Auto-Moderate Evading Banned Members (when they make new accounts)
 

Banned Members Filter by Rafael Lopez
03/10/2009 (m/d/y)

CURRENT VERSION: 2.0

PLEASE REMEMBER TO CLICK INSTALL!

This mod will try and block banned members from evading their ban through making a new account.'

::: CHANGE LOG :::
v1.0 - original release
v2.0 - First update (released: 04/08/09 (m/d/y))
--Mod now sets cookies on login which are not destroyed on logouts. These cookies can be used to help catch evaders
--Mod now supports notification through:
----New threads
----Private Messages
--You may choose whether you want users to be moderated or auto-banned depending on how they are detected.



Here's how it works:

Upon registration, vBulletin will search for all the users who have used the IP that the current person registering is currently using.
It will then check if any of those users are in the BANNED usergroup.

If there are no user matches, or if no user matches are in the banned group then the plugin will continue to check for set cookies which belong to banned users.

If IPs match, then it either auto-bans the account or it moderates it. This is set through vBulletin Options. If IPs are set to
moderate and not auto-ban then the plugin will check for cookies as well - if it finds a cookie belonging to a banned user and you have it set to auto-ban on cookies
then it will AUTO-BAN the new account even though it had found an IP which is set to moderate. Higher punishment "wins".

This has the POTENTIAL to slow down registration dramatically on forums with a LOT of posts. For reference, it does not add any noticable time for my forum which has about half a million posts. So you should probably be okay.


::: Installation :::

Extract product-moderate_user_if_banned.xml
Upload product-moderate_user_if_banned.xml by going to ADMIN CP --> PLUGINS AND PRODUCTS --> MANAGE PRODUCTS --> ADD/IMPORT PRODUCT
If you are upgrading then you should set "over-write" to yes.

And you're done!


If you liked this mod you might also like my others:

Select Postbit [https://vborg.vbsupport.ru/showthread.php?t=203324]
Shared Admin Notes [https://vborg.vbsupport.ru/showthread.php?t=203326]
Internal Forums Closed Message/Reason [https://vborg.vbsupport.ru/showthread.php?t=207855]
Multi-Quote / Edit Integration [https://vborg.vbsupport.ru/showthread.php?t=210620]

Had forgotten to include table prefix code, included now.

thanks will give it a go installed.

what about if they just restart thier router ?!

Right, well there is only so much we can do.

On the bright side, chances are that if they have been around for a bit and posted a lot (from my experience this is USUALLY the case) that the new IP they get has been leased to them before by their ISP and thus will also be on record for your forums.

If not, tough luck :p

There is already a hack called multiple account detector, that hack does this too, plus it can detect it based on cookies which is better then by IP.

nice work tho, but I will stick with the other hack for now.

Good work, thank you

Thank you!

Any chance that you could tweak this a bit so that users that try to ban evade get their new accounts banned automatically instead of being placed in the moderation que? It would be greatly appreciated, and I dont think would require too too much re writing.

Reserved.

Check it later

I should have an updated version out tomorrow with cookie checking, notifications, and ability to autoban depending on the detection (set through vb options).

Just ironing out a few things.

Sorry for the delay...I've been busy with school.

That mod doesnt work worth a crap . I have it and it doesnt stop them at all

I'm very glad to hear that!

I was actually looking for a mod that detects when a user is trying to evade a ban or register multiple accounts via IP and Cookie checking!

I can't wait! I'm going to install it as soon as it's released! :D

Alright, new version is up.

Hope it works alright!

For some reason I installed it, looks fine, and I asked a user to just do a duplicate to check it out.. put the PM'ing on. Didn't get a PM. I figured I would try this on 3.7.4 (what I have) didn't work. Is that why, because I have an older version?

Well, is the original user banned?

This does not alert you when someone has multiple accounts - it only alerts you if one of the accounts is banned.

As for vB versions....I wish I could be of more help. I would expect it to work with 3.7.4 but I'm not certain.

Although, I suppose that it wouldn't be difficult to have it detect multiple accounts regardless of whether they are banned or not - I guess I could implement that if you guys want :)

This should be built into vBulletin.

heh

This is great, but i have twi things:

First:
When some ban evading user is detected, it will be nice if new reply into selected thread (threadID set in adminCP) will be posted. Creating new thread always if someone is detected is good, but this will be better (for me :) ).


Second:
When ban evade is detected, we have only 2 choices. Permament ban OR move to moderated group. Can you add a third option - "Only send PM" or something like that? So if user is foud based on IPmatch / cookies, let him register normal way and only send the PM to defined user(s).


Thanks a LOT

Sorry for my english. I hope you understodt what i mean.

Holy

Okay, I see what you mean. Sounds good for a later release!

Thanks very cool

I have a sneaky suspicion, this is for registrations correct. What you should try doing is this.

if you look up more into php you can actually just ban by this server variable.

I don't know much about setting it up in vbulletin, so I am going to set it up like you would in just php.

however this would require editing some banning options..

However with proxies it probably wouldn't matter, much but this will catch their ip even if its dynamic.

also if done incorrectly, you would single handily banned everyone on that host :p

Question: The mod uses the IP address of the banned users when they 1st registered? Or on the day they were banned?

installed, giving it a try

Anyone know if this is working properly now?

cool

Any info about vB4 version? This hack is excelent and help me alot ;)

Thanks for any information :)

i like this.... thanks

But it dont make a post... on my site any ideas why

Banned Members Filter by Rafael Lopez
This addon make a bug, if you want to create a new Thread Prefixes.
its not possible to build new prefixes !!!!

Negative ... on 3.8.2 works everything fine.

But now i looking for similiar hack for vB 4.x

update for 4.0?

This let a member with the same ip address re register and I have it set to ban ip's that are banned.

*he recieved an infraction that lasts for 24 hours & was able to re register with same ip

When the user is banned does it check all other accounts for the same IP or does this only do this when they register?

I was unaware that this did not work for 4.x (though I suppose it should have been rather obvious, haha)

Is there a mod that does the same? If not, I'll see if I can port it but I have yet to do a 4 series mod so I don't know if the infrastructure changed.

I don't really have a forum anymore though so I've been inactive. I have an expired license which should let me run 4.0.2 I think.

I'll also look into the bug mentioned in #33.

@hellbomb: this mod does not check anything when banning a user (yet, anyways...)

I believe it checks the IP address that the user had when he registered and then EVERY IP he ever made a post/thread with.

Made this a while ago so I don't remember off hand. Pretty sure that's correct though :)

Pretty sure this has always been working on vB3.5.x (designed for 3.8 but I'm sure 3.5 should work too...)

yeah, this mod is just awsome !!!!!!!!
Waiting for vb 4.
Pleaseeeeeeeeeeeeeeeeeeeeeeeeeeeeeee.


Thnx ;)

Works great, The only thing I can see so far that it doesnt do is detect users who have been banned from infractions.

It must do that Sonic, the hack looks for user group ID, ip, and other things.
Banned form infractions or not doesn't matter

Regards !!!!

i had a problem with a troll a few years ago that would use IP proxy sites to get around detection. he was able to post a few disruptive messages each time before i could be certain it was him and could ban him. eventually i realized he used the same password all the time so i would compare all new users passwords to the encrypted password the troll was using. he couldn't figure out how i was able to ban him before he even posted anything and left the forum shortly later.

you might want to add a feature to this mod where users who have the same pass as a known troll need to be authorized before they can post... or something like that. its not fool proof since two people might pick the same pass just out of shear luck but the odds of this are slim.