The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
[DBTech] vBSecurity v2 (vB4) Details »» | |||||||||||||||||||||||||||||||||||
vBSecurity: What is it?
vBSecurity keeps a watchful eye over your forum even when you are not there, and has the capability to alert you of any suspicious activity. Uses vBSecurity is the ideal product for forums that are concerned about security, or wish to be alerted when something suspicious happens. It keeps a watchful eye on your configuration file, ensuring that it does not get modified by mods or plugins. Another important feature is the ability to add a secondary login, unique to each administrator, that is required before accessing the AdminCP. Ideal for forums where multiple administrators may share login information, or where administrators may log in from public computers. Add in quick settings for the most vital vBulletin Options and Usergroup password settings, vBSecurity can easily be called one of the most comprehensive security suites for your vBulletin forum. ------------------------------------------------------------------------------------------- If you like this mod please hit the button to the right ----> Please remember to click the, button to the right if you installed the mod ----> What does 'Marking As Installed' do ? * It helps you to stay on top of updates - members who have installed modifications will be notified by us whenever new updates are available. * For security issues - vbulletin.org will contact all members who have installed a modification whenever a security issue is brought to their attention. * Marking a modification as installed also helps us know how many people are using our work, giving us extra incentive to provide more features and new modifications. We appreciate the support! ------------------------------------------------------------------------------------------- Priority support & Product Demos available at: http://www.dragonbyte-tech.com ------------------------------------------------------------------------------------------- Translations available @ our forum Support for translations handled by the translator in its respective threads only. ------------------------------------------------------------------------------------------- Major Features Administrator Security: .htaccess-like logins for your administrators means that even if they use the same password on multiple sites, malicious users still need a fresh, unique password to log in. Security Watchers: Keep an eye on the most important aspects of vBulletin: config.php tampering, AdminCP / User Account access attempts, vBulletin Options, User Data, Usergroup Settings and Usergroup Permissions. Detailed changelogs available for each watcher dealing with changes. IP Ban, User Ban, Email alerts and temporary forum closure options available for each watcher individually. Lite * Searchable list of all AdminCP access attempts * Searchable list of all failed login attempts * Searchable list of administrator changes for areas governed by the Security Watchers * vBOption: IP Address whitelist for AdminCP access * vBOption: Separate "Closed Reason" for closures that happened due to potential security breaches * Quick setting page for the most important vBulletin Options security settings * Quick setting page for the most important Usergroup security settings * Security Watchers: General - config.php Variable Tampering, AdminCP Access Attempts * Security Watchers: Logins - Failed Logons, Failed Mass Logons * Security Watchers: vBOptions - vBulletin Active, Reason For Turning vBulletin Off, Banned Email Addresses, Banned IP Addresses, Use Login "Strikes" System, Whitelisted IP Addresses, Whitelisted IP Addresses - Exclude Super Administrators * Security Watchers: User Data - User Name, Password, Email, Primary Usergroup, Additional Usergroups, Reputation Level, Warnings, Infractions, Infraction Points, Receive Admin Emails * Security Watcher Actions: 2 thresholds with individual configuration options, IP Ban / User Ban / Email Webmaster / Close Forum options available for each Watcher option listed above. Some watcher options may not have all actions. Pro * Optional .htaccess-like login on a per-administrator basis * Settings Snapshots - take a "snapshot" of how the vBulletin Options look at the time, instant restore by clicking Load on a previous snapshot * Security Watchers: Usergroup - Password Expiry, Password History, every usergroup permission group, every "value" permission * IP Guard: Administrator IP Address authorisation scheme (similar to Steam Guard) - Require email verification for new IP addresses to access the AdminCP, per-administrator disable ------------------------------------------------------------------------------------------- This mod displays a copyright notification in the footer of all pages which includes:
Download Now
Screenshots
Show Your Support
|
2 благодарности(ей) от: | ||
highlander29, paulplater |
Comments |
#62
|
||||
|
||||
vBSecurity compares the values in the actual config.php file vs what $vbulletin->config holds every time a page loads, so that's not the case.
Fillip |
#63
|
|||
|
|||
how can i install "pro"?
|
#64
|
||||
|
||||
You'll need to purchase it from www.dragonbyte-tech.com and then perform the same steps you performed when installing Lite
Fillip |
#65
|
||||
|
||||
vBSecurity v1.0.5:
Feature: The Affiliate ID setting now properly integrates with the link-back Feature: Added Login Strikes Viewer that lets admins browse all failed logins Fix: Bugs with the Admin Strikes Viewer that prevented natural browsing from working properly in some scenarios Fillip |
#66
|
||||
|
||||
Affiliate ID link hotfix
Fillip |
#67
|
|||
|
|||
So... I disabled the superadmin whitelist thingy and have subsequently banned mysef.
Any ideas on how to rectify? EDIT *: Resolved. I logged in via a different IP and removed the super admin setting. |
#68
|
||||
|
||||
Can you please be more specific? What "whitelist thingy", and what is the message you're receiving?
Fillip |
#69
|
||||
|
||||
vBSecurity v1.0.6
Feature: Improved logging details for Control Panel actions Change: Changed the Branding display method to inject itself into the copyright footer (underneath vBulletin copyright) instead of the page footer. Change: Changed the Branding Free Key to a more secure key. Fillip |
#70
|
|||
|
|||
Could you make it possible to position Data[IPADDRESS] at a random place within the phrase ("dbtech_vbmail_security_alert_body"&"dbtech_vbsec urity_access_new_ip_message")?. Like: $IPADDRESS ?
I want to restyle the email text completely with a new location of the IP address. sry for my horrible English |
#71
|
|||
|
|||
Dear DragonByte Tech,
I have an Idea which perhaps could be easily integrated within vBulletin. I’ very interested in what you think about it. My idea is about DDoS protection for vBulletin by Cloudflare. Cloudflare is focussed on DDoS protection and offers great free services for the public. Since Cloudflare provides a webservice API via an API Key, the DDoS protection of Cloudflare can be utilized by just invoking URIs by vBulletin to block attackers right in the Cloud so they even can reach the target system. The technical approach is done by invoking URIs for blocking and unblocking IP addresses. A block could be triggered by any relevant alert to be defined by the vBulletin operators to fit their needs. In vbulletin it could look like this ... Admin Panel Menu (example): Attachment 144558 Action (example): Attachment 144560 Options (for example): Attachment 144559 All you need is a free account with Cloudflare, the generated security tokens and of course your addon. :) Example Block: HTML Code:
https://www.cloudflare.com/api.html?a=ban&key <IPADRESS> = & u = EMAILUSER@EMAIL.com & tkn = TOKEN
HTML Code:
https://www.cloudflare.com/api.html?a=nul&key <IPADRESS> = & u = EMAILUSER@EMAIL.com & tkn =TOKEN
Note: Since Cloudflare is acting as a reverse proxy operators should install mod_cloudflare for apache to see real origin IP addresses instead of Cloudflare proxy IP addresses....see here. regards Soidberg |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|