vb.org Archive
Page 3 of 26 12 3 4513 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 2.x Full Releases (https://vborg.vbsupport.ru/forumdisplay.php?f=4)
-   -   Get an e-mail if someone is trying to access your Admin CP (With IP address) (https://vborg.vbsupport.ru/showthread.php?t=32707)

Baratator 11-27-2001 07:47 AM
goooooooooood idea :) but here is my problem :) : the mailing function is not supported by my host so I had to desactivate it...

Can it send adminitrators PMs instead of emails?

thx :)

Kumaro 11-27-2001 09:53 AM
Excellent hack for my board. People always trying to get get into my admin panel.

Admin 11-27-2001 11:54 AM
[QUOTE]Originally posted by Mincer
Run around your office screaming, grab your nearest workmate, shake them by the shoulders and shout "They're after us, we're DOOOOOOOMED!!!!"

:eek: :eek:

xug 11-27-2001 12:00 PM
Great hack FireFly, just what I needed !

Mincer 11-27-2001 12:31 PM
I seem be experienceing what you may call a 'minor problem' with this hack in the updated form. (I have reverted back to the original release now)

If someone tries to login as another user with any password, it rejects it, but I get no email.

If I try to log in as the admin WITH ANY PASSWORD, IT LETS ME IN!!! :eek: (I do get the email saying failed lonin though. :confused: )

Just thought it's let you know before I start hacking all ya boards. :eek: ;) (j/k)

JJR512 11-27-2001 01:16 PM
I tried to duplicate Mincer's problems.

I tried to login to the admin cp using my name and an incorrect password. I was not successful; I got the wrong password message, and received the email from this hack. So I could not duplicate that aspect of Mincer's problem.

I tried to login as a regular member with that member's correct password, and was simply rejected (the login form reappeared). I received no email from that attempt. So I was able to duplicate this aspect of Mincer's complaint; however, I do not believe this is a problem. I don't believe this hack was designed to send you the email in this situation, although an argument could be made that perhaps it should.

Prezident 11-27-2001 01:57 PM
I also tried some bogus usernames that did not exist. I got no email. Tried using my username with a bad password, and was notified promptly.

I think it would be better suited for this hack to send ANY information regarding failed logon attempts to the admin CP.

Is it possible to make that happen?

Kathy 11-27-2001 09:44 PM
So I'm assuming it looks like this?
Code:
    if (md5($loginpassword)!=$bbuserinfo[password]) {
            $ipaddress=iif(getenv("REMOTE_ADDR")!="",getenv("REMOTE_ADDR"),$HTTP_HOST);
                        $iphostname = @gethostbyaddr($ipaddress);
                        $message="Someone is trying to login using your admin account!\n\nUsername he tried to use: $loginusername\nPassword he tried to use: $loginpassword (".md5($loginpassword)." in encryption)\n\nThe IP address is: $ipaddress\nThe host is: $iphostname";
                        mail($webmasteremail,"Warning: vBulletin Admin Login Tried",$message,"From: \"$bbtitle Admin CP\" <$webmasteremail>");

                        eval("standarderror(\"".gettemplate("error_wrongpassword")."\");");
In other words...leaving all the original code...and just adding those lines in the right place?

MarkB 11-27-2001 09:46 PM
Admin login with incorrect password let me in as well, although I also got the warning email...

Reverted (for now).

MarkB 11-27-2001 09:50 PM
I'd forgotten to include

eval("standarderror(\"".gettemplate("error_wrongpa ssword")."\");");

at the end, re-added it and now I am not logged in with a wrong password...


All times are GMT. The time now is 04:14 PM.
Page 3 of 26 12 3 4513 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01188 seconds
  • Memory Usage 1,733KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_code_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete