vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Modification Requests/Questions (Unpaid) (https://vborg.vbsupport.ru/forumdisplay.php?f=112)
-   -   User could be???? (https://vborg.vbsupport.ru/showthread.php?t=147055)

bigwest 05-12-2007 02:02 AM
User could be????
 
I have searched and I can't find the answer.....

There used to be a hack (a long time ago maybe vb 2.0) that would allow you to determine users that shared passwords, IP addresses etc. It was much easier than searching for similar IP addresses in the admin CP because it would group all users sharing certain characteristics together so you could tell what users might be the same person.

Is there a modern version of a hack like that?

Thank you in advance for your time.

bigwest 07-14-2007 08:32 PM
Anyone know?

cyberphr 07-14-2007 08:57 PM
I don't think there is. It's not particularly necessary now, you could use the ACP or search the database.

UltimateOreo! 07-14-2007 10:07 PM
I believe there is a modification to check shared IP addresses, but password checking will be no longer available. Not with MD5 and hashing securities.

EnIgMa1234 07-14-2007 10:09 PM
Not really, it can still be done. Just compare the MD5 hashes from the database

UltimateOreo! 07-14-2007 10:12 PM
If I'm not mistaken, the hash "scrambles" the already encrypted password, so it won't be the same. Hehe, I'm probably mistaken though. I'll do more research on it.

Attilitus 07-14-2007 10:55 PM
Right vbulletin stores passwords as salted md5 hashes. What this means is that for each user a random string is generated ("abc" for example) and is stored in the database under their username as a "salt." When they register and enter in their password it is "salted" with the random string before being hashed. So Password becomes md5(passwordabc). Then when a user logs in what they enter is hashed in the same manner with the salt appended to the end.

So there is no way to compare user's passwords as each user has their own individual salt associated with their username.

EnIgMa1234 07-14-2007 10:58 PM
My mistake :)


All times are GMT. The time now is 01:51 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01768 seconds
  • Memory Usage 1,715KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (8)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete