vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Modification Requests/Questions (Unpaid) (https://vborg.vbsupport.ru/forumdisplay.php?f=112)
-   -   User could be???? (https://vborg.vbsupport.ru/showthread.php?t=147055)

bigwest 05-12-2007 03:02 AM
User could be????
 
I have searched and I can't find the answer.....

There used to be a hack (a long time ago maybe vb 2.0) that would allow you to determine users that shared passwords, IP addresses etc. It was much easier than searching for similar IP addresses in the admin CP because it would group all users sharing certain characteristics together so you could tell what users might be the same person.

Is there a modern version of a hack like that?

Thank you in advance for your time.

bigwest 07-14-2007 09:32 PM
Anyone know?

cyberphr 07-14-2007 09:57 PM
I don't think there is. It's not particularly necessary now, you could use the ACP or search the database.

UltimateOreo! 07-14-2007 11:07 PM
I believe there is a modification to check shared IP addresses, but password checking will be no longer available. Not with MD5 and hashing securities.

EnIgMa1234 07-14-2007 11:09 PM
Not really, it can still be done. Just compare the MD5 hashes from the database

UltimateOreo! 07-14-2007 11:12 PM
If I'm not mistaken, the hash "scrambles" the already encrypted password, so it won't be the same. Hehe, I'm probably mistaken though. I'll do more research on it.

Attilitus 07-14-2007 11:55 PM
Right vbulletin stores passwords as salted md5 hashes. What this means is that for each user a random string is generated ("abc" for example) and is stored in the database under their username as a "salt." When they register and enter in their password it is "salted" with the random string before being hashed. So Password becomes md5(passwordabc). Then when a user logs in what they enter is hashed in the same manner with the salt appended to the end.

So there is no way to compare user's passwords as each user has their own individual salt associated with their username.

EnIgMa1234 07-14-2007 11:58 PM
My mistake :)


All times are GMT. The time now is 06:32 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01525 seconds
  • Memory Usage 1,723KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (8)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete