Products: 1
Plugins: 1
Queries: 0

What does it do?

When you banned a user, he can just register a new account and keep posting on your forum.
When you banned an IP, the IP could be dymanic or an proxy IP. You probably banned one or more innocent users.
Why not try to ban someone by a cookie!

Installation

Step 1: import product-cookieban.xml
Step 2: add this into .htaccess


RewriteEngine on
RewriteCond %{HTTP_COOKIE} _xxxx_welcome
RewriteRule .* - [F]


be sure to replace the xxxx with your cookie prefix (check your includes/config.php)

What will happen?

When a banned user try to login your forum, he will be given a cookie of death. and then he will not be able to access your forum within an year.

Advanced

to assign a different banned usergroup, modify this line:

if (is_member_of($vbulletin->userinfo, 8))


to assign a different ban period, modify this number:

60*60*24*30*12




The most famous travel forum in chinese world - www.bbkz.com (http://www.bbkz.com/forum/)

When a banned user try to login your forum, he will be given a cookie of death. and then he will not be able to access your forum within an year.

when he clean his cache he can registered after 1 minute ! That way isnt really effectiv.

when he clean his cache he can registered after 1 minute ! That way isnt really effectiv.

agreed :)

when he clean his cache he can registered after 1 minute ! That way isnt really effectiv.

this is true. but in my experience, most of the users don't know anything about cookies. this helps to stop some mad posters.

human spammers are provided dymanic IPs from their company, but they don't waste time to clear the cookies either. if they can not access your site for the first load, they will choose to skip. they are just too busy :D

Isn't it the same way the Multiple account login detector (https://vborg.vbsupport.ru/showthread.php?t=183268) works?
I just don't know if it works with the actual version 3.8, but it is also cookie based.

<a href="https://vborg.vbsupport.ru/showthread.php?t=197484" target="_blank">Miserable Users</a> seems to be a better option. This works too though.

Isn't it the same way the Multiple account login detector (https://vborg.vbsupport.ru/showthread.php?t=183268) works?
I just don't know if it works with the actual version 3.8, but it is also cookie based.

"Multiple account login detector" tells you who get multiple account. this mod stops users you banned to access your forum thus they can not register another account of course.

They still can register a new account, just need to clean their Cookies. Usually Spam Bots or things you don't need and want are small tools that work with a long proxy list, place their content, clean Cookies & Cache, do the next run.

Just - if someone knows a little bit more about how Login & Sessions work there's no way of banning someone completely without the chance to register again with another account. :(

to fix this mod, have the cookie stored on the persons pc, in a different location then the rest of the cookies. as cookie cleaners only delete the normal cookie file. I know several vB mods and other server programs that place a 2nd. non "normal" detectable cookie in other locations, so they are not deleted when the pc's cookies are deleated or removed.

to fix this mod, have the cookie stored on the persons pc, in a different location then the rest of the cookies. as cookie cleaners only delete the normal cookie file. I know several vB mods and other server programs that place a 2nd. non "normal" detectable cookie in other locations, so they are not deleted when the pc's cookies are deleated or removed.

dats a good idea!

I second that suggestion. I'm down with this if so. :)

This type of mod works great, we used to call it the token of death, not sure if that was a reference to a vb2 mod that was published or not.

thanks

to fix this mod, have the cookie stored on the persons pc, in a different location then the rest of the cookies. as cookie cleaners only delete the normal cookie file. I know several vB mods and other server programs that place a 2nd. non "normal" detectable cookie in other locations, so they are not deleted when the pc's cookies are deleated or removed.

This is a good suggestion, I would like to know if this can be done before I look for other options.

For all those that have tried banning members accounts and IPs only to have them resign up or use an ip changer, this is a good 3rd option. People shouldn't really know if they are banned by a cookie, it isn't a default vb banning option. Just ensure nothing gives that away and the mod is great.

to fix this mod, have the cookie stored on the persons pc, in a different location then the rest of the cookies. as cookie cleaners only delete the normal cookie file. I know several vB mods and other server programs that place a 2nd. non "normal" detectable cookie in other locations, so they are not deleted when the pc's cookies are deleated or removed.

Did anyone manage to do this?

thanks

Can this be made to use custom ban periods. Like If i have 10 day ban to save the cookie with an 10 days life , if is permanent ban to save ca 1 year expire cookie?
Good idea as is a simple way to block most of the users (not many knows about cookies let alone delete them).

BTW, if you give a 10 day ban (this will move user to ban group for 10 days) this will place a death cookie or not?
Tagged ...

I guess most of your users don't use Firefox and cookie manager plugins? My users live by that sort of thing. Even flash supercookies don't deter them.

Does someone here check this one on 4.0 ?

What about users that are temporarily banned for 7 or 14 days etc., will they be affected by this?