With everything turned on and pro version, i'm getting some false positives.

For example:

68.42.191.69 (c-68-42-191-69.hsd1.mi.comcast.net)

Does this mean that comcast is on a blacklist somewhere?

Thanks

Actually its catching several ISPs and I turned off LAN and PROXY detection for now, and only left TOR on.

Resolved 184.13.204.160 to 184-13-204-160.dr02.csvl.tn.frontiernet.net

Resolved 118.209.17.156 to ppp118-209-17-156.lns20.mel4.internode.on.net

Also caught.

I could see that being part of the pro version yes. I am working on some new features for both the free and pro version that I was going to release today, but I'll see if I can work that in. I have a job interview for a local coding company here in a couple hours, should return in a few and I will work on this idea.


It does not link together to that mod, but yes you can have both installed and they will both work fine.


My mod does not log the IP that is coming through, I will work on a whitelist of ISPs for future versions along with emailing/PMing the detected IP and ISP. As if you are checking them from the vBulletin AdminCP, the IP in the users profile is only going to show what he first registered, therefor it wouldn't be the IP he was using a proxy with. So if that is how you are retrieving the IP, then they may not be false positives. In fact some lan proxies use comcast and other hostnames. When you use a lan proxy you mask your ip and you hostname, this modification detects you hiding behind that mask.

For example a lan proxy 190.151.144.42 port 8080 is registered to cabletel:
http://www.whatismyip.com/ip-tools/i...t-name-lookup/

Thanks for explaining

It is still catching people, even with just TOR detection and Detect Auto Template Edits on, so im trying to turn the template one off for now. Theyre def not on tor servers. Will let ya know if it makes a difference.

Good luck with that job interview!!!

hello
thank you, but here not work for me (4.2.1) although I have:

1.) Disable automatic template edits in the AdminCP
2.) Navigate to the navbar template in your style
3.) Add {vb:raw toralert} to the bottom of the template

I forgot some thing to do ?
thanks

ps : when I type www.mysite.com/forum/proxy.php I have this message "You were detected using a proxy! For security reasons, we do not allow this on our community. Please disable the proxy or switch browsers if it is built in. Thank you. "

All went well thanks. As far as the auto template, that just inserts the code into the templates for you, disabling it will disable the whole product unless you have the template code inside the navbar template: {vb:raw toralert}


If you do not wish to share your website info you can private message me, I will need access to the website to investigate the issue further with the product enabled. A few things you can check

Is the product enabled?
Is the {vb:raw toralert} code inserted into the correct style used on the board?
Does the product work with auto templates enabled?

I am getting this error Parse error: syntax error, unexpected T_ELSEIF in /home/***/public_html/***/global.php(29) : eval()'d code on line 234.
I am using the latest 1.2 pro version.

I will investigate this further and push an update to both versions. I'm currently upgrading my laptop to Windows 8, when that is finished I will push the update. I know what happened sorry about that.

ya i had that too. It crippled things so much I couldn't even use admin console. I had to go into config.php and disable all plugins, to regain control and disable the add-on.

I had hundreds of these in the log:
I'll re-install and try the new version, when ready.

Rhody
PS: Windows 8 is a real culture shock. good luck with that one :)

I apologize for that inconvenience. I was running the same version and had the same issue, but it was not causing an issue like that. Just posted the else error at the top of my page. Anyway this has been resolved in the 1.3 version. As for Windows 8, I love it. So much faster than Windows 7. The Aero effects looked nice, but honestly always caused my computer to run slow when I did run them. Now all is well. :)

blocking vpn to in future ?

I'm not familiar with that form of proxy. Have you tested the script to see if it alerts to use of VPN? Are you referring to Virtual Private Networks? Like you don't want servers connecting?

yes i m talking about virtual private networks actually the script dosent block VPN'S

Never really had any problems with VPN's to my knowledge, but sure I will look into adding it.

is same as tor or proxy allready blocked by your addon alot of people use them to hack or damage websites

Do you have an example one I could use to see what ports or masks they use to hide their IP?

some of them:

Internet Protocol Security (IPSec) uses IP protocol 50 for Encapsulated Security Protocol (ESP), IP protocol 51 for Authentication Header (AH), and UDP port 500 for IKE Phase 1 negotiation and Phase 2 negotiations. UDP ports 500 and 4500 are used, if NAT-T is used for IKE Phase 1 negotiation and Phase 2 negotiations

Secure Sockets Layer (SSL) uses TCP port 443 and works by using a private key to encrypt data that is transferred over the SSL connection. SSL also uses 465 Secure SMTP, 993 Secure IMAP, and 995 Secure POP.

Layer Two Tunneling Protocol (L2TP) uses TCP port 1701 and is an extension of the Point-to-Point Tunneling Protocol. L2TP is often used with IPSec to establish a Virtual Private Network (VPN).

