Get an e-mail if someone is trying to access your Admin CP (With IP address)

Here's my version:

In sessions.php find this code:

Code:

    if (md5($loginpassword)!=$bbuserinfo[password]) {

right below it, add this code:

Code:

			$ipaddress=iif(getenv("REMOTE_ADDR")!="",getenv("REMOTE_ADDR"),$HTTP_HOST);
			$iphostname = @gethostbyaddr($ipaddress);
			$message="Someone is trying to login using your admin account!\n\nUsername he tried to use: $loginusername\nPassword he tried to use: $loginpassword (".md5($loginpassword)." in encryption)\n\nThe IP address is: $ipaddress\nThe host is: $iphostname";
			mail($webmasteremail,"Warning: vBulletin Admin Login Tried",$message,"From: \"$bbtitle Admin CP\" <$webmasteremail>");

You will get a message:

Quote:

Someone is trying to login using your admin account!

Username he tried to use: xxx
Password he tried to use: xxx (xxxxxxxxxxxxxxxxxxxx in encryption)

The IP address is: xx.xx.xx.xx

every time someone is trying to login to the admin cp with no success.

Have fun.

[Mickie D]

well today i sent out a mass email to 6000 members on my site

to find to my astonishment it sent out 6000 emails to everyone saying that someone was trying to access the admin cp

it also sent out my password in encryption to everyone of my members

lucky people have auto responses on ..... so i saw it straight away from a few members auto's

to be honest i find this site fantastic and the work people do, i have been hacking boards for about 5 years now i followed this down to the last letter.

but i am so unhappy that this could happen ... it makes me look incompetent , stupid and now everyone will be wondering what this this admin cp is all about

please someone tell me this is not a joke !!!!

[arracing]

[QUOTE]Originally posted by Mickie D
well today i sent out a mass email to 6000 members on my site

to find to my astonishment it sent out 6000 emails to everyone saying that someone was trying to access the admin cp

it also sent out my password in encryption to everyone of my members

lucky people have auto responses on ..... so i saw it straight away from a few members auto's

to be honest i find this site fantastic and the work people do, i have been hacking boards for about 5 years now i followed this down to the last letter.

but i am so unhappy that this could happen ... it makes me look incompetent , stupid and now everyone will be wondering what this this admin cp is all about

please someone tell me this is not a joke !!!!

[Mickie D]

thank you m8, it was like a hit from the blue (whatever that is like lol)

the worst part is the members that got the mail all tried to login into the admin panel not on purpose of course but to get in the site

i had 2000 mails to my hotmail acount telling me that these people tried to login there it actually stopped at 1000 odd because i run out of space with hotmail

please if you have installed this be careful when mass mailing

[Mickie D]

http://www.world-of-digital.com/foru...threadid=15492

look at this

im not advertising my site just so pissed that this has happened

[Mikal]

I'm sorry to say I have the same problem, when sending mail within the CP

it sends:

Someone is trying to login to the Sushi Incorporated control panel!
The Script was : /forums/admin/email.php

Username they tried to use:xxxxx
Password they tried to use:xxxxx (xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx in encryption)

The IP address is: xxx.xxx.xxx.xxx
The host is: xxx.xxx.dk

Search for members using this ip
http://www.sushi-inc.dk/forums/admin...xx.xxx.xxx.xxx

Thier cookie identifys them as W@NKER?

Sessions identifys them as W@NKER?

Any solution to that??

and I also recieve 4-5 mails every time I log in admin with correct password.


I use VB 2.2.9

Please help!!

Thanks in advance


[QUOTE]Originally posted by Mickie D
http://www.world-of-digital.com/foru...threadid=15492

look at this

im not advertising my site just so pissed that this has happened

[sonic3d]

is there a way so it can send it to two email addresses?

l8er
sonic

[Mustang5ohhh]

Another great hack FireFly. *clicks install*

There is one part I would like to see added on though for future versions. How about the "hackers" IP being banned after 3 un-sucessful attempts to login to the panel ? Something to think about.

M

[midnightz]

hehe

I would like to put a text warning on below the admin password box about the protection and a note that says all unauthorized violators will be recored and sent to my data center.

Which file or template would I add my warning to?

Cheers,

Midz

[midnightz]

hehe

I would like to put a text warning on below the admin password box about the protection and a note that says all unauthorized violators will be recored and sent to my data center.

Which file or template would I add my warning to?

Cheers,

Midz

[deepdark]

is not working for me ?????????