Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > vBulletin 3.7 > vBulletin 3.7 Add-ons
vB Dummy ACP 1.0.0 Details »»
vB Dummy ACP 1.0.0
Version: 1.0.0, by Deceptor Deceptor is offline
Developer Last Online: Nov 2023 Show Printable Version Email this Page

Category: Miscellaneous Hacks - Version: 3.7.x Rating:
Released: 12-26-2008 Last Update: Never Installs: 16
Uses Plugins
Additional Files  
No support by the author.

vB Dummy ACP

This addon will allow you to create as many dummy acps as you like. The dummy acp acts exactly like your true admincp, but it will not allow anyone to login through it, even if the username and password provided are correct.


Features
  • Acts just like real admincp login
  • Can automatically defend against detection (explained below)
  • Won't even allow real admin logins
  • Easily create as many dummy acps as you like
  • Will work without plugins enabled (partially)


Defense Against Detection

In order for the dummy acp to be of any use, I've made it impossible to detect being a "dummy". This is done through the following methods:

1. File Check
The dummy acp checks the file being requested to see if it exists in the true admincp directory, so if a user requested dummyacp/plugin.php, they would see a login despite there being no plugin.php in the dummyacp folder. If they request a file that is not in the true admincp directory, a 404 error is shown.

2. Login Validation
You may know, that normal forum members who try to login to the acp will see the successfully logged in page, but then redirect back to the login page. The dummy acp keeps this functionality instead of completely blocking all logins. It will only show the login error page under two circumstances:

1. The login provided is actually wrong
2. The login provided is real, but an administration login


Note
While this will work without plugins enabled, if plugins are not enabled then the dummy acp will show users who login successfully with an admin login a successful login page, but -still- redirect them to the login page. So while they may not actually gain access to your admincp, someone trying to get into your forum would know your login works.

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #2  
Old 12-27-2008, 10:08 AM
valdet's Avatar
valdet valdet is offline
 
Join Date: Feb 2007
Posts: 505
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Very interesting. I might use this on April 1-st
Reply With Quote
  #3  
Old 12-27-2008, 08:21 PM
Alex LD Alex LD is offline
 
Join Date: Aug 2008
Location: Iowa
Posts: 68
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

No.. log of the people? IT doesn't send a PM to people who tried to login to an admin, that would be nice,

that said, I'm removing it because it serves no purpose if its not going to help me other then take up space on my server and trick people\

Also whats point of XML if you can't edit anything with it.

Sorry I don't like it and I could do a better job myself.
Reply With Quote
  #4  
Old 12-27-2008, 09:33 PM
Deceptor's Avatar
Deceptor Deceptor is offline
 
Join Date: Dec 2008
Location: England
Posts: 514
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Alex LD View Post
No.. log of the people? IT doesn't send a PM to people who tried to login to an admin, that would be nice,

that said, I'm removing it because it serves no purpose if its not going to help me other then take up space on my server and trick people\

Also whats point of XML if you can't edit anything with it.

Sorry I don't like it and I could do a better job myself.
It's meant as a trick so they -never- crack your login, using Brute force or any other method for that matter. As for space on your server, unless your hosting package is limited to 10MB space, I don't see an issue with a file being a less than few KB.

You're more than welcome to do better yourself though.
Reply With Quote
  #5  
Old 12-27-2008, 11:39 PM
rzpvile rzpvile is offline
 
Join Date: Oct 2005
Posts: 49
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Okay great app first off ignore any negative comments unless they make something better.

Here is what I am using this mod for:

Basically you leave this as your default admincp so you look like a noobish site owner and when a script kiddie gets mad at you for banning them or for whatever reason they try to "crack" your admincp thinking you're an idiot for leaving it at default when in fact it's a dummy cp so the tricks on them! so while they're trying to "crack" /admincp yours is actualy /customadmincp
Reply With Quote
  #6  
Old 12-28-2008, 12:55 AM
Zachery's Avatar
Zachery Zachery is offline
 
Join Date: Jul 2002
Location: Ontario, Canada
Posts: 11,440
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I think its an intresting idea, but a little htaccess and password protecting is far better than leaving some fake up.

Nice work though
Reply With Quote
  #7  
Old 12-28-2008, 03:25 AM
Deceptor's Avatar
Deceptor Deceptor is offline
 
Join Date: Dec 2008
Location: England
Posts: 514
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Zachery View Post
I think its an intresting idea, but a little htaccess and password protecting is far better than leaving some fake up.

Nice work though
I agree, and there's no reason htaccess can't be applied to the real Admin CP
Reply With Quote
  #8  
Old 01-06-2009, 01:43 AM
Hornstar Hornstar is offline
 
Join Date: Jun 2005
Location: Australia
Posts: 2,469
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

this could be okay if there was still a strike system attached to it.
Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 12:39 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04857 seconds
  • Memory Usage 2,266KB
  • Queries Executed 23 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (2)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (8)post_thanks_box
  • (8)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (8)post_thanks_postbit_info
  • (7)postbit
  • (8)postbit_onlinestatus
  • (8)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete