vb.org Archive - Failed Login Attempts

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)

- - Failed Login Attempts (https://vborg.vbsupport.ru/showthread.php?t=298202)

egexperiment626

05-15-2013 11:05 PM

Failed Login Attempts

In the last week, 3members reported receiving emails that said "they had 5 failed attempts at logging into their account". I also got one that someone tried my account. Both members report it wasn't them trying to log in. The user names started with "APR", "BAM" and "BER", so I'm wondering if someone going down my members list trying to log in?

Has anyone had this happen to them? It looks like it's the same IP trying to hit all the accounts, so I've banned it. But I'm wondering if there is something else I should be doing.

I recently added a bunch of mods, could that be causing the issue?

Help!

ForceHSS

05-16-2013 12:02 AM

It's bots trying to force there way into accounts

egexperiment626

05-16-2013 01:13 AM

A quick internet search of the IP shows it seems to be happening on other sites. I blocked the IP and similar IPs... hope that does the trick. Also ran a check for vulnerable passwords and all members passed.

If there are suggestions on other things to do, I'm open to ideas!

ForceHSS

05-16-2013 02:31 AM

www.vbulletin.org/forum/showthread.php?t=268208
www.vbulletin.org/forum/showthread.php?t=294633
Also the one in my sig

Joe Chapline

05-16-2013 12:50 PM

The same thing is happening on my forum. The hacker's IP address is already banned under options/user banning options in the forum admin control panel, but apparently that doesn't stop login attempts. I'm looking for a way to do that.

egexperiment626

05-16-2013 08:55 PM

That Ban Spiders by User Agent mod looks pretty good. I have a great spam program and have blocked the URL, but with them trying to login as existing members there really isn't a stop. But that Ban Spiders might help. And it'll be nice to control the spiders.

Amaury

05-16-2013 11:47 PM

It's nothing to worry about if you have a secure password.

We started getting them a few days ago.

egexperiment626

05-17-2013 01:39 AM

I wasn't worry... Until I had a member request an account delete because of it. So anything I can do to comfort the members I'm trying to do.

Amaury

05-17-2013 01:47 AM

Quote:

Originally Posted by egexperiment626 (Post 2422591)

I wasn't worry... Until I had a member request an account delete because of it. So anything I can do to comfort the members I'm trying to do.

Post an announcement on your forum that reassures members it's nothing to worry about. Just make sure they have secure passwords.

All times are GMT. The time now is 05:10 PM.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.02042 seconds Memory Usage 1,723KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)post_thanks_navbar_search (1)printthread (9)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: