vb.org Archive
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Modification Graveyard (https://vborg.vbsupport.ru/forumdisplay.php?f=224)
-   -   Administrative and Maintenance Tools - Stop Members Bypassing Restrictions By Logging Out (https://vborg.vbsupport.ru/showthread.php?t=172305)

AngelBlue 03-06-2008 10:00 PM
Stop Members Bypassing Restrictions By Logging Out
 
This addon has been withdrawn.

codershark 03-07-2008 05:02 AM
compatible to 3.7 ?

Endurer 03-07-2008 05:39 AM
Excellent work buddy, I defnitely need this one. Thanks a lot.

citroenar 03-07-2008 07:06 AM
Great, some members logout and create new account.no more.

codershark 03-07-2008 08:28 AM
But what happens when they empty his browser cache (incl. cookies) ????

AngelBlue 03-07-2008 11:42 AM
Quote:
Originally Posted by codershark (Post 1459062)
compatible to 3.7 ?
I don't know, because I don't use 3.7. Try it and see if it will work?

Quote:
Originally Posted by citroenar (Post 1459104)
Great, some members logout and create new account.no more.
This won't stop them logging out and creating a new account. You need the "Multiple Account Registration Prevention" product to do that.
My mod is more focussed on stopping them using guest access as a second account.

Quote:
Originally Posted by codershark (Post 1459127)
But what happens when they empty his browser cache (incl. cookies) ????
It will stop working if they clear their cookies, obviously.
Thing is, most people only clear their cookies rarely, if ever.
Most internet users don't know about cookies. So this system will work on them.

Stopping someone who knows about cookies, IPs, proxies, etc from evading bans or limits on your website requires installing a bunch of different security mods to block multiple account creation, multiple account use, proxy use, and a bunch of other things. Even then, they may still be able to do it if they really know what they are doing.

My product here is not intended to be a comprehensive security solution, it is intended to be *one* tool that you *can* use as part of a wider system. Like the Linux/UNIX philosophy... one small, but efficient, powerful and widely compatible, tool for each job.

bigcurt 03-07-2008 03:52 PM
Thanks a lot..marking installed for right now and will install soon. Any errors for anyone yet?

It would be incredibly nice if you could set which usergroups use this and which don't. I would like my regular users to be able to log out just not my banned ones.

AngelBlue 03-07-2008 04:48 PM
Quote:
Originally Posted by bigcurt (Post 1459445)
Thanks a lot.
You're welcome :)
Quote:
Originally Posted by bigcurt
Any errors for anyone yet?
None for me :)
Quote:
Originally Posted by bigcurt
It would be incredibly nice if you could set which usergroups use this and which don't. I would like my regular users to be able to log out just not my banned ones.
Try editing the product file, replacing:
Code:
                                        if (!isset($_COOKIE['NGBaccess'])) {
                                                // we do NOT use vbsetcookie, because cookies set with vbsetcookie() are erased when the user logs out!
                                                setcookie("NGBaccess", "yes", time()+31104000, "/");
                                        }
with:
Code:
                                        if (
                                        !isset($_COOKIE['NGBaccess']) AND
                                        !($vbulletin->userinfo['permissions']['genericoptions'] &
                                        $vbulletin->bf_ugp_genericoptions['isnotbannedgroup'])
                                        ) {
                                                // we do NOT use vbsetcookie, because cookies set with vbsetcookie() are erased when the user logs out!
                                                setcookie("NGBaccess", "yes", time()+31104000, "/");
                                        }
That *might* get the result you want, assuming the code is good and you've set all your banned groups to "is not a banned group: false" in your usergroup options.

If you haven't, you might try this :

Code:
                                        if (
                                        !isset($_COOKIE['NGBaccess']) AND
                                        in_array($bbuserinfo['usergroupid'], array(8,9,10))
                                        ) {
                                                // we do NOT use vbsetcookie, because cookies set with vbsetcookie() are erased when the user logs out!
                                                setcookie("NGBaccess", "yes", time()+31104000, "/");
                                        }
Where : "8,9,10" is a comma-separated list of the groups you want this to apply to. Don't actually use 8,9 and 10 unless these really are your banned groups :)

Please let me know if the isnotbannedgroup code above works :) If it does, I might consider releasing an update to this hack which lets you choose whether to apply it to all registered members, banned members, or an admin-supplied list of group ids.

Konstantinos 03-07-2008 06:04 PM
what happens to users who log in via net cafe and want to log out but they wont be able to do so , it risks the security of their account doesnt it ? maybe it whould be good if it was per usegroup (for banned and COPPA users)

AngelBlue 03-07-2008 06:49 PM
Quote:
Originally Posted by Konstantinos (Post 1459529)
what happens to users who log in via net cafe and want to log out but they wont be able to do so , it risks the security of their account doesnt it ? maybe it whould be good if it was per usegroup (for banned and COPPA users)
Please read the modification description.

This mod does not stop registered users logging out, it just stops them from being able to read the forums while logged out. The purpose is not to prevent members logging out entirely, but rather, to prevent members logging out in order to bypass restrictions which apply to them when they are logged in.


All times are GMT. The time now is 12:47 PM.
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01267 seconds
  • Memory Usage 1,748KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_code_printable
  • (7)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete