Go Back   vb.org Archive > vBulletin Modifications > vBulletin 4.x Modifications > vBulletin 4.x Add-ons
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools
[DBTech] vBSecurity v2 (vB4) Details »»
[DBTech] vBSecurity v2 (vB4)
Version: 3.3.0, by DragonByte Tech DragonByte Tech is offline
Developer Last Online: Mar 2023 Show Printable Version Email this Page

Category: Administrative and Maintenance Tools - Version: 4.x.x Rating:
Released: 12-30-2011 Last Update: 06-18-2018 Installs: 133
DB Changes Uses Plugins
Additional Files Translations  
No support by the author.

vBSecurity: What is it?
vBSecurity keeps a watchful eye over your forum even when you are not there, and has the capability to alert you of any suspicious activity.

Uses

vBSecurity is the ideal product for forums that are concerned about security, or wish to be alerted when something suspicious happens.
It keeps a watchful eye on your configuration file, ensuring that it does not get modified by mods or plugins.
Another important feature is the ability to add a secondary login, unique to each administrator, that is required before accessing the AdminCP. Ideal for forums where multiple administrators may share login information, or where administrators may log in from public computers.
Add in quick settings for the most vital vBulletin Options and Usergroup password settings, vBSecurity can easily be called one of the most comprehensive security suites for your vBulletin forum.

-------------------------------------------------------------------------------------------

If you like this mod please hit the button to the right ---->

Please remember to click the, button to the right if you installed the mod ---->

What does 'Marking As Installed' do ?

* It helps you to stay on top of updates - members who have installed modifications will be notified by us whenever new updates are available.

*
For security issues - vbulletin.org will contact all members who have installed a modification whenever a security issue is brought to their attention.

* Marking a modification as installed also helps us know how many people are using our work, giving us extra incentive to provide more features and new modifications.

We appreciate the support!
-------------------------------------------------------------------------------------------

Priority support & Product Demos available at: http://www.dragonbyte-tech.com

-------------------------------------------------------------------------------------------

Translations available @ our forum
Support for translations handled by the translator in its respective threads only.

-------------------------------------------------------------------------------------------

Major Features
Administrator Security: .htaccess-like logins for your administrators means that even if they use the same password on multiple sites, malicious users still need a fresh, unique password to log in.

Security Watchers: Keep an eye on the most important aspects of vBulletin: config.php tampering, AdminCP / User Account access attempts, vBulletin Options, User Data, Usergroup Settings and Usergroup Permissions.
Detailed changelogs available for each watcher dealing with changes.
IP Ban, User Ban, Email alerts and temporary forum closure options available for each watcher individually.

Lite
* Searchable list of all AdminCP access attempts
* Searchable list of all failed login attempts
* Searchable list of administrator changes for areas governed by the Security Watchers
* vBOption: IP Address whitelist for AdminCP access
* vBOption: Separate "Closed Reason" for closures that happened due to potential security breaches
* Quick setting page for the most important vBulletin Options security settings
* Quick setting page for the most important Usergroup security settings
* Security Watchers: General - config.php Variable Tampering, AdminCP Access Attempts
* Security Watchers: Logins - Failed Logons, Failed Mass Logons
* Security Watchers: vBOptions - vBulletin Active, Reason For Turning vBulletin Off, Banned Email Addresses, Banned IP Addresses, Use Login "Strikes" System, Whitelisted IP Addresses, Whitelisted IP Addresses - Exclude Super Administrators
* Security Watchers: User Data - User Name, Password, Email, Primary Usergroup, Additional Usergroups, Reputation Level, Warnings, Infractions, Infraction Points, Receive Admin Emails
* Security Watcher Actions: 2 thresholds with individual configuration options, IP Ban / User Ban / Email Webmaster / Close Forum options available for each Watcher option listed above. Some watcher options may not have all actions.

Pro
* Optional .htaccess-like login on a per-administrator basis
* Settings Snapshots - take a "snapshot" of how the vBulletin Options look at the time, instant restore by clicking Load on a previous snapshot
* Security Watchers: Usergroup - Password Expiry, Password History, every usergroup permission group, every "value" permission
* IP Guard: Administrator IP Address authorisation scheme (similar to Steam Guard) - Require email verification for new IP addresses to access the AdminCP, per-administrator disable

-------------------------------------------------------------------------------------------
This mod displays a copyright notification in the footer of all pages which includes:
  • 1 Link to DragonByte Technologies homepage
  • 1 Link to Product Description page of this modification

Download Now

File Type: zip [DBTech] vBSecurity 3.3.0 [Lite].zip (995.5 KB, 71 views)

Screenshots

File Type: jpg vbsec_adminpasswords.jpg (78.0 KB, 0 views)
File Type: jpg vbsec_recommendations.jpg (75.9 KB, 0 views)
File Type: jpg vbsec_watchergeneral.jpg (76.9 KB, 0 views)
File Type: jpg vbsec_watcherlogin.jpg (77.5 KB, 0 views)

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.
2 благодарности(ей) от:
highlander29, paulplater

Comments
  #32  
Old 01-18-2012, 05:01 PM
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Location: Scotland
Posts: 8,814
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

That was an oversight, I use a standard "template" for all my mods when I begin a new project and those options are a part of said template


Fillip
Reply With Quote
  #33  
Old 01-18-2012, 05:05 PM
OldSchoolDSL OldSchoolDSL is offline
 
Join Date: Oct 2010
Posts: 1,196
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by DragonByte Tech View Post
Unfortunately this is not a helpful post, if you wish to provide constructive critisism then please do so, otherwise I see no point to posting


Fillip
It was constructive criticism as I reported my findings for others to watch out for (user review based upon user experience)

I found that this modification caused the pages to load slower (even on a fresh & clean test install) and also added to memory & query (in my opinion).

I found this could provide false positives in the way it detects things, regardless of how you configure the settings.

And I found it has the habit to conflict with a wide range of other modifications and products. Not just limited to 1 or 2 rogue modifications, but rather believing this in its self to be the rogue modifications, compared to how many other products could not play well with this 1.

Just because you dislike my constructive criticism and review, doesn't make it not true or invalid.
I stand by my original post
  • Used a lot of resources
  • false positives
  • conflicting with other software
Reply With Quote
  #34  
Old 01-18-2012, 05:39 PM
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Location: Scotland
Posts: 8,814
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

So you are saying that if I went to your site and said "this site sucks." that would be constructive criticism?

That is essentially the same as you are doing in this thread and in every other DBTech mod thread you have posted in.
  • You offer zero information regarding the nature of the false positives
  • You offer zero information regarding the nature of the conflicts
The same can be said for all your other posts.

I mean no offence, but your posts do come off as if you are simply trying to discredit us for no good reason.

Would you have liked it if people put your site in a negative light but refused to give you any information that you could use to improve your site?

How do you expect us to improve this mod if all you say is "it doesn't work right"?


PS: This mod uses virtually no resources as it does not execute anything (except for standard cache fetching and object initialisation) unless one of its watchers are triggered.

Would you care to provide comparison data regarding resource usage and page generation time that backs up your claim?


Fillip
Reply With Quote
Благодарность от:
Mr_Running
  #35  
Old 01-18-2012, 06:29 PM
OldSchoolDSL OldSchoolDSL is offline
 
Join Date: Oct 2010
Posts: 1,196
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I stand by my review.

But do believe I have mistakenly overlooked leaving a positive review for the modifications which you have released, that have not caused any issues and do in fact work well.

https://vborg.vbsupport.ru/showthread.php?t=236980
https://vborg.vbsupport.ru/showthread.php?t=242733
https://vborg.vbsupport.ru/showthread.php?t=243754
https://vborg.vbsupport.ru/showthread.php?t=258738
https://vborg.vbsupport.ru/showthread.php?t=243510

I have since then corrected my oversight
Reply With Quote
  #36  
Old 01-18-2012, 06:37 PM
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Location: Scotland
Posts: 8,814
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Do you refuse to help us improve this modification by providing the information I requested in my previous post?

And do you also refuse to back up your claims of slowdown / large memory usage increase with evidence so that we can look into it?

If you choose to refuse these requests for more information then that's perfectly fine, but just know that it may discredit your review in the eyes of people who read the thread


Fillip
Reply With Quote
  #37  
Old 01-18-2012, 08:11 PM
OldSchoolDSL OldSchoolDSL is offline
 
Join Date: Oct 2010
Posts: 1,196
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by DragonByte Tech View Post
Do you refuse to help us improve this modification by providing the information I requested in my previous post?

And do you also refuse to back up your claims of slowdown / large memory usage increase with evidence so that we can look into it?

If you choose to refuse these requests for more information then that's perfectly fine, but just know that it may discredit your review in the eyes of people who read the thread

Fillip
It is not my role or the role of anyone else who use your modifications to help debug, decode, edit, improve, or otherwise help you produce your own modifications. Just so you know, continuing belittle people who you may disagree with, discredits yours.

