpg
      File size:
      30.2 KB
      Views:
      35
  5. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Do you have the referrer header enabled?

    I've made it so that it checks the referrer header xD
     
  6. dog

    dog Guest

    This one is cute too :) You cRaZy cAnUk :D
     

    Attached Files:

  7. dog

    dog Guest

    Ok that explains it. :) No problem once the referrer is passed.
     
  8. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Code:
    SetEnvIfNoCase Referer "^http://www.kyeu.info/" locally_linked=1
    SetEnvIfNoCase Referer "^http://www.kyeu.info$" locally_linked=1
    SetEnvIfNoCase Referer "^http://kyeu.info/" locally_linked=1
    SetEnvIfNoCase Referer "^http://kyeu.info$" locally_linked=1
    <FilesMatch "\.(gif|png|jpe?g|zip|rar|php|exe)$">
      Order Allow,Deny
      Allow from env=locally_linked
    </FilesMatch>
    In other words, if you're not from http://kyeu.info/, you will see those sexy 403 pages ;)

    I see you like them :D
     
  9. dog

    dog Guest

    Definitely some of the best I've seen. :D
     
  10. Brinn

    Brinn Registered Member

    Joined:
    Aug 5, 2004
    Posts:
    181
    Location:
    Canada
    Woot! I had a feeling v4.49 was coming. I love Proxo, but without guys like you, I wouldn't be able to get much out of it.
     
  11. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Dog, in my spare time, I like to work on my 403 and 404 error pages :)

    Brinn, you are most welcome ;)
     
  12. dog

    dog Guest

    Oh yes ... I forgot to say thanks. :oops: Opps

    Good Work as usual ;)
     
  13. Gzarnenplat

    Gzarnenplat Guest

    Ummmm... I don't get this. Exactly how are you supposed to get past these 403/404 pages and download the update?
     
  14. Gzarnenplat

    Gzarnenplat Guest

    I got it now. You just got to quickly hit the link on the page before you're redirected Doh!
     
  15. minceypw

    minceypw Registered Member

    Joined:
    Sep 25, 2005
    Posts:
    22
    Thanks Kye-U. Is there a guide on how to integrate/merge Security Pack v4.49 together with Grypen's filter set? Normally I'd wait for Grypen to update his filter set to include your latest security packs. But this wmf vulnerability seems too serious to wait around.
     
  16. Brinn

    Brinn Registered Member

    Joined:
    Aug 5, 2004
    Posts:
    181
    Location:
    Canada
    There's a read me file in the .zip. Click on Web Page on the the Edit side of the Proxon UI. Select every thing from Kye-U Security Pack v4.xx and Kye-U End and delete. There's also a few entries under Headers that need to be removed also (they're listed in the Read Me). Then merge the new .cfg into the default and save.

    If you don't want to do that, then just add the entries Kye-U wrote here:

    https://www.wilderssecurity.com/showpost.php?p=643186&postcount=16

    This deals specifically with the wmf exploit.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.