The Arcive of Official vBulletin Modifications Site.

About Developer · **Released**: 11-23-2001

This is a hack that was suggested by paulomt1, all it does is log failed logins and stores them in a table. An admin can then look at the failed logins in the admin panel, searching based on ip, username, password or date. They can also prune the old logs to save space.

You will be required to create a table this can be done via phpmyAdmin or the hack by Firefly which allows you to run queries via the admin panel. You then have to edit member.php to add the query to insert the failed login information and /admin/index.php to add the links to the loginlog.php file.

Updated 25th November 2001 @ 22:15

Added additions suggested by Mike to the file. Instructions on how to upgrade from the pervious version of this hack is included within install.txt, you will need to run 2 sql queries to adjust the table, adjust the line in member.php and upload loginlog.php again to complete the upgrade.

Scott

Scott MacVicar · #22 11-25-2001, 01:12 PM

ok Mike i can see why you would add resolve IP and if its ok I'll add that to loginlog.php but the link to edit the members profile I don't understand. Why do you need to check for failed logins then go to edit the member info?

Scott

SirSteve · #23 11-25-2001, 01:21 PM

Very useful! Installed easily! Thanks!

wot-Mike · #24 11-25-2001, 02:28 PM

[QUOTE]Originally posted by PPN
ok Mike i can see why you would add resolve IP and if its ok I'll add that to loginlog.php but the link to edit the members profile I don't understand. Why do you need to check for failed logins then go to edit the member info?

Scott

Scott MacVicar · #25 11-25-2001, 08:22 PM

Updated to accomodate for Mike's changes.

Psychdrone · #26 11-26-2001, 08:40 PM

Hey how do you create a table?

Is it a query?

wot-Mike · #27 11-26-2001, 08:59 PM

Umm, yeah, it's a query.

If you have phpMyAdmin, here's a short how to:

* Log into phpMyAdmin
* Click in the menu on the left on the database you want to open
* In the screen on the right, scroll down untill you see:
Run SQL query/queries on database <database-name>
* Copy the entire bit from the install txt file starting with:
CREATE TABLE
and ending with:
);
and paste it into the text field below the Run SQL query
* Click go, and you'll have your loginlog table

Psychdrone · #28 11-27-2001, 08:21 PM

THanks bud!

Admin · #29 11-30-2001, 01:33 PM

Just reporting back.

So far we have had 66 failed logins tries.
About 20 of them are by one member, who was banned, but thought he had forgotten his password or something. So sad...

Anyway, while looking at these logins it occurred to me that all of these passwords they're trying are probably passwords they use on other sites.
Just a thought.

Scott MacVicar · #30 11-30-2001, 03:31 PM

yeah I thought of this hoped that limiting it to trusted admins would minimise this, they had access to see users passwords before 2.2.x
I didn't plan it on someone who was banned trying passwords, I was thinking of people trying to brute force accounts.

Reports for my forums are

6 failed logins

4 were for admin users and 2 was someone trying to guess a password.

Ruth · #31 11-30-2001, 05:49 PM

guys how can i use this hack to log all the logins with time, date and ip adress for each user.

thanks in advance.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.04718 seconds Memory Usage 2,296KB Queries Executed 25 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)modsystem_post (1)navbar (6)navbar_link (120)option (1)pagenav (1)pagenav_curpage (4)pagenav_pagelink (11)post_thanks_box (11)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (11)post_thanks_postbit_info (10)postbit (11)postbit_onlinestatus (11)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!