Version: 1.1, by EvilLS1
Developer Last Online: May 2021
Version: 3.0.5
Rating:
Released: 04-28-2004
Last Update: 01-07-2005
Installs: 239
No support by the author.
This is my version of the hack that Firefly released for VB2.
VB3's standard log of failed admincp login attempts is a nice feature.. but since you get no instant notification, by the time you check the log it could be too late. Also, the log doesn't show which passwords the potential intruder is trying... If someone is close to guessing my password I wanna know about it!
What does it do? With this hack, when someone tries to login to your admincp or modcp you'll get an email that contains the username they tried, the password they tried, their ip address, hostname, # of strikes, referer, script, and the date & time of the attempt.
It will look something like this:
Quote:
--------------------------------------------------
WARNING: Failed admin logon in vBulletin 3.0.1
--------------------------------------------------
Someone is trying to login to your Admin CP!
If the person who is attempting to access your CP happens to be registered & logged in, this line will also be included in the email:
Quote:
vBulletin has identified this user as: (intruder's real username here)
(Thanks to AlexanderT for the idea for this addon.)
Update (1-4-05): A couple of users have expressed concern about this mod sending a plaintext password over http for all logins. This update (v1.1) addresses that concern by only sending the password for cplogins. To update just re-do the first step in the instructions for your vbulletin version (the first edit to adminfunctions.php). Or if you'd prefer that the attempted password not be sent at all simply skip the edits to adminfunctions.php.
If you don't recieve an email when testing, make sure you have the webmaster email set in the admincp (vBulletin Options + Site Name / URL / Contact Details). Also, sometimes it takes a while for the email to arrive. So give it plenty of time before screaming "it doesn't work"..
Well I at least think it should be mentioned in the first post and the install file. I wasn't really bothered about it emailing the admin, its the fact it went through a proxy server and travelled about on the net unencrypted.
It is mentioned in the first post. It clearly states that it will send the password.
Quote:
Is there a real purpose to telling them what the password is? Someone logged in with an admin username you have their IP and everything else, why does it matter if they typed in "bob" as the password.
Yes, if someone is close to guessing your (the admins) password you will know about it.
It is mentioned in the first post. It clearly states that it will send the password.
Yes, if someone is close to guessing your (the admins) password you will know about it.
Yeah i know it says the password is sent but does the average user thats installed this know that its went from not sending the plaintext password over http when you login to sending it?
Most people seem to appreciate this hack but I doubt they know that it weakens security, if they were really that bothered they'd just rename the admin panel to something totally unguessable and put a http authentication box on top of the directory.
Alright, As you suggested I placed a note about this in the first post along with instructions on how to (optionally) make it send the encrypted password instead.
Hi works great thanks, how could you add Proxy IP too, as if someone is trying
to access your admin panel there will more than likely be using a proxy ...
Its in the hack instructions. 2nd edit to login.php
Quote:
Originally Posted by Eagle Creek
Nice hack but I get from EVERYONE who has made an wrong login an error. Not only for the ACP but on the whole forum.
As you can see he's running a script/page that has nothing to do with ACP.
From the hack instructions, 3rd edit to login.php, make sure you added the code below this section of code:
Code:
if ($logintype === 'cplogin' OR $logintype === 'modcplogin')
{
// log this error if attempting to access the control panel
require_once('./includes/functions_log_error.php');
As you can see in the code above, as long as the call to the vbmail() function is placed inside the $logintype === 'cplogin' if statement it should only send the email on cp logins.
Only one other person had that problem (emailing on all logins) so if the suggestions above don't fix it my only guess is that maybe its conflicting with another hack.
Hi works great thanks, how could you add Proxy IP too, as if someone is trying
to access your admin panel there will more than likely be using a proxy ...
Its in the hack instructions. 2nd edit to login.php
From the hack instructions, 3rd edit to login.php, make sure you added the code below this section of code:
Code:
if ($logintype === 'cplogin' OR $logintype === 'modcplogin')
{
// log this error if attempting to access the control panel
require_once('./includes/functions_log_error.php');
As you can see in the code above, as long as the call to the vbmail() function is placed inside the $logintype === 'cplogin' if statement it should only send the email on cp logins.
Only one other person had that problem (emailing on all logins) so if the suggestions above don't fix it my only guess is that maybe its conflicting with another hack.
Hi works great thanks, how could you add Proxy IP too, as if someone is trying
to access your admin panel there will more than likely be using a proxy ...
rh2004,
After looking at this hack it appears that with it installed along with this one it would send the actual IP even if the person is using a proxy.
Email notification if someone attempts to access your Admin CP Details »»
About Developer
Visit Web Site
No support by the author.
11-03-2004, 08:03 PM
