works perfect, thanks!

Ok stupid me. I had the administrator email set to a wrong email that I don't check regularly. That is why I didn't get any notification from this hack (beside not getting like 200 other emails from people who tried to contact me :nervous: )

Greets

I had the same thing happen when I was helping him test it. That's why the note about checking that in his instructions. LOL

Heh.. Same thing happened to me when I was making the hack. I couldn't figure out why I wasn't getting an email so I changed the code about 5 times before noticing that I didn't have the webmaster's email set in the CP. Doh! Anyway, glad its workin' for ya. :)

can this hack be modded to get an email if someone tries to log in with an incorrect username or password to the normal board not admin

Yeah it could, but I'd rather not release a hack like that b/c it could easily be changed to send the user's correct password. Alot of people use the same password on several different sites so its not a good idea IMO. Not saying that you would use it for that, but theres some people out there who would abuse it.

Agreed, i don't have any rights knowing there passwords, just like they don't have any rights if i was a member of there site.

Could you possibly do one without the password part but just the username, just so i know if anyone is trying to get into our site without permission.

Regards
Rob

Rob,
For regular logins it would probably be better to store failed attempts in the db and make a log rather than email them b/c if you have alot of members your inbox would be full due to users making typos when logging in. I might look into making a hack for that a little later when I get some free time.

Installed - thanks.

Nice hack EviLS1 - /me clicks install.

Installed 10 minutes ago and appears to be working as advertised. Thanks.

Great hack. Thank you! :)

Installed, tested and working perfectly.

[clicks install]

Why I receive every attack 4 mails ?

You should recieve only one warning email every time someone tries to login with an incorrect password or username. If you received 4 emails it means someone made 4 seperate attempts to access your CP. If you have the strike system enabled you will receive a maximum of 5 emails if they try to do it over and over again.

good one I like it

Thanks a lot
for this hak

zahco

Installed. Especially after I found scripts in my /forums directory that shouldn't have been there and then users complained of their posts disappearing.

Thanks.

*clicked install* Great job!

Works for me on version 3.0.0! Excellent stuff, thanks!

You da Man!

*clicking Install*

Thank you. Glad ya like it. :)

<a href="https://vborg.vbsupport.ru/showthread.php?s=&threadid=64322" target="_blank">https://vborg.vbsupport.ru/showt...threadid=64322</a>

will be installing this next, thanks for the killer hacks bro.

great hack, cheers for this

You may want to let people know that by installing this hack as posted, your passwords from this page will not be transmitted in clear text. But if you're okay with FTP, you're probably okay with this.

sc4r3d & Watson,
Glad you like it and you're welcome. :)

Passwords are encrypted in login.php. The only place the clear text gets passed is from adminfunctions.php to login.php which poses no security threat that I can think of since the md5hash() function is client side anyway.

Unfortunately this hack doesn't work with VB 3.0.2 because the login.php is different from 3.0.0/3.0.1 :ermm:

EvilLS1 are you thinking to upgrade your hack to 3.0.2? :rolleyes:

Regards

For those who have upgraded to 3.0.2,

Please try these instructions and let me know if it works for you:

Yea! now it works with 3.0.2 :D

Tnx for your quick upgrade ;)

Regards

N/P. Glad it worked. :)

Great job EvilLS1 :)

[high]* Natch installed and it works a charm![/high]

Thanks Natch. :)

I set "Use Login "Strikes" System" to "No". So does it work?

Yes it should work either way.

Funny you should say that considering I caught YOU trying to log into my admincp the other day. Not very fun, is it?

I think it was the other way around babolo, you tried on MY site and I caught you and pmed you asking why to which you replied you thought you'd try to hack because people use stupid passwords...unless you installed this hack between yesterday and today and had someone try to log into your account "alot of times."

Or we're all living in an alternate universe. One of the three. I have the logs if anyone cares to see this hack in action.

This is cool. Doubt anyone tries to login, but it's good just in case. Had the vB2 one installed as well. Obviously this one is better, though.

I know that this may not be the best place for this. But I have and love this admincp hack.

Is there anyway I can be notified when regular accounts are tried to break into as well?

Last night, my admin area was targeted and I was notified.

My Co-Admin was targeted but not thru the admin area. They tried accessing his account through the regular forum.

But without him telling me I'd have no idea if people were trying to break in etc and I don't need the wrong people trying to access other accounts. Especially when not everyone uses a secure password.

cool hack, *clicks install*

Its possible but not practical b/c your inbox would be filled with notifications due to regular members mis-typing their password or username. To do something like that it would be a better idea to store failed logins in the database and let the admin view them in the control panel.

Yeah, that is true. Good Point.

I just was trying to think of a way so I am notified if there is someone trying to break in other accounts.

Due to the fact that my admincp account was targeted, and my co-admins regular forum account were targeted, I was trying to think of a viable way for me to know that said people are trying to break into various accounts other than the admincp.