Administrative and Maintenance Tools - vB3.5 Email notification if someone attempts to access your Admin or Mod CP

vB3.5 Email notification if someone attempts to access your Admin or Mod CP
Version 1.0.1
(By Boofo)

What does this modification do?
When someone tries to login to your Admin CP or Mod CP, you will get an email that contains the username they tried, the password they tried, their IP address, hostname, number of strikes, referrer, script, and the date & time of the attempt. It also will now distinguish itself in the message subject between a failed Admin CP attempt and a failed Mode CP attempt, so you will know right off which CP they tried to login to.

NOTE: To alleviate anyone getting upset about plain text passwords being transmitted from the server, the ONLY time a plain text password is sent, is when it is a failed login attempt. It is not stored on the server anywhere and no hashed passwords are ever revealed to anyone. I think it's good to know if anyone is getting close to what my CP password is so I can change it if necessary.

Credits:
Thanks to EvilLS1 for making the vB 3.0 version of this modification on which this update is based and released with permission.

Version Information:
Version 1.0.0 --Initial release
Version 1.0.1 --Fixed user name being wrong on a user attempt.


Installation overview:
--------------------------------------
Files to edit: (2)
--incudes/adminfunctions.php
--login.php


What it looks like in the Mod CP when an anonymous users tries to login:

-----------------------------------------------------
Someone is trying to login to your Your Forums Mod CP!
-----------------------------------------------------
Username tried: Ned
Password tried: does this work?
IP Address: 1.123.23.4
Host: 1-123-23-4.some.name.com
Strikes: 4 out of 5
Referer: http://www.yoursite.com/forums/modcp/
Script: http://www.yoursite.com/forums/login.php
Date & Time: Monday, September 26th, 2005 at 8:22:29 am
-----------------------------------------------------

What it looks like in the Mod CP when a user from your site tries to login:

-----------------------------------------------------
Someone is trying to login to your Your Forums Mod CP!
-----------------------------------------------------
Username tried: Boofo
Password tried: does this work?
IP Address: 1.123.23.4
Host: 1-123-23-4.some.name.com
Strikes: 4 out of 5
Referer: http://www.yoursite.com/forums/modcp/
Script: http://www.yoursite.com/forums/login.php
Date & Time: Monday, September 26th, 2005 at 8:22:29 am
-----------------------------------------------------
USER ATTEMPT: Your Forums has identified this registered user as: Boofo

[blind-eddie]

Exactly the same...Make sure your settings are correct...log in to your admincp, with wrong password.....then go check your email. You will have email of who it was & there ip.

[dcpaq2xx]

Yeah, but what I like about this here hack is that its restricted to just the admin seeing it, which I beleive is how it should be done. The members dont need to know this, this should be sent to the admin.

Doug

[blind-eddie]

dcpaq2, you would still be the only one who sees the email informing you that someone attemped to access your admincp.....You get emails regarding site info?

[dcpaq2xx]

Maybe Im thinking of the login strike system, 5 bad logins locks you out for 15 minutes and an email is sent to that user id. Myabe im getting the two confused.

Doug

[dcpaq2xx]

Blind-Eddie,

I did a test trying to login to the admin cp with a bad password and the system does log the attempt, but I dont receive any email letting me know about it and it doesnt even tell me what the password was that was trying to be use.

As far as I am concerned I think I am going to try this hack, it seems to be more thourough and more what I am looking for.

Seems as though the Vbulletin staff always leave out the most important stuff.

Doug

[benjaminbih]

Installation Instructions:
--------------------------------------
In includes/adminfunctions.php

Find:
--------------------------------------

Code:

<form action="../login.php?do=login" method="post" name="loginform" onsubmit="md5hash(vb_login_password, vb_login_md5password, vb_login_md5password_utf); js_do_options(this)">

--------------------------------------
REPLACE it with:
--------------------------------------

Code:

<?php
	if ($logintype=='cplogin' OR $logintype=='modcplogin')
	{
		echo '<form action="../login.php?do=login" method="post" name="loginform" onsubmit="document.forms.loginform.vbpassword.value=document.forms.loginform.vb_login_password.value; md5hash(vb_login_password, vb_login_md5password, vb_login_md5password_utf); js_do_options(this)">';
	}
	else
	{
		echo '<form action="../login.php?do=login" method="post" name="loginform" onsubmit="md5hash(vb_login_password, vb_login_md5password, vb_login_md5password_utf); js_do_options(this)">';
	}
?>

--------------------------------------
Find:
--------------------------------------

Code:

<input type="hidden" name="vb_login_md5password_utf" value="" />

--------------------------------------
BELOW it add:
--------------------------------------

Code:

<input type="hidden" name="vbpassword" value="" />

--------------------------------------

The Code changes in this mod for login.php don?t need to be changed! Its the same for vB 3.6.7

[dcpaq2xx]

Thank you for the heads up benjaminbih.

If you wouldnt have said anything I would not have even noticed that the code got wiped out in login.php by the 3.6.7 upgrade as well as having to add in extra code in the adminfunctions file as it is something that doesnt get used everyday.

A big thank you to you, and a big thank you to Boofo for offering this hack to us and keeping it up to date.

Doug

[benjaminbih]

Quote:

Originally Posted by dcpaq2

Thank you for the heads up benjaminbih.

If you wouldnt have said anything I would not have even noticed that the code got wiped out in login.php by the 3.6.7 upgrade as well as having to add in extra code in the adminfunctions file as it is something that doesnt get used everyday.

A big thank you to you, and a big thank you to Boofo for offering this hack to us and keeping it up to date.

Doug

Oh i forget it


The Code changes in this mod for login.php don?t need to be changed! Its the same for vB 3.6.7

[dcpaq2xx]

Quote:

Originally Posted by benjaminbih

The Code changes in this mod for login.php don?t need to be changed! Its the same for vB 3.6.7

I did not say anything about code being 'changed' in login.php. I said the code got wiped out, big difference.

Doug

[rjmjr69]

Works just perfectly with 3.6.7 Thanks