As I have told you, I un-installed this. I can only comment on my own personal experience...

But will add that when testing your modification and wrongfully entering the password to my own account (for testing reasons)....

I received the e-mail stating that I tried to log-in not only into my account, but several other accounts I did not try to log into... I would label this as a false positive, as the system would record me trying to log into many other accounts.

As this continue to remain installed, I noticed a few other members (beside myself) also had the same report.

I do not have the memory readings or page speed reading on hand, as I again point out, I un-installed this and it is not my role or the role of anyone else to help you resolve your modification.
Reply With Quote
  #38  
Old 01-18-2012, 08:26 PM
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Location: Scotland
Posts: 8,814
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

The "Mass Login" watcher would indeed list plenty of other accounts as it takes a list of all failed logins across all accounts. You can limit the amount of what you call "false positives" by making it so that it only triggers on the same IP Address, as opposed to Any IP Address

I'll leave it up to my business partner Iain to explain why we rely on constructive criticism from our users in order to improve our mods, as I'm clearly doing an inadequate job of it


Fillip
Reply With Quote
  #39  
Old 01-18-2012, 08:38 PM
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Location: Scotland
Posts: 8,814
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Just popping in to say that it's obviously not possible for us to fix isolated issues if the person claiming to have them isn't willing to let us try to Debug them.

Obviously claiming (to use one example from your posts) it is incompatible with lots of other software, then declining to name those other pieces of software, makes it impossible for us to attempt to debug that - unless you feel it is reasonable for us to install every single vBulletin modification in every single possible combination to try to find your particular issue (an issue which you of course didn't specify and as such we would be unable to notice).

I think it's pretty obvious to everyone reading that your "reviews" are due to a different matter - for the record the reason is one we're aware of, but won't go into in order to abide by the general rules and social norms here on vBulletin.org. The bare minimum I will say is that it was related to pirated versions of DBTech pro mods.

We are, as always, extremely glad to any users who take the time to give us feedback on our modifications and give us the information we need to improve them or help to debug the reason a specific user is encountering a specific problem - and that's the vast majority of you.

Again, thanks to everyone who takes the time to do that.

Iain
Reply With Quote
  #40  
Old 01-18-2012, 09:39 PM
Mr_Running Mr_Running is offline
 
Join Date: May 2010
Posts: 536
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Thank you DragonByte Tech for another great mod.
Reply With Quote
  #41  
Old 01-19-2012, 01:15 AM
Mukashi's Avatar
Mukashi Mukashi is offline
 
Join Date: Jan 2004
Location: Brisbane, Australia
Posts: 144
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by DragonByte Tech View Post
That was an oversight, I use a standard "template" for all my mods when I begin a new project and those options are a part of said template


Fillip
Ahh, I see. So I assume that's something that'll be cleared up in the next version then?

Also, had a more general question for you guys at DB Tech if it's alright (and seeing as you request for people to not send PM's). I've now got 7 DB Tech addons on my forums (though only 6 are currently enabled), and so I'll end up with multiple copyright notifications at the bottom of the forums. For instance, here's what shows on our forum home right now.

Quote:
vBulletin Security by vBSecurity (Lite) - vBulletin Mods & Addons Copyright ? 2012 DragonByte Technologies Ltd.
Live threads provided by AJAX Threads (Lite) - vBulletin Mods & Addons Copyright ? 2012 DragonByte Technologies Ltd.
NavTabs provided by vBNavTabs (Lite) - vBulletin Mods & Addons. Copyright ? 2012 DragonByte Technologies Ltd.
Just wondering if there might be something you guys can do at your end to reduce the redundancy a little bit for those of us who've got multiple addons installed, or if you might allow us those of us in this situation to do a bit of editing to compress those down to one line.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 11:08 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.20841 seconds
  • Memory Usage 2,370KB
  • Queries Executed 26 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (4)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (4)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (11)post_thanks_box
  • (3)post_thanks_box_bit
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (2)post_thanks_postbit
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (5)postbit_attachment
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • fetch_musername
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • post_thanks_function_fetch_thanks_bit_start
  • post_thanks_function_show_thanks_date_start
  • post_thanks_function_show_thanks_date_end
  • post_thanks_function_fetch_thanks_bit_end
  • post_thanks_function_fetch_post_thanks_template_start
  • post_thanks_function_fetch_post_thanks_template_end
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_attachment
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete