vb.org Archive
Page 10 of 16 « First 89 10 1112 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 4.x Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=245)
-   -   Administrative and Maintenance Tools - AdminCP Firewall ~ Protect your AdminCP! (https://vborg.vbsupport.ru/showthread.php?t=296383)

Paul M 09-18-2013 10:44 AM
Just adding the genereric disable hooks define to your config.php would also allow you back in.

PHP Code:
// Disable Hooks
define('DISABLE_HOOKS',true); 

DemOnstar 09-18-2013 01:07 PM
Installed.

DemOnstar 09-18-2013 01:20 PM
Quote:
Originally Posted by Paul M (Post 2446460)
Just adding the genereric disable hooks define to your config.php would also allow you back in.

PHP Code:
// Disable Hooks
define('DISABLE_HOOKS',true); 
I did just that...

There is however a slim, coincidental hole with this idea as it will disable all the spam stuff, the protection stuff and everything else for the brief period where one has to do the changes in config.php and then gain access again to add another IP..

There is a vulnerability here... I like the password idea.

ozzy47 09-18-2013 08:29 PM
Quote:
Originally Posted by Paul M (Post 2446460)
Just adding the genereric disable hooks define to your config.php would also allow you back in.

PHP Code:
// Disable Hooks
define('DISABLE_HOOKS',true); 
Paul, If I understand this mod correctly, it does not use hooks, it can not be disabled that way.

So the way to disable it is the way I said in post #83 and as theOP described in post #2

DemOnstar 09-19-2013 04:04 AM
Quote:
Originally Posted by Paul M (Post 2446460)
Just adding the generic disable hooks define to your config.php would also allow you back in.

PHP Code:
// Disable Hooks
define('DISABLE_HOOKS',true); 
Quote:
Originally Posted by ozzy47 (Post 2446557)
Paul, If I understand this mod correctly, it does not use hooks, it can not be disabled that way.

So the way to disable it is the way I said in post #83 and as theOP described in post #2
I just added both to my config.php and left them commented out..
In that case, when the inevitable day comes where I have to use them, I know they are there...:)

I guess next I have to protect the includes folder..

Bubble #5 09-19-2013 05:28 AM
Quote:
Originally Posted by DemOnstar (Post 2446490)
There is a vulnerability here... I like the password idea.
At a minimum it should have a password, but after thinking about it I'd prefer if the admin could fill out their own security question in the ACP, and then answer it. There are scripts that can guess passwords, but who's going to know the answer to your own security question but you?

DemOnstar 09-19-2013 10:33 AM
Quote:
Originally Posted by Bubble #5 (Post 2446643)
At a minimum it should have a password, but after thinking about it I'd prefer if the admin could fill out their own security question in the ACP, and then answer it. There are scripts that can guess passwords, but who's going to know the answer to your own security question but you?
This is a better idea..... Agreed. +1

DemOnstar 09-19-2013 10:35 AM
I had an email..

A user has logged into the AdminCP using an unauthorized IP address.

Ok, I had to check but it doesn't seem to be the case..
Perhaps re-wording the mail to

A user has attempted to log into the AdminCP using an unauthorized IP address.

I will try to do this myself...

EDIT: It was easy, it is all in languages and phrases...Shall see if it shows up the next time...:up:

bigs15 09-20-2013 06:54 PM
Mine is dynamic Ip so how does this mod help me?

obglobal.net 09-21-2013 04:15 AM
Could someone please help me with instructions on how to install this? I'd really like to add this mod as I've been hacked twice in the last 2 weeks.

Thanks very much.


All times are GMT. The time now is 01:17 AM.
Page 10 of 16 « First 89 10 1112 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01180 seconds
  • Memory Usage 1,748KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (4)bbcode_php_printable
  • (6)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete