vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB4 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=251)
-   -   [REQUEST] Mass Password Reset for VB4 (https://vborg.vbsupport.ru/showthread.php?t=243919)

Webbstre 06-04-2010 03:52 AM
[REQUEST] Mass Password Reset for VB4
 
I've been searching around and can't find a way to do this anywhere in VB4, and there appear to be no mods as far as the search box has shown me. I am soon going to be launching my revamped website, finally having switched over from a crazy drupal/wordpress/phpbb3 installation to just use vBulletin. Once the site goes live I want to send out a welcome e-mail to all of my users, which also includes a password reset included with it.

If there are already ways to do this, I would appreciate being told how. If not, I'm sure a Mass Password reset mod would be quite useful, as I have seen requests for it on these boards leftover from VB3 and even VB2.

Floris 06-04-2010 04:46 AM
vBulletin does not allow you anymore to use a password that's the same as the username.

Run a manual query on the database to encode the pass to be like the username.

Then use the internal tool to diagnose for vulenarable passwords, it will find ALL users ..

then rewrite it to not show as vulnerable but as password reset email ..

and it generates the new pass for the user and emails them.

--------------- Added [DATE]1275630577[/DATE] at [TIME]1275630577[/TIME] ---------------

PHP Code:
<?php // made with help by ryan ashbrook, madmikeyb and chroder, 
// for floris at http://vbfans.com

die(); // uncomment this before using, and after editing this file.
require_once ( './global.php' );
$query $vbulletin->db->query_read "SELECT * FROM `" TABLE_PREFIX "user` WHERE usergroupid = 95" );
while ( $user $vbulletin->db->fetch_array $query ) )
{
    echo ( '<p>Updating user ' $user['username'] . '...' );
    $vbulletin->db->query_write '
        UPDATE `' TABLE_PREFIX 'user`
        SET password = \'' md5 md5 $user['username']) . $user['salt'] ) . '\'
        WHERE userid = ' $user['userid'] . '
    ' );
    echo ( ' done!</p>' );
}
?>
This is what I used on 3.8 forum to force the usergroupid 95 to have the same password as the username, so afterwards I could use the ' check for vulnerable pass ' feature built-in from vbulletin 3.8.

surely this works on 4.0 too.

BACK YOUR DB UP
put this in like 'forcepass.php' and put it in admincp/

edit the file to point to the usergroup,
add // in front of die();

and run it from the browser.

good luck :)

Xencored 06-04-2010 10:59 AM
Quote:
Originally Posted by Floris (Post 2048075)
vBulletin does not allow you anymore to use a password that's the same as the username.

Run a manual query on the database to encode the pass to be like the username.

Then use the internal tool to diagnose for vulenarable passwords, it will find ALL users ..

then rewrite it to not show as vulnerable but as password reset email ..

and it generates the new pass for the user and emails them.

--------------- Added [DATE]1275630577[/DATE] at [TIME]1275630577[/TIME] ---------------

PHP Code:
<?php // made with help by ryan ashbrook, madmikeyb and chroder, 
// for floris at http://vbfans.com

die(); // uncomment this before using, and after editing this file.
require_once ( './global.php' );
$query $vbulletin->db->query_read "SELECT * FROM `" TABLE_PREFIX "user` WHERE usergroupid = 95" );
while ( $user $vbulletin->db->fetch_array $query ) )
{
    echo ( '<p>Updating user ' $user['username'] . '...' );
    $vbulletin->db->query_write '
        UPDATE `' TABLE_PREFIX 'user`
        SET password = \'' md5 md5 $user['username']) . $user['salt'] ) . '\'
        WHERE userid = ' $user['userid'] . '
    ' );
    echo ( ' done!</p>' );
}
?>
This is what I used on 3.8 forum to force the usergroupid 95 to have the same password as the username, so afterwards I could use the ' check for vulnerable pass ' feature built-in from vbulletin 3.8.

surely this works on 4.0 too.

BACK YOUR DB UP
put this in like 'forcepass.php' and put it in admincp/

edit the file to point to the usergroup,
add // in front of die();

and run it from the browser.

good luck :)
Very nice Floris i will be bookmarking this page for sure thanks for the share :up:

Webbstre 06-05-2010 03:33 AM
Thank you!

babyv0x 03-19-2012 02:28 PM
thank you so much !

Skyrider 01-24-2015 09:02 AM
Works nicely on primary usergroups, but I'm afraid doesn't work at all on users that are in a secondary group. (gives blank page).

ozzy47 01-24-2015 09:08 AM
Quote:
Originally Posted by Skyrider (Post 2534279)
Works nicely on primary usergroups, but I'm afraid doesn't work at all on users that are in a secondary group. (gives blank page).
Perhaps read a article I wrote just over a ago, https://vborg.vbsupport.ru/showthread.php?t=303731

adamnp 04-15-2015 10:21 PM
anyone able to fix this to work for any usergroup in vb4? :P


All times are GMT. The time now is 10:50 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01111 seconds
  • Memory Usage 1,749KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_php_printable
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (8)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete