Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > vBulletin 3.5 > vBulletin 3.5 Add-ons
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools
Multiple account login detector (AE Detector) Details »»
Multiple account login detector (AE Detector)
Version: 1.03, by MPDev MPDev is offline
Developer Last Online: Dec 2016 Show Printable Version Email this Page

Version: 3.5.4 Rating:
Released: 02-08-2006 Last Update: 04-16-2006 Installs: 886
Uses Plugins
 
No support by the author.

If you are like me and migrated from .threads, a common modification was an "AE detector", a simple mod that saved a cookie of a history of ids logged into on your site. If someone logged into more than one account, you got a PM letting you know that your site was being accessed from multiple accounts.

Over the years this was very helpful in identifying users who were posting under multiple accounts (alter-egos!) and users who would return after being banned.

You might be wondering why I don't use the vbcookie call - well, thats because on logout all vB cookies are cleared, so we need to store a cookie that is not effected by the login/logout process.

New Installation
1. Add New Product with attached XML
2. Go to vBulletin Options -> AE Multiple Login Detection Settings and set your specific settings.

Time to install: Easy - 2 minutes.

Upgrade
If you installed this as a Plug-in manually, you can delete that plugin and install this Product, just make sure to go into the Options and set them accordingly.

I hope you find this useful and will click INSTALL if you use it; should it prove useful to enough people I can look at making this installation more automated without the need for edits and an Admin Options page.

To upgrade you will want to reimport this XML file and edit your options accordingly.

1.0.3
-----
. Added a check to ensure that users weren't deleted when reporting violations
. added htmlspecialchars_uni call to username

Note: I am unable to get the call to construct_phrase with $vbphrase['multiplelogin_alert'] to work reliably, as such the $message variable is still set manually inside the plug-in and not via the phrase. If anyone has an idea of why this might not always work, I'm all ears.

1.0.2
-----
. Updated to include exclusion groups, users
. Changed so PM is sent by ae sender id

1.0.1
-----
. Released as a Product (thank you PHPGeek2k3 for your help)
. Added option to post to a forum versus send a PM (or both)
. All settings moved into Admin Option

1.0.0
-----
Initial release.

Supporters / CoAuthors

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #452  
Old 08-09-2007, 01:51 PM
MPDev's Avatar
MPDev MPDev is offline
 
Join Date: Oct 2003
Location: Virginia
Posts: 885
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Yep, the IP is a known issue but not something easily remedied.
Reply With Quote
  #453  
Old 08-10-2007, 04:26 AM
NeitherSparky's Avatar
NeitherSparky NeitherSparky is offline
 
Join Date: Aug 2006
Location: Sacramento, CA
Posts: 118
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by bryanb View Post
There is one thing I've noticed - I don't know if it's a bug or not. When the AE detector detects a member with another account, I have a moderator account PM the mods and post in a private thread. This mod account assumes the perpetrators IP address.

For instance, joeblow logs in from janeblows computer - the AE announcement is sent via PM to the mods and posted in a private thread by moderator1. Moderator1 now has joeblow's IP address. Please check. Thanks!
Yeah the first time I saw that my admin account had acquired all these weird IPs addys I thought the account had been hacked. It took me a little while to figure out what had actually happened.
Reply With Quote
  #454  
Old 08-21-2007, 09:25 AM
Chipper Chipper is offline
 
Join Date: May 2007
Posts: 2
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Great tool!! Busted a few people already. Using 3.68 and seems to work fine.

Congrats on a great tool!!
Reply With Quote
  #455  
Old 09-09-2007, 02:36 AM
six58 six58 is offline
 
Join Date: May 2005
Location: Australia
Posts: 12
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

hi have read through thread but a couple of things i'm still not clear on.

a) is it possible for two users (not using same pc) but under a proxy that gives them both the same IP address on the internet, to trip this detector? in other words tripping it through the IP - yes i know its cookie based and not IP based but i'm wondering if a proxy can be misread and trip.

b) i see that the reporter of the trip gets lumbered with the IP address of who is being reported. does the program also then share all the other IP addresses that either person uses with each other? e.g detected person1 and person2 on IP1. looking into other IP's the users may have used they suddenly also share IP2,IP3 etc.

i need to know if there is any possibility no matter how slim that these are possible before i totally ruin someone's life thanks

edit: was meant to post this in 3.6.x thread oops
Reply With Quote
  #456  
Old 09-09-2007, 04:47 AM
NeitherSparky's Avatar
NeitherSparky NeitherSparky is offline
 
Join Date: Aug 2006
Location: Sacramento, CA
Posts: 118
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

(The answer ought to be the same regardless of the version so I'm just answering here...)

Quote:
Originally Posted by six58 View Post
a) is it possible for two users (not using same pc) but under a proxy that gives them both the same IP address on the internet, to trip this detector? in other words tripping it through the IP - yes i know its cookie based and not IP based but i'm wondering if a proxy can be misread and trip.
Nah. My brother and I share an apartment and have our own computers and we've never tripped this.

Quote:
Originally Posted by six58 View Post
b) i see that the reporter of the trip gets lumbered with the IP address of who is being reported. does the program also then share all the other IP addresses that either person uses with each other? e.g detected person1 and person2 on IP1. looking into other IP's the users may have used they suddenly also share IP2,IP3 etc.
I'm not quite sure I understand the question...Like if I have my admin account be the one that reports the trip, that account gets the IP of the person tripping the detector added to the "IPs posted from." Um, that's all that happens as far as I know. And you probably shouldn't have anything set so that non-staff can view IPs, either on a post, on the Who's Online, or in a member's history anyways.
Reply With Quote
  #457  
Old 10-09-2007, 07:35 PM
MrNase MrNase is offline
 
Join Date: May 2003
Location: Germany
Posts: 670
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

How can I verify that it is working?


We have two admins, #2 logged in as #324 (fake user) and then #324 logged in as #1 and then #1 logged in as #2 again and nothing happened.
Reply With Quote
  #458  
Old 10-14-2007, 07:26 PM
coffee_bean coffee_bean is offline
 
Join Date: Apr 2005
Posts: 9
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Have you checked in the AdminCP that the user groups in question are not ignored by the detector?
Reply With Quote
  #459  
Old 10-29-2007, 02:26 PM
frozen187 frozen187 is offline
 
Join Date: Mar 2006
Posts: 19
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I've seem to run into a issue and this only happens with this users account.

deepsilence seems to have multiple personalities using deepsilence and deepsilence sharing the same computer.
Reply With Quote
  #460  
Old 11-02-2007, 03:37 PM
flynnibus flynnibus is offline
 
Join Date: Nov 2004
Posts: 32
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I too have seen the same user trip the detector on themselves. So far, only one account has done it.

But I'm also experiencing other wierd behavior, such as the same pair of users tripping it multiple times in sequence. Can someone elaborate on the method use? Is this normal?

For instance, userA and userB are a couple, so they share a computer and both have separate accounts on the forum.

I get a userA tripped AE detector PM - ok, expected.

But I then get the same UserA tripped... multiple times afterwards (and not UserB inbetween).

I would expect possibly A, then B, then A, etc... Not A, A, A
Reply With Quote
  #461  
Old 11-02-2007, 04:54 PM
frozen187 frozen187 is offline
 
Join Date: Mar 2006
Posts: 19
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I think I have it cleared now I sent the user a message asking them to clear all their cookies. And then I installed a newer version
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 03:01 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05483 seconds
  • Memory Usage 2,311KB
  • Queries Executed 26 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (11)post_thanks_box
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete