Cracker Tracker
 

CrackerTracker

this is a port from the standalone system of the Cback.de CrackerTracker (was original made for phpBB) to an Product for vB

• Description
  this hack search in the requeststring for definied codeparts, is found any hit the skript was die and send a little massage
  in addition of security this simply skript discharged the server by automatic attacks from botskripts if the definations have a hit in the requests
• Instructions
  Install
  • upload the /elog/ directory and set the CHMOD of counter.txt and logfile_injects.txt to 666, this is only to log blocked requests
    if you not want to have writeable files on youre server this hack works without logging too and you can leave this part
  • at last install the CrackerTracker100-product.xml
  Update
  • uninstall product of v100
  • reinstall new product of v101
  Uninstall
  • uninstall the CrackerTracker100-product.xml
  • upload thedelete /elog/ directory
• Credits & Information
  i have only port this hack to a Plugin
  Authorof the Hack is Cback from www.cback.de
  only restraint of Cback is the Copyright in the footer
  
  (i hope my english was understandable :o )
  
  
  
• History
  • 10/03/06 Release 1.0.0
  • 15/05/06 Release 1.0.1
    • new searchpattern and handfull old replaced
    • little codemodifications
  • 15/05/06 Release 1.0.2
    • one typo in list (missing ",")

What does this do? Sorry didnt quite understand.

This hack protecs your board against people who wants to '(cr)hack your forum. Original coded by CBack for phpBB and now ported to vb. One of the best hacks ever...;)

phpBB have any problems with automated hacking attacks by botskripts was found her victim over google and send many requets to the board

this skript search for a lot of requets how '<skript>' and died the request, so the server has a littel less of load and an bad request can block befor he does work

is an similar way like the $_global handling of vb in begin of ini.php

The best Hack from cBack in the whole phpBB World. Thx Onur - absolut excellent work ! :)

If anyone does not know cBack : http://www.community.cback.de/viewforum.php?f=52

@Onur - please edit a Link to cBack and the Title of this Hack to cBack CrackerTracker. And do not forget a link to vbhacks-germany etc. ;)

And sorry - but no one can understand your english description here. ;)

http://sourceforge.net/project/showf...roup_id=154972

ok trying to understand, what this hack do is if someone or something tried to hack your board it will keep a log and then what slow server respond or what?????:confused: :confused: :confused:

i mean, comes a automated hackingskript (santy-webworm) who sending many requets to youre board, this skript end the bulid and delivery of the requestet site and save so cputime and traffic
some hackingrequests have no chance to do there work on patched boards, but you have a lot of traffic

What this guys trying to say is that his "addition" to your forum will kill the script if it notices any potential "bad request" are being sent to the forum.

1. Most of these request differ in "what they can do", showing phpinfo() is not going to help anyone own your server.
2. Vbulletin is not phpbb, and does not suffer from any of these problems to date.
3. If the request is being sent through a vbulletin php file they are not going to get executed anyway, this hack is Worthless on a Vbulletin Forum.

Acording to our phpbb specialist (on "my" board) :

Will this hack have any negative effects on vB through the "automatic update-system" or was this problem fixed when you ported it?

oops, I didnt see the edit note, but I'd still like to know it that "automatic update-system will cause any trouble...