The Arcive of Official vBulletin Modifications Site.

carmichael1973 · #11 07-05-2008, 07:25 PM

That would be a simple fix. But as far as IP's go it gets really tricky keeping an updated list and resolving proxies. Unfortunately we wouldn't know an exception occurred until it's too late. Hosting sensitive material on a VB system is probably not the smartest idea either.

However, if we keep the site from being discovered by google and restrict access as much as possible, we can get around most of these issues.

badboyz · #12 07-05-2008, 07:38 PM

Quote:

Originally Posted by carmichael1973

That would be a simple fix. But as far as IP's go it gets really tricky keeping an updated list and resolving proxies. Unfortunately we wouldn't know an exception occurred until it's too late. Hosting sensitive material on a VB system is probably not the smartest idea either.

However, if we keep the site from being discovered by google and restrict access as much as possible, we can get around most of these issues.

ok then simple way to protect your website from bots is

put id n pass in ur .htaccess file bots can't enter id n pass .. id n pass can b simple like id 123 pass 123

then u can lock down vb like register to view the site.. and you can disable the registration

and Manuel make the employee's ids then send them to thier email so only they can log in not the other ppl !!!

hope this help ya enjoy

Dismounted · #13 07-06-2008, 06:40 AM

You can choose to not use .htaccess/.htpasswd, but instead, hook into vBulletin (probably at global_start), and create a login prompt by sending headers, then running the normal login checks to see if the user is authenticated.

carmichael1973 · #14 07-06-2008, 11:03 AM

Quote:

Originally Posted by Dismounted

You can choose to not use .htaccess/.htpasswd, but instead, hook into vBulletin (probably at global_start), and create a login prompt by sending headers, then running the normal login checks to see if the user is authenticated.

Thanks for all of the input. Your post started me thinking about this and it became obvious that I was going about this the wrong way. I did in fact DUMP the .htaccess/.htpassword usage. I must have logged into my admincp 100 times yesterday, not realizing the answer is right in front of my face. The admincp login and redirect on failed login is exactly what I'm looking for.

Basically I created a similar login based on the AdminCP login. Then I set VBPortal and VB permissions to Deny All for everyone except Admins, Super Mods, Mods, Registered Users, and My Custom Groups.

You were right on the money, global_start was the key for triggering it.

Thanks again man! Sometimes you just need a third party view on these things.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.03271 seconds Memory Usage 2,189KB Queries Executed 11 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (2)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (4)post_thanks_box (4)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (4)post_thanks_postbit_info (4)postbit (4)postbit_onlinestatus (4)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!