Email notification if someone attempts to access your Admin CP

This is my version of the hack that Firefly released for VB2.

VB3's standard log of failed admincp login attempts is a nice feature.. but since you get no instant notification, by the time you check the log it could be too late. Also, the log doesn't show which passwords the potential intruder is trying... If someone is close to guessing my password I wanna know about it!

What does it do? With this hack, when someone tries to login to your admincp or modcp you'll get an email that contains the username they tried, the password they tried, their ip address, hostname, # of strikes, referer, script, and the date & time of the attempt.

It will look something like this:

Quote:

--------------------------------------------------
WARNING: Failed admin logon in vBulletin 3.0.1
--------------------------------------------------
Someone is trying to login to your Admin CP!

Username tried: JimbobJoe
Password tried: aCcEsS
IP Address: 67.13.27.156
Host: asd691917124.whatever.com
Strikes: 1/5
Referer: http://www.yoursite.com/forums/admincp/
Script: http://www.yoursite.com/forums/login.php
Date: Wednesday 28th of April 2004 07:50:02 AM
--------------------------------------------------

If the person who is attempting to access your CP happens to be registered & logged in, this line will also be included in the email:

Quote:

vBulletin has identified this user as: (intruder's real username here)

(Thanks to AlexanderT for the idea for this addon.)


Update (1-4-05): A couple of users have expressed concern about this mod sending a plaintext password over http for all logins. This update (v1.1) addresses that concern by only sending the password for cplogins. To update just re-do the first step in the instructions for your vbulletin version (the first edit to adminfunctions.php). Or if you'd prefer that the attempted password not be sent at all simply skip the edits to adminfunctions.php.

If you don't recieve an email when testing, make sure you have the webmaster email set in the admincp (vBulletin Options + Site Name / URL / Contact Details). Also, sometimes it takes a while for the email to arrive. So give it plenty of time before screaming "it doesn't work"..

Still not working? Read this!

Credits: Thanks to the original creator of this hack (Chen) for the idea, and thanks to Boofo for helping me test it.

[Onkel_Tom]

Quote:

Originally Posted by EvilLS1

Onkel_Tom,
Like Zelda-King said, that sounds like a missed file edit. Recheck all of your file edits, specifically those in adminfunctions.php.

Sorry, i checked the code more than twice and the empty password field in eMail still exists. I also compared the installation instructions for vB before 3.0.2 with the 3.0.0 an above version to see what is the difference, but both look similar exclude the "find twice" step.

I'm using vB3.0.3, perhaps this could be the problem ?

[Zelda-King]

No, I'm using 3.0.3 and it's working.

[Onkel_Tom]

thanks for the answer.

[grief]

/me clicks install

[italks]

INSTALLED here too thanks.

[RS25com]

You know what could be an interesting add-on? Use it for SUCCESSFUL logons as well. Now, of course, if it's just a one-man show (like many sites) you'll know when you have logged on. If you had mods, you'll see their logon attempts and passwords, but hopefully you won't abuse your mods, now, anyway since you could easily change their password if you REALLY wanted to log in as them.

However, this could be good to identify someone who actually KNOWS your password and is logging in.

Thoughts?

[EvilLS1]

Quote:

Originally Posted by RS25com

You know what could be an interesting add-on? Use it for SUCCESSFUL logons as well. Now, of course, if it's just a one-man show (like many sites) you'll know when you have logged on. If you had mods, you'll see their logon attempts and passwords, but hopefully you won't abuse your mods, now, anyway since you could easily change their password if you REALLY wanted to log in as them.

However, this could be good to identify someone who actually KNOWS your password and is logging in.

Thoughts?

Check this post for my thoughts on viewing other user's passwords:
https://vborg.vbsupport.ru/showpost....2&postcount=46

[SamirDarji]

There has been a lot of discussion about something like this to see all login requests, which would be a huge amount of data on larger sites. But what about the idea of limiting the monitoring to a particular user group, like administrators or mods? That would target the important accounts. Just an idea at this point. I have to get my board up and running the way I want before I start hacking at it.

[SaN-DeeP]

someone the hack dont work for me ?
i am using vb 3.0.3

when a normal user enters correct username/password and tries to access the admincp, I do not receive an email.
Even the user dont get an error-message (only if he is using the correct user/pass)

I am getting email when he enters wrong user/pass to admincp

I guess, it should also send emails, when users enters correct username/password but they dont have access to admincp ?

correct me if i am wrong.

thank you

[EvilLS1]

San-Deep,
No, thats how its supposed to work. You will only get an email if someone enters an incorrect username or password. If they enter the correct username and password but do not have access it'll log them into the forum but not the admincp (just redirects them back to the cp login page).