Go Back   vb.org Archive > Community Discussions > Modification Requests/Questions (Unpaid)

Reply
 
Thread Tools Display Modes
  #1  
Old 02-28-2005, 01:16 AM
MicroLinux? MicroLinux? is offline
 
Join Date: Feb 2005
Location: Southeast, PA
Posts: 16
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Login id different from posting id: prevent bruters!

I dont know how you could do this but posssibly create a hack to haveadifferent login id than what is visible to the average user topreventgay brute forcers.. what'da think?
Reply With Quote
  #2  
Old 02-28-2005, 06:10 AM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Maybe you should explain your idea a bit more. I don't really get what you are trying to ask.
Reply With Quote
  #3  
Old 02-28-2005, 04:27 PM
Keyser S?ze's Avatar
Keyser S?ze Keyser S?ze is offline
 
Join Date: Apr 2002
Location: USA
Posts: 690
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

i get it, and its really a good idea, i got this one brute guy driving me nuts, so many members are getting the locked out email

this is the idea

my user name is Keyser Söze but to login my login would be MrFabulous with pass 12345678

so ur login is diffrent from ur acual user name, so even if someone guessed ur password, theyd have to guess ur login name too since it is not public
Reply With Quote
  #4  
Old 02-28-2005, 05:15 PM
Paul M's Avatar
Paul M Paul M is offline
 
Join Date: Sep 2004
Location: Nottingham, UK
Posts: 23,748
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by MarcoH64
Maybe you should explain your idea a bit more. I don't really get what you are trying to ask.
Basically he is suggesting that you have a display name that is not the same as your login.
Reply With Quote
  #5  
Old 02-28-2005, 05:49 PM
Brad Brad is offline
 
Join Date: Nov 2001
Posts: 4,765
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

The user is still the weak link in this chain. Basicly you are looking for two passwords, if someone really wants to brute force both they will.

If you want to get creative try customizing the way your board hashes passwords. My forum generates a salt based on my own rules and gose about md5 hashing differntly then stock vBulletin. It is possible to convert an existing forum with existing users to this format aswell.
Reply With Quote
  #6  
Old 02-28-2005, 08:21 PM
MicroLinux? MicroLinux? is offline
 
Join Date: Feb 2005
Location: Southeast, PA
Posts: 16
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

jesus.... I just want a simple thing to have a different LOGIN ID thanthe DISPLAY NAME ANYWHERE unless you knew a LOT of stuff on how to lookup the login name.... You see.. My forum has undergroud forums andJEALOUS people brute force people because they know the ids and want toget in.. but if you made the login id which is only used to logging indifferent from the display name it would prevent this..... That's all Iam saying.. No need for other stuff.. I just want this! Sigh..
Reply With Quote
  #7  
Old 02-28-2005, 08:34 PM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Don't get why you feel you need some devine guidance in here. *** Removed ***
Removed my bit sarcastic reply, reaidng back it could have offended some people which wasn't my intention.
Reply With Quote
  #8  
Old 02-28-2005, 09:07 PM
Dean C's Avatar
Dean C Dean C is offline
 
Join Date: Jan 2002
Location: England
Posts: 9,071
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Can we try and avoid the impolite usage of the word gay in this thread please. Thanks
Reply With Quote
  #9  
Old 02-28-2005, 09:55 PM
Paul M's Avatar
Paul M Paul M is offline
 
Join Date: Sep 2004
Location: Nottingham, UK
Posts: 23,748
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Yes, like most things, it I'm sure it could be done - but it would, I imagine, mean quite a bit of work as the username appears in an awful lot of places. Don't expect to see it anytime soon.
Reply With Quote
  #10  
Old 02-28-2005, 09:57 PM
sabret00the's Avatar
sabret00the sabret00the is offline
 
Join Date: Jan 2003
Location: London
Posts: 5,268
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

actually it could be acheived with just two file edits for a quick dirty hack

that's register.php, login.php and session.php ok so that's three but yeah.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:01 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05388 seconds
  • Memory Usage 2,243KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete