Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > vBulletin 3.0 > vBulletin 3.0 Full Releases
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools
PM Encryption - Encrypt all your PMS! Details »»
PM Encryption - Encrypt all your PMS!
Version: 1.0.0, by Deaths Deaths is offline
Developer Last Online: Mar 2009 Show Printable Version Email this Page

Version: 3.0.7 Rating:
Released: 04-05-2005 Last Update: 04-05-2005 Installs: 5
DB Changes
 
No support by the author.

PM Encryption v 1.0.0


As requested by Sully02, here: https://vborg.vbsupport.ru/showthrea...780#post636780
This nifty little hack encrypts your user's (and your), PMs when sent, and unencrypts them when they are read !
It also supports the downloading of the PMS, all PMs downloaded will be unencrypted.

Creator: Deaths
Live Demo: Theres nothing to see.
Screenshots: Nothing to see.
Support is in this thread, and preferably at vBadditions.com

I have included an Installer, which will encrypt all previously sent PMs!

Tested on 3.0.7, should work with all 3.0.x's.

Stats:
Files to Edits: 1
New Files: 0
Templates to edit: 0
Templates to add: 0
Dont underestimate this hack though, its not a mini-mod .

Follow the instructions in the install file, and everything should go just fine .

Todo list:
  • Your suggestions.

Supporters / CoAuthors

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #12  
Old 04-06-2005, 06:36 PM
Trigunflame's Avatar
Trigunflame Trigunflame is offline
 
Join Date: Aug 2002
Posts: 742
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Zach, it does not matter which type you use. Whatever is used to has to translate the message back into plaintext, thus there is no point to this hack whatsoever.
Reply With Quote
  #13  
Old 04-06-2005, 06:41 PM
Zachery's Avatar
Zachery Zachery is offline
 
Join Date: Jul 2002
Location: Ontario, Canada
Posts: 11,440
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Trigunflame
Zach, it does not matter which type you use. Whatever is used to has to translate the message back into plaintext, thus there is no point to this hack whatsoever.
You could store the key and the encryption type in the database or in a file somewhere. Or even make it an extra option for two users to create their own keys to be shared with eachother.

Its more than possible to encrypt them so an external source who may gain access to your database will not be able to read their contents.
Reply With Quote
  #14  
Old 04-06-2005, 06:43 PM
Deaths Deaths is offline
 
Join Date: Oct 2004
Location: Europe, Belgium
Posts: 679
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

How is a user going to tell which encryption (or whatever you want to call it) you're using?

Ofcourse, anyone can translate it back, else this hack wouldn't even be possible.
Reply With Quote
  #15  
Old 04-06-2005, 06:44 PM
Zachery's Avatar
Zachery Zachery is offline
 
Join Date: Jul 2002
Location: Ontario, Canada
Posts: 11,440
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Deaths
How is a user going to tell which encryption (or whatever you want to call it) you're using?

Ofcourse, anyone can translate it back, else this hack wouldn't even be possible.
I didn't say it was easy, just possible.
Reply With Quote
  #16  
Old 04-06-2005, 06:45 PM
Deaths Deaths is offline
 
Join Date: Oct 2004
Location: Europe, Belgium
Posts: 679
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

@Zach thats a very nice guide, but users would need to install it first, wouldn't they?

EDIT I'm too slow today :/
Reply With Quote
  #17  
Old 04-06-2005, 06:47 PM
Deaths Deaths is offline
 
Join Date: Oct 2004
Location: Europe, Belgium
Posts: 679
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I was replying to Trigunflame's post, but you just reply too fast
Reply With Quote
  #18  
Old 04-06-2005, 06:47 PM
Trigunflame's Avatar
Trigunflame Trigunflame is offline
 
Join Date: Aug 2002
Posts: 742
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Zachery
You could store the key and the encryption type in the database or in a file somewhere. Or even make it an extra option for two users to create their own keys to be shared with eachother.

Its more than possible to encrypt them so an external source who may gain access to your database will not be able to read their contents.
That's my point. If a person got access to the db, what is to prevent them from using the key itself.

All they would have to do is try different variations of encryptions, and arragements of the keys in relation to the data encrypted.

Whats worse, if they were a member at vbulletin.org, they will Know the arrangement of the keys, just by viewing this hack.
Reply With Quote
  #19  
Old 04-06-2005, 06:48 PM
Zachery's Avatar
Zachery Zachery is offline
 
Join Date: Jul 2002
Location: Ontario, Canada
Posts: 11,440
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Trigunflame
That's my point. If a person got access to the db, what is to prevent them from using the key itself.
Like I said, It does not need to be stored in the database. I would assume if someone needs something like that encrypted they will give the second user the key so they can decrypt it.
Reply With Quote
  #20  
Old 04-06-2005, 06:49 PM
Deaths Deaths is offline
 
Join Date: Oct 2004
Location: Europe, Belgium
Posts: 679
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

But would the user installing this hack also need to install Mcrypt, or did I just read that wrong?
Reply With Quote
  #21  
Old 04-06-2005, 06:51 PM
Trigunflame's Avatar
Trigunflame Trigunflame is offline
 
Join Date: Aug 2002
Posts: 742
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Deaths
But would the user installing this hack also need to install Mcrypt, or did I just read that wrong?
Mcrypt is compiled in most installations on *Nix.

And yes they would need it... however, there is no point to it. If you did use a key encryption, I would do it somewhat like;

encryption(plaintext password . PMData . passwordHashinVbulletin)

there has to be some form of user input, or they would be no point; as zach mentioned.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 02:55 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05167 seconds
  • Memory Usage 2,306KB
  • Queries Executed 26 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (5)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (11)post_thanks_box
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete