vb.org Archive - Administrative and Maintenance Tools

Page 3 of 6

Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vBulletin 3.7 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=228)

- - Administrative and Maintenance Tools - Password Security Tools (https://vborg.vbsupport.ru/showthread.php?t=187980)

nightbloom

08-13-2008 07:52 PM

So I used it and it just reloaded and said process complete. Does that mean that it didnt find a single bad password? You should probably have something that says it worked and found nothing if that is indeed what happened.

Because we hide links from users, Im surprised that not a single person would have made a "junk" account just to DL something.... so Im wondering if maybe Ive made some kind of mistake or have an incompatibility.

b00k	08-13-2008 08:06 PM

-----------

Elenna

08-14-2008 12:55 AM

It would also be wonderful to see a listing of people before they are emailed, so that you can notify them personally if they are a moderator, etc, and you'd want them to change their password before you implement the security measures.

Also, one of our moderators has two accounts with the same email address. I don't have specifics yet, but he is reporting problems with changing his second account's password.

John	08-14-2008 01:52 AM

Quote:

Originally Posted by Elenna (Post 1598127)

If you have 1.3.2 installed you can use the Ignore Usergroup setting to bypass usergroups from the scan. I'd recommend adding your mod usergroup ids, and perhaps posting a thread in your mod forum telling everyone to make sure their passwords are hard to guess.

As for users with duplicate email addresses, the only way to handle that is on a case by case basis.

Hornstar

08-14-2008 06:16 AM

fantastic work! I will give this a go in a sec. I too would love to see this merged with the ajax registration mod (but guess he will have to add to his). I will install this one now to send out the emails tho.

Edit: Just realized this was released by John ^^ great to see you back :D

Hornstar

08-14-2008 06:33 AM

uploaded files. installed product, set it up in vboptions. then went to admincp/passsec.php page and just got a blue blank page with Password Security Tools written at the top and nothing else.

How do I run the scanner?

Edit, refreshed admincp and saw the password security tools tab show up ^^

Users with usernames as passwords: 5214 Users with common passwords: 8801
WOW lol, glad I got to use this before those spammers did.

EDIT: didnt work, I got a database error

Quote:

Database error in vBulletin 3.7.2:

Invalid SQL:
UPDATE user SET password='d8081298facbac11db76c31b92ff6f25' WHERE userid=2;

MySQL Error : Table '*****_backup.user' doesn't exist
Error Number : 1146
Request Date : Thursday, August 14th 2008 @ 03:36:04 AM
Error Date : Thursday, August 14th 2008 @ 03:36:04 AM
Script : http://www.gamerzneeds.net/forums/ad...?do=dopassscan
Referrer : http://www.gamerzneeds.net/forums/ad...reparepassscan
IP Address :
Username :
Classname : vB_Database
MySQL Version : 5.0.45-community

RedTrinity

08-14-2008 09:59 AM

Quote:

Originally Posted by John (Post 1597705)

Ah, missed a table prefix. Download the zip again, and overwrite passsec.php.

Thanks for your support. I re-downloaded the ZIP, overwrote the old file with the new one and then re-imported the xml but am getting the same error, in the same place, as before :(

DeepXP

08-14-2008 01:23 PM

I must say you have developed one of the best plugins out there. My forum was taken over by these spammers and with the help of your plugin, I could reset all the weak usernames.

Great work and thanks again for the effort.

Regards,
Deep

Joe Siegler

08-14-2008 01:39 PM

Quote:

Originally Posted by TSR (Post 1597994)

John, great work!

I just ran this on one of my bigboards and it ran flawless.
(vBulletin 3.7.2)

One suggestion, what about a report to the admin on all the accounts affected?

That would be a neat little feature.

Thanks again!

That's shown on screen to you if you sit there and watch it.

benstafford

08-14-2008 07:53 PM

Has anyone tried this with 3.6 yet? I saw the earlier posts from MGSteve about trying to get it to work by modifying the XML file, but he didn't reply back on success or failure.

All times are GMT. The time now is 04:31 PM.

Page 3 of 6

Last »

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01656 seconds Memory Usage 1,740KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (4)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (4)pagenav_pagelink (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: