Administrative and Maintenance Tools - vB3.5 Email notification if someone attempts to access your Admin or Mod CP

vB3.5 Email notification if someone attempts to access your Admin or Mod CP
Version 1.0.1
(By Boofo)

What does this modification do?
When someone tries to login to your Admin CP or Mod CP, you will get an email that contains the username they tried, the password they tried, their IP address, hostname, number of strikes, referrer, script, and the date & time of the attempt. It also will now distinguish itself in the message subject between a failed Admin CP attempt and a failed Mode CP attempt, so you will know right off which CP they tried to login to.

NOTE: To alleviate anyone getting upset about plain text passwords being transmitted from the server, the ONLY time a plain text password is sent, is when it is a failed login attempt. It is not stored on the server anywhere and no hashed passwords are ever revealed to anyone. I think it's good to know if anyone is getting close to what my CP password is so I can change it if necessary.

Credits:
Thanks to EvilLS1 for making the vB 3.0 version of this modification on which this update is based and released with permission.

Version Information:
Version 1.0.0 --Initial release
Version 1.0.1 --Fixed user name being wrong on a user attempt.


Installation overview:
--------------------------------------
Files to edit: (2)
--incudes/adminfunctions.php
--login.php


What it looks like in the Mod CP when an anonymous users tries to login:

-----------------------------------------------------
Someone is trying to login to your Your Forums Mod CP!
-----------------------------------------------------
Username tried: Ned
Password tried: does this work?
IP Address: 1.123.23.4
Host: 1-123-23-4.some.name.com
Strikes: 4 out of 5
Referer: http://www.yoursite.com/forums/modcp/
Script: http://www.yoursite.com/forums/login.php
Date & Time: Monday, September 26th, 2005 at 8:22:29 am
-----------------------------------------------------

What it looks like in the Mod CP when a user from your site tries to login:

-----------------------------------------------------
Someone is trying to login to your Your Forums Mod CP!
-----------------------------------------------------
Username tried: Boofo
Password tried: does this work?
IP Address: 1.123.23.4
Host: 1-123-23-4.some.name.com
Strikes: 4 out of 5
Referer: http://www.yoursite.com/forums/modcp/
Script: http://www.yoursite.com/forums/login.php
Date & Time: Monday, September 26th, 2005 at 8:22:29 am
-----------------------------------------------------
USER ATTEMPT: Your Forums has identified this registered user as: Boofo

[Boofo]

EvilLS1 did one for 3.0. Try that one.

[Delphiprogrammi]

Quote:

Originally Posted by Boofo

EvilLS1 did one for 3.0. Try that one.

eerm i'm wrong i'm using vb 3.5.0(RC3)

[Boofo]

Then upload fresh files and re-edit them. There's no way it should not work. It goes to the webmasteremail.

[concepts]

Great Hack [installed]

**works Great!

[utw-Mephisto]

Is there a way to create a thread also in a certain forum ?

[utw-Mephisto]

A Plugin rather then fileedits would be great too

[Boofo]

Quote:

Originally Posted by utw-Mephisto

Is there a way to create a thread also in a certain forum ?

Wrong forum?

[Boofo]

Quote:

Originally Posted by utw-Mephisto

A Plugin rather then fileedits would be great too

You're right, a plug-in would be beter. But there are no hooks to handle this so we're stuck with file edits for now. I tried, but it couldn't happen.

[utw-Mephisto]

Quote:

Originally Posted by Boofo

Wrong forum?

No, I mean a thread instead an email

[Boofo]

I wouldn't do that as there is some personal info (ips, password tried) that really doesn't need to be posted anywhere. I only convereted this because I like to know if someone is messing around with the board. And since the email only comes to me, I feel that it is safeguarded enough for my purpose. I'm catching all sort of flack now over the tried password being sent. Think of the flack I would get over it being sent to a thread.