Point-to-Point Tunneling Protocol (PPTP) uses TCP port 1723 and IP port 47 Generic Routing Encapsulation (GRE). PPTP provides a low-cost, private connection to a corporate network through the Internet. PPTP works well for people who work from home or travel and need to access their corporate networks. It is often used to access a Microsoft Remote Access Server (RAS).

but also 843,80 are used for vpn's

will these mod support with using together with cdn like cloudflare and such , is it possible to whitelist by usergroup and userid and ip ?

Alright I'll look into it, but from the sound of things it's mainly used by corporations and by blocking those people, you may lose valuable members that may be legitimately at work wanting to view your website.

Something I am working on for future versions.

The problem is not tor or vpn but how people use them and in this case alot of them use vpn's for atacking or hacking.Your addon is a life saver in general :-)

The new version seems to tell me every time that *I AM* using a proxy (well, and im not), but it doesnt email or pm as the version before it did. Maybe it's giving the red box in error?

Disabled for the time being

Dont see how this will stop someone with these tor or proxy coming to your forums and looking around there is only a small box

Reading the description, seems that in the paid version, you can re direct the users, but not in the free one.

For those who use VB 3.x and need some to block TOR, see: http://www.reaper-x.com/2012/05/15/h...che-and-nginx/

It's also an alternative to this plugin if blocking TOR is your only goal, it's lightweight and doesn't add the overhead of reverse lookups. Instead each hour it downloads the TOR IP list which can connect to your server's IP. I've been using this method successfully for a couple of years.

There is a 3.x version:
https://vborg.vbsupport.ru/showthread.php?t=301377


Glad you like my addon, thank you for your feedback. :) I do agree, in the wrong hands proxies can do some damage. I will look into the VPNs.


In the AdminCP change redirection to yes, then will prevent anyone from accessing your forums.


So I can narrow down the issue as to which script is detecting you, I am sending you a debugging version to you via PM. The reason it is not PMing you, is because it uses a cookie based system to make sure it does not PM you every time it detects you. With the debug version, delete your cookies, install the new version, and refresh you inbox. Copy the message and reply to my PM on here with what it says.


The redirecting to a blank page is a pro feature, redirecting to proxy.php is a free feature to enable in the AdminCP.

Ahh cool, see even I did not fully read the description. :p

1.5 has been released to give you the following features:
Block Proxy Registrations
Redirect Proxy Registrations to Blank Page [PRO]
Block Registration Even When Proxy Disabled [PRO] - This uses a cookie and when the guest is detected and blocked at registration, will continue to be blocked when this is enabled, even if the guest disables their proxy.

The registration error uses vB phrasing.

All is well. :)

Great features.
Honestly am happy to be using the pro version.
Such a small fee for such features included in the pro version.

Looking forward to see a method to block vpn. :D

I'm happy to hear that, I know how it is for some small websites out there, and paying a large fee for every script out there doesn't seem worth it to me. I try to make all my scripts affordable, in fact they all are under a dollar. I guess I am just a budget kind of guy, I guess I just like seeing those who are actually interested, supporting something they like, and I try to make it as easy as possible to do so. Another thing that helps is that almost all the scripts I build and release I use on my own website. This one I started out with just an alert box, which is still all I use, but requests came through PM and it just got me invested in making them come true. One too many times I can count that I request something from a supported mod's developer, and it never came to be in their product, so I had to modify it myself. After years of doing this I learned I had a knack of doing it, built my first mod and after it took off, just kind of kept going.

I am researching more into the vpn, no eta on that as I would like to focus a little on some other features that have been more requested and that I have been promising for a while like permissions.

hello
I upgrade ver 1.5 pro version but I tried to log in proxy and to register, I logged in and registered without any problems or restrictions.
I do not know why it does not work?
hello
I upgrade ver 1.5 pro version but I tried to log in proxy and to register, I logged in and registered without any problems or restrictions.
I do not know why it does not work?
------------------------------------
ps: Mr TheInsaneManiac, my site and access are the same as the other day if you want to take a look, with my thanks

exeption for admins maybe ? so they can use proxies for testing purposes :-)

hello

No, I do not use the admin account

I tried to go to your site, but it appears to be down. If you go to the Admin CP -> Settings -> Proxy Alert, you will see the newly added option for blocking registration. It doesn't block by default.


In future versions yes, but I have not implemented permissions yet.

Dont think is is needed, anyone can download the Tor browser for test.

Could we have new thread on detection personally prefer this option :)

Thx thought that was only for the paid version. Will reinstall and try again

I just mean for permissions, if I make it for Admins being left out, then you can't really run a test, but if there is a field in the AdminCP, then you can add those you dont want and when you need to test, remove those you want.


Yes I can arrange this.


No problem, sorry for the confusion.

Got the pro version but one of the settings seems to be blank can you fix this and pm me a link to the new one

Oh sorry about that. Yea it's fixed in the new version, I still have another few kinks to work out and I will be releasing the updated version. Should be sometime tonight when I get off or tomorrow as I am off the whole day. That setting is so that anyone who was blocked from registration will have a cookie and will continue to be blocked regardless if they have disabled their proxy or not. So if you want them to be able to register after they disable their proxy, then leave it at no.

thx that fixed it and also one other problem as well if looking from ipad puffin browser