Kye-U Browser Security Pack v4.49 [Proxomitron]

Discussion in 'other security issues & news' started by Kye-U, Dec 30, 2005.

Thread Status:
Not open for further replies.
  1. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Version 4.49 is Released!

    Last Updated: December 30th, 2005 - 12:09 AM EST

    What's New?

    http://kyeu.info/proxo/forums/viewtopic.php?p=1115#1115

    Download here!

    MD5: D8E224D4AF0C4FA37B11BB70A11CC503
     
    Kye-U, Dec 30, 2005
    #1
  2. dog

    dog Guest

    Hmmm - The Download leads to the 404 page. :doubt: :(
     
    dog, Dec 30, 2005
    #2
  3. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Gee that was fast xD

    Thanks, updated!
     
    Kye-U, Dec 30, 2005
    #3
  4. dog

    dog Guest

    LOL now it's leading to this 403 page :D
     

    Attached Files:

    • 403.jpg
      403.jpg
      File size:
      30.2 KB
      Views:
      35
    dog, Dec 30, 2005
    #4
  5. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Do you have the referrer header enabled?

    I've made it so that it checks the referrer header xD
     
    Kye-U, Dec 30, 2005
    #5
  6. dog

    dog Guest

    This one is cute too :) You cRaZy cAnUk :D
     

    Attached Files:

    dog, Dec 30, 2005
    #6
  7. dog

    dog Guest

    Ok that explains it. :) No problem once the referrer is passed.
     
    dog, Dec 30, 2005
    #7
  8. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Code:
    SetEnvIfNoCase Referer "^http://www.kyeu.info/" locally_linked=1
SetEnvIfNoCase Referer "^http://www.kyeu.info$" locally_linked=1
SetEnvIfNoCase Referer "^http://kyeu.info/" locally_linked=1
SetEnvIfNoCase Referer "^http://kyeu.info$" locally_linked=1
<FilesMatch "\.(gif|png|jpe?g|zip|rar|php|exe)$">
  Order Allow,Deny
  Allow from env=locally_linked
</FilesMatch>
    In other words, if you're not from http://kyeu.info/, you will see those sexy 403 pages ;)

    I see you like them :D
     
    Kye-U, Dec 30, 2005
    #8
  9. dog

    dog Guest

    Definitely some of the best I've seen. :D
     
    dog, Dec 30, 2005
    #9
  10. Brinn

    Brinn Registered Member

    Joined:
    Aug 5, 2004
    Posts:
    181
    Location:
    Canada
    Woot! I had a feeling v4.49 was coming. I love Proxo, but without guys like you, I wouldn't be able to get much out of it.
     
    Brinn, Dec 30, 2005
    #10
  11. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    Dog, in my spare time, I like to work on my 403 and 404 error pages :)

    Brinn, you are most welcome ;)
     
    Kye-U, Dec 30, 2005
    #11
  12. dog

    dog Guest

    Oh yes ... I forgot to say thanks. :oops: Opps

    Good Work as usual ;)
     
    dog, Dec 30, 2005
    #12
  13. Gzarnenplat

    Gzarnenplat Guest

    Ummmm... I don't get this. Exactly how are you supposed to get past these 403/404 pages and download the update?
     
    Gzarnenplat, Dec 30, 2005
    #13
  14. Gzarnenplat

    Gzarnenplat Guest

    I got it now. You just got to quickly hit the link on the page before you're redirected Doh!
     
    Gzarnenplat, Dec 30, 2005
    #14
  15. minceypw

    minceypw Registered Member

    Joined:
    Sep 25, 2005
    Posts:
    22
    Thanks Kye-U. Is there a guide on how to integrate/merge Security Pack v4.49 together with Grypen's filter set? Normally I'd wait for Grypen to update his filter set to include your latest security packs. But this wmf vulnerability seems too serious to wait around.
     
    minceypw, Dec 30, 2005
    #15
  16. Brinn

    Brinn Registered Member

    Joined:
    Aug 5, 2004
    Posts:
    181
    Location:
    Canada
    There's a read me file in the .zip. Click on Web Page on the the Edit side of the Proxon UI. Select every thing from Kye-U Security Pack v4.xx and Kye-U End and delete. There's also a few entries under Headers that need to be removed also (they're listed in the Read Me). Then merge the new .cfg into the default and save.

    If you don't want to do that, then just add the entries Kye-U wrote here:

    https://www.wilderssecurity.com/showpost.php?p=643186&postcount=16

    This deals specifically with the wmf exploit.
     
    Brinn, Dec 30, 2005
    #16
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...