• AMXBans 5.1b has been released!

    by
    SeToY
    Published on 07.03.10 21:40
    31 Comments Comments
    Hello People,

    today, we're announcing the release of AMXBans 5.1b! Of course you can be sure, that the work on 6.0 will now continue harder than before.

    We were informed about a few important Security-Issues in AMXBans 5.0 and also in AMXBans 5.1, so we strongly recommend that anyone running these versions immediately patch their systems!

    If you are running 5.1 already, simply download 5.1b from the Download-Zone (http://www.amxbans.de/downloads.php?do=cat&id=1) and extract the 9 Patch files.
    Then upload these files, making sure to overwrite the existing ones.
    When you're running 5.0 (ugh...), you can upload 5.1b and run the setup.php from the /admins/ directory.

    The Patch-Files are:
    /ban_details.php
    /ban_details_ex.php
    /live.php
    /admins_list.php
    /getdemo.php
    /admin/add_ban.php
    /unavailable.php
    /admin/log_search.php
    /motd_details.php

    For security reasons, Downloading of AMXBans 5.1 has been disabled.
    Categories:
    1. News
    Comments 31 Comments
    1. Mark in cologne's Avatar
      I can't download it:
      Reply
    1. ¦•••SHERIFA•••¦'s Avatar
      Still waitin' for 6.0. I thought that it should be already released ~half month ago, but...

      Published on 12.02.10 18:07

      You can take this at a milestone to the release of AMXBans 6.0


      No need of 5.1 / 5.1b.
      Reply
    1. SeToY's Avatar
      @Mark:
      You should be able to.. "Registered Users" download-limit is set to "-1".
      Works also fine with my Testuser... Tested it 2 minutes ago.

      @Sherifa:
      Sure there is need for a 5.1b... Unless AMXBans 6.0 hasn't been released, we are forced to close open security-holes.
      And a "milestone" does not mean "release".
      Reply
    1. Mark in cologne's Avatar
      hmm it still (now, on a new day) doesn't work, I still get the message above.
      Maybe because of the Donator-Rank?
      I never downloaded something from here, from the vBulletin Board
      Reply
    1. SeToY's Avatar
      Yeah it was the Donators-Rank.. fixed.. sorry
      Reply
    1. Mark in cologne's Avatar
      No problem, thanks
      Reply
    1. CoZmicShReddeR's Avatar
      To bad you guys cannot make a update to bring my website of ten years and kill those guys from expgam1ng for wiping my website twice!

      At least they didn't wipe the database's...
      Reply
    1. dorin2oo7's Avatar
      Thanks for your effort in making this secure!
      Reply
    1. Fronix's Avatar
      What about the amx part?

      Should i update that too or what?
      Reply
    1. SeToY's Avatar
      No.
      Reply
    1. ¦•••SHERIFA•••¦'s Avatar
      Quote Originally Posted by SeToY View Post
      @Mark:
      You should be able to.. "Registered Users" download-limit is set to "-1".
      Works also fine with my Testuser... Tested it 2 minutes ago.

      @Sherifa:
      Sure there is need for a 5.1b... Unless AMXBans 6.0 hasn't been released, we are forced to close open security-holes.
      And a "milestone" does not mean "release".
      Nope, you areN'T forced to close open security-holes. Just release 6.0 and 5.0 / 5.1 will die soon. That's all.

      Now... even if you release 6.0 these months, there STILL be people, who will use 5.0 / 5.1(b) and they won't upgrade asap. Think 'bout.
      Reply
    1. SeToY's Avatar
      Well, it's a news discussion here, not a discussion about our coding-philosophy.

      As long as we are not releasing 6.0, we need to ensure, that older versions (5.1 in this case) are secure and stable. Basta.

      Even if people will not upgrade to 5.1b, we are in the safe manner to be able to say "this is not our fault, there was a security-fix.".
      Reply
    1. Dinamik's Avatar
      the security fix didn't work we put amxbans 5.1b and we have been injected with file injection shell.php
      Reply
    1. gogubeb's Avatar
      Someone from administration can confirm what Dinamik said?
      Reply
    1. Sadstrike's Avatar
      i said that just before dinamik and mi post whas deleted.
      Reply
    1. gogubeb's Avatar
      so, you say that we still are in danger even with 5.1b version?
      Reply
    1. Sadstrike's Avatar
      Quote Originally Posted by gogubeb View Post
      so, you say that we still are in danger even with 5.1b version?
      certainly
      Reply
    1. gogubeb's Avatar
      pffffff I will restrict access on may amxbans then.

      Thanks for your quick answer Sadstrike
      Reply
    1. SeToY's Avatar
      Nice to know that every user can post his stuff and you trust them.

      Well, we have tested all public exploits for AMXBans 5.x on our testserver and none of them worked with 5.1b.

      If you're running AMXBans on your own server - think of your administration

      If you want to have an official word: AMXBans 5.1b is safe. But anyway you're trusting Sadstrike more, i guess?
      Reply
    1. gogubeb's Avatar
      Quote Originally Posted by SeToY View Post
      Nice to know that every user can post his stuff and you trust them.

      Well, we have tested all public exploits for AMXBans 5.x on our testserver and none of them worked with 5.1b.

      If you're running AMXBans on your own server - think of your administration

      If you want to have an official word: AMXBans 5.1b is safe. But anyway you're trusting Sadstrike more, i guess?
      well , i haven't until now an answer from administration so i act to restrict my amxbans page. I didn't say that amxbans is not safe, i only expected an answer from administration and yes i believe you when you say that is safe.

      Thanks
      Reply
    Page 1 of 2 1 2 LastLast