|
Multiple Account Detection & Prevention
1 Attachment(s)
It happens all of the time. Some members will make multiple accounts to back their own opinion or get an extra vote in a poll. Here's a modification that will detect and prevent multiple accounts, as well as notify the administration about multiple accounts. Inspiration for this modification came from the work of MPDev (creator of the Multiple Account Login Detector) and randominity (creator of the Multiple Account Registration Prevention). This is basically a combination of those two modifications but with new and improved functionality.
This is not an update to the "Multiple Account Login Detector (AE Detector)" nor is it an update to the "Multiple Account Registration Prevention." If you have either one of these (or both of them) installed, you should uninstall them before installing this modification. With the initial release of Multiple Account Detection & Prevention, I believe that I have fixed previous bugs/complications as well as improved the efficiency and logic of the code. This is my first publicly released modification. I would appreciate any comments and suggestions! Confirmed! This works perfectly on all vBulletin 3.6, 3.7, and 3.8 versions. Unfortunately, I cannot give support right now. I may be able to help periodically, but until my schedule yields some more free time, I won't be much support. Please check back in a week or two. Basic Details File Edits: None Template Edits: None New Files: 6 Hooks/Plugins: 3 Global Phrases: 36 Install Time: 2 Minutes or Less Install Difficulty: None, Very Easy Features and Settings - Login Detection - Registration Prevention (Multiple Methods) - Ignore Child Accounts - Ignored Users - Ignored Usergroups - Ignored ISPs - Prevention Usergroup - IP Address Based Prevention - Extended IP Address Prevention - IP Address Time Inclusion - Banned Account Check - Primary Banned Usergroup - Cookie Expiration Time - Cookie Refreshing - Cookie Name - Cookie Reset - Multiple Account Reporter - Reports via PM - PM Report Recipients - Reports via New Thread - Forum for Report Threads - Verbose Mode - BB Codes: LIST, URL, CODE How it Works With every newly recognized login/registration, an account-counting cookie is set (or added onto) with the member's User ID. Depending on the settings, Multiple Account Detection & Prevention will analyze the cookie during login/registration to see if there are any multiple accounts. Login Detection offers cookie-checking and reporting. Registration Prevention offers the same thing, plus more advanced features. First of all, when it prevents an account from registering, it actually moves the registrant to the Prevention Usergroup so that the administration can review the case. This also allows for customized privileges for recognized multiple registrants. Registration Prevention also has IP address detection which finds out just as much information about users. Depending on an administrator's preference, this modification can also reban a new registrant if one of their previous accounts has been banned. In fact, if the administration wishes, multiple registrants can simply be denied registration all together. Whenever there is a detection/prevention, the modification will report the information to the administration through private messages, a new thread, or both (depending on settings). The Multiple Account Reporter can be any valid user. Known Issues - vB Optimise users: Reporting via thread seems to get messed up by vB Optimise, so try reporting via PM instead. - PhotoPost vBGallery users: The registration handling appears to not work properly when PhotoPost vBGallery is enabled. From what I can tell, these known clashes have been caused by the other modification's coding. The author of vB Optimise will not even work with me to fix it. Until they improve their coding, I'm not sure if I can do anything about these issues. As far as I know, administrators that do not use the above modifications will not have any problems. Installation / Upgrade Unzip the package (madp.zip), upload the files to your forum location, and import the product file (allow overwrite if upgrading). Please read the ReadMe.txt file that is packaged with the modification for more information. Please remember to mark this modification as installed if you use it! If you like it, nominate it for the Mod of the Month! Thank you! :D |
History (Changelog)
1.1.3 (March 31, 2009) - Fixed a bug that caused reporting errors for owners of multiple accounts 1.1.2 (March 31, 2009) - Fixed a bug that caused some IP address confusion - Fixed a bug in login that caused reporting for deleted 'ghost' accounts - Fixed a bug in registration that may have caused false negatives 1.1.1 (January 13, 2009) - Fixed a bug that caused an "empty" warning when checking Ignored ISPs - Removed a useless variable in the Login Detection plugin 1.1.0 (December 30, 2008) - Fixed a bug from stripos() that caused an error within PHP4 - Added BB Code options for reporting - Added Verbose Mode with bunches of details - Added Silent Mode - Added several different methods for Registration Prevention, including disallow - Added more phrases and made everything 100% phrase-based - Improved small bits of code to be more efficient - Revised a few more AdminCP Help Topics - Revised phrases to be flexible with BB Code options - Revised line breaks to be correct on Windows servers - Rearranged the options in AdminCP, reporting settings are now separate 1.0.4 (December 27, 2008) - Fixed a bug that caused the account-counting cookie to not be set or read properly - Fixed a bug that caused multiple registrants to be placed in the wrong Usergroup 1.0.3 (December 19, 2008) - Added 'Cookie Name' setting - Added AdminCP setting validation code, AdminCP will complain if a setting is bad - Revised code to be completely compliant with the vBulletin standard - Rearranged the order of options in AdminCP 1.0.2 (December 19, 2008) - Fixed an interpretation issue with the & entity, thanks 'ray-' - Fixed a check that may have let some multiple accounts go undetected during login - Added 'Ignored ISPs' setting - Added 'Cookie Reset' option - Added support for spaces in all 'Ignored' fields - Added a blank index file (index.html) in the /madp/ directory - Improved cookie-processing efficiency: replaced strstr() with strpos()/stripos() - Improved ip-checking function efficiency slightly: removed an unnecessary variable - Revised a few AdmcinCP Help Topics 1.0.1 (December 16, 2008) - Fixed a careless mistake that lead to false positives with IP Address Prevention 1.0.0 (December 16, 2008) - Initial Release |
Thank you. Installed.
|
Installed
|
Edit:
This is no longer in the beta stage. Please read the Known Issues. |
I'm going to give this a go. just wondering tho, is there a way to stop it showing detected accounts from certain IP address. eg. AOL etc.
|
Thank you, good job!.
|
Quote:
Edit: By the way, it seems that I did fix the only bug with the 1.0.1 version. I thought that I failed to do so because I accidentally uploaded the fixed version to the wrong directory on my forum. Everyone that has version 1.0.1 (as of now) should be fine. I'll start focusing on coding for suggestions. |
I used to use the original Multiple Account Login Detector and unfortunately had to uninstall it as it simply stopped working. So this mod is a god send.
Before diving in I have one question - I would like to run this mod in "silent mode" by this I mean that users will be allowed to create and use multiple accounts but their presence is reported to the mod team by creating a thread is a designated mod forum. Does this mod allow me to do this? |
Marked as installed
could you please add one more feature, can you add some kind of a note in the postbit about the other account the user uses?? and when i come to band someone the same thing appear???? because i have about 20 warning a day about multiple accounts and its a waste of time to check each time if the user has another account when i want to band some1 |
I'll definitely give this addon a try. Almost anything that sends a forum arzehole to hell is appreaciated.
Trust me, forum trolls and fake user are a plague. ;) |
hello. is it bug-free? or a beta?
|
Quote:
Quote:
Quote:
Quote:
|
a German translation, there is not it? :(
|
The file in the root "Madp" copy? OKEY, you must also create htaccess?
|
On my site, I have a few members who live in the same address. If they both take turns on their pc, this will detect them & ban them?
Is there a way to stop that from happening. If not, this could be a bad idea for some boards. |
Kiros72, please help me.
|
Quote:
Quote:
Quote:
If you do not want to receive the notifications for those users who use the same computer, then add one of their User ID numbers to the Ignored Users and enable Ignore Child Accounts. With Ignore Child Accounts enabled, as long as a user is seen as a multiple of an ignored user (or Usergroup), the user will be ignored from any kind of detection. Would that solve your problem? :) |
Hello Kiros72.
1st I should therefore have the files directly into the root copy, but the whole folder named "madp"? ok what I understood. 2nd why no htaccess file? dan but everyone can access it or I see this wrong? I do not want a door for a hacker up. do you? |
1: Your forum root folder is the root that I'm talking about. If your forums are located at www.example.com/forums/, then the forum root is the /forums/ directory. You must upload all of the contents (files and folders) of the 'upload' folder into your forum root.
2: All files in a default vBulletin installation are publicly accessible. There's no reason to make the files private as long as there is no room for an exploit. Since these files contain the plugin code and nothing more, it would not do anyone any good to try to access these files. Therefore, no .htaccess is needed. |
If I hack your (zip) unzip, I get a folder. / Upload / madp.
Do I have this folder in the root add? www.Forum-Germany.de/Forum/madp/ <- really? So I copy your php files with others in the root, but the whole folder. |
The entire folder should be copied. After the upload, you should have this:
www.forum-germany.de/forum/madp/detection.php www.forum-germany.de/forum/madp/functions_madp.php www.forum-germany.de/forum/madp/prevention.php www.forum-germany.de/forum/madp/set.php (IF www.forum-germany.de/forum/ is the location of your forums!) The product file (product-kiros_madp.xml) also needs to be imported through the AdminCP product manager. |
Thank you. I have it installed. It has 20 seconds. :D
But I'm still worried that hackers can use this folder to a virus or something in my forum to bring. If I were a htaccess file would create, how must it look like? can you please tell me? : o I am sorry that I pester. |
Quote:
Quote:
|
Quote:
If you know how, you can simply copy the code from the files to the plugins, but this will make vBulletin consistently use more memory. The modification is coded with files to make everything faster and more efficient. Again, the files do not add any risk because they are only useful if vBulletin uses them - not if some person tries to. Quote:
|
ok I do not install htaccess.
another problem: I was with the IE as admin and registered with the FF as a user. but there is no double account displayed. pn, etc. did not set anything. |
What is the main difference between your mod and this here: https://vborg.vbsupport.ru/showthrea...Login+Detector
|
That is but in the description. ;)
|
Quote:
nobody can access your directory then without knowing the exact filenames. |
Nice mod. Found a small error in 2 phrases.
In madp_reg_message: Code:
A new account by the name of {3}/member.php?do=getinfo&username={1}]{1} has been registered. {4}Code:
A new account by the name of {3}/member.php?do=getinfo&username={1}]{1} has been registered with the IP address: {5}. {4}The & isn't being parsed. The link will now show up as Code:
http://www.forum.com/member.php?do=getinfo&username=rayCode:
http://www.forum.com/member.php?do=getinfo&username=ray |
Quote:
Quote:
Quote:
Quote:
|
real? an empty index.html can protect me?
|
Quote:
Point is, the & is not being parsed. In other words, the link that'll show up in the message or pm will be: http://www.forum.com/member.php?do=g...p;username=ray instead of http://www.forum.com/member.php?do=getinfo&username=ray Not clear enough? Here's how it would be on vb.org: https://vborg.vbsupport.ru/member.ph...;username=ray- Doesn't work, because the "&" isn't parsed. What does work is: https://vborg.vbsupport.ru/member.ph...&username=ray- |
I have Multiple account login detector (AE Detector) installed.
https://vborg.vbsupport.ru/showthread.php?t=183268 Is this an upgrade for that or a completely different installation? |
Quote:
Quote:
The & entity is a standard - just like &nsbp; and © - but since this is affecting some browsers like Opera, I'll try it with a blank & in hopes that it will be correctly parsed into &. Thank you for bringing this up. Quote:
|
OK thank you very much for response.
|
Great job ..... ANd thanks ,,
|
Quote:
lets say that alessai1 and alessai2 are sharing the same computer when i open alessai1 profile it will be great if there is a tab (anything else is fine) that shows alessai2 is sharing the computer with alessai1..... when i want to give alessai1 infraction a note appears, that tell me alessai2 is sharing the computer with alessai1 another idea (dont really need it) if alessai1 and alessai2 posted in the same thread, a small icon appears on alessai1 postbit that takes you to alessai2 post (and same apply to alessai2 post). those ideas will make our life much easier because to me right now the addon is useless because i have a big forum, and i cant prevent every one and cant check every thread created by the addon |
Quote:
Maybe in time, if I learn more about the differences in vBulletin versions, install/uninstall code for database tables, and SQL, itself. For now, though, my only suggestion is to let the modification prevent multiple registrants, and then prune the multiple accounts on a weekly basis by going to the AdmcinCP home, clicking [View] next to 'Users to Moderate' near the top, and deleting all of them. That should work out nicely as long as you have the Prevention Usergroup set to 4 (Users Awaiting Moderation). Again, I'm sorry that I cannot add in those features at this time =/ On a brighter note, I'm about to release version 1.0.2, which has a few improvements, a fix for the & interpretation that 'ray-' brought up, and an added feature (Ignored ISPs). |
Alright, version 1.0.2 has been released.
The Ignored ISPs feature has not been sufficiently tested, so while I will continue testing it on my forums, I would like feedback on this somewhat-beta feature. I'll try to have version 1.0.3 out as soon as possible, which will enable administrators to have a custom name for the cookie instead of just IDstack. Edit: I have just finished up version 1.0.3 and I plan to release it later today - after a good bit of testing. |
| All times are GMT. The time now is 07:14 PM. |
Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
| X vBulletin 3.8.12 by vBS Debug Information | |
|---|---|
|
|
 More Information |
|
|
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|