Version: 1.0.2, by Onur
Developer Last Online: Apr 2015
Version: 3.5.4
Rating:
Released: 03-09-2006
Last Update: 05-15-2006
Installs: 84
Uses Plugins
Additional Files
No support by the author.
CrackerTracker
this is a port from the standalone system of the Cback.de CrackerTracker (was original made for phpBB) to an Product for vB
Description
this hack search in the requeststring for definied codeparts, is found any hit the skript was die and send a little massage
in addition of security this simply skript discharged the server by automatic attacks from botskripts if the definations have a hit in the requests
Instructions Install
upload the /elog/ directory and set the CHMOD of counter.txt and logfile_injects.txt to 666, this is only to log blocked requests
if you not want to have writeable files on youre server this hack works without logging too and you can leave this part
at last install the CrackerTracker100-product.xml
Update
uninstall product of v100
reinstall new product of v101
Uninstall
uninstall the CrackerTracker100-product.xml
upload thedelete /elog/ directory
Credits & Information
i have only port this hack to a Plugin
Authorof the Hack is Cback from www.cback.de
only restraint of Cback is the Copyright in the footer
(i hope my english was understandable )
History
10/03/06 Release 1.0.0
15/05/06 Release 1.0.1
new searchpattern and handfull old replaced
little codemodifications
15/05/06 Release 1.0.2
one typo in list (missing ",")
Show Your Support
This modification may not be copied, reproduced or published elsewhere without author's permission.
Just 2 advices:
- If you don't know what this does: Don't Install
- If you think vBulletin will be vulnerable to the same sort of attacks a phpBB do install, otherwise don't.
i dont know is any need of this hack in an vB, but the one thing you can profit of this hack is you can see any attempts of hack in the log
ok phpinfo() is blocked, but i dont think it is a good idea to share this info, only if you have always the latest Version of php installed
and its true thats the problems of another boardsystem is not the same problem of vB, but i have found that vb 3.0.4+3.0.5 hase release because some problems with the santy an other holes
only in an nice and wonderfull world everbody update her system and there boards just in time, this skript can block the one try of hack how hacked youre site in the time between release the new version and you have time to do the update
and if you have any blocked funktions on youre board, look at the log and found the part in the string how collided with the definations of the hack and replace it
and whether you was attact whitout success in the last time you only can see in the logs of youre server or after an testtime in the log of this CT
If you have your own server and want to spend a little time learning about how to configure mod_security for Apache, you can obtain peace of mind for all of the sites, forums and scripts you host.
this is fcking EXCELLENT, since mod-security is a handful and still not simple.
however, please make a version that skins the next time, so in other words make the error message on a normal vb page so its still in the forum theme colors etc. at least use the css.. thanku
1. whatever the vb variable for the currently logged in username is, LOG THE USERNAME PLEASE
2. log the date better, like YYYY-MM-DD, so it sorts chronologically. this has nothing to do with country format it is common sense for computer sorting purpose, left to right. 2006-04-03 .. and have that be the first column
... see number 1 actually thats the main thing
so you know if someone was logged, then know who they were
Cracker Tracker Details »»
About Developer
Uses Plugins 
No support by the author.
)
03-11-2006, 11:16 AM
