The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
AdminCP Firewall ~ Protect your AdminCP! Details »» | |||||||||||||||||||||||||||||
This is a mod I made to increase the security of your forum!
It has the following features:
So, what are you waiting for? Install now Update History Version 1.3.3: PHP error should be fixed Version 1.3.2: Fixed - PHP error message when logging into AdminCP Branding Removed Version 1.3.1: Fixed - text would be displayed on login failure page if failure email turned off or not from admincp Version 1.3: Added - Ability to have an email sent when someone fails an admincp login. Added - Branding. Sorry! Any donation of ?2.50 or more will allow you to remove it Version 1.2: Added - Ability to specify IP's as CIDR ranges Added - Ability to set both IP email and IP deny Added - IP email will now tell you if any forum members registered using the unauthorized IP Changed - Updated Admin Help Pages Version 1.1: Added - Ability to specify multiple email addresses Added - Help entries for the admin options Changed - IP's are separated with a line break now, not a comma. Mark as Installed if Installed and Nominate for MOTM if you think this mod deserves it! ----------- Donating I kindly accept donations for my work. Donating will allow you to remove the branding. You can donate via paypal using the link on the right, or using bitcoin. Please PM me if you wish to donate using bitcoin. This modification is free to modify and distribute with attribution. I no longer own a vBulletin license. Download Now
Screenshots
Show Your Support
|
6 благодарности(ей) от: | ||
Eposig2, GreyGhost, obglobal.net, RichieBoy67, synseal, tanzeelniazi |
Comments |
#62
|
|||
|
|||
Quote:
Quote:
|
#63
|
|||
|
|||
This is actually a very amazing mod, thank you for this!
|
#64
|
|||
|
|||
It's certainly timely. See
http://www.vbseo.com/f255/summary-fi...t-issue-55099/ http://www.vbseo.com/f255/filestore-...r-forum-55368/ http://club.myce.com/f20/vbulletin-m...e-them-332219/ http://www.vbseo.com/f255/url123-red...its-end-54125/ The best guess at the moment is that malware is being used to harvest admincp passwords giving the malware network access to your admincp, which is then used to alter certain plugins to redirect your traffic (or do whatever else they want to do to your site for that matter). There are several things noted in the first two threads that forum owners should be doing to secure their forums and their servers. This add-on provides an extra layer of protection or at least notification if someone does gain access. |
#65
|
|||
|
|||
Suggestion regarding awkward wording in notifications:
Change line 502 to read: Code:
{1} logged into the AdminCP from IP address {2}. |
#66
|
|||
|
|||
Code:
Sorry, you don't have permission to access the administrative controls on this page. If you need to access this page, ask your lead administrator to enable your permissions for this page using the Administrator Permissions section of the control panel. |
#67
|
|||
|
|||
Email this evening from this mod:
Quote:
How is this possible? Is this a false positive? I have changed the password for that member, banned the member at the forum level, and banned the IP at the server level to be safe. But should there not be a log entry if there indeed was a breach? By the way, in order to gain access to the AdminCP, two passwords are required. |
#68
|
||||
|
||||
Installed on Localhost so can't test just yet but security may well be a concern so thank you for your work...
|
#69
|
|||
|
|||
Quote:
However, you might want to look more closely at what tirggers the email notification of a breach. |
#70
|
|||
|
|||
My IP changed and now I cannot access my ACP. I tried adding that code at the end of the config.php, but it did nothing. Please help me?
|
#71
|
|||
|
|||
I would be careful installing a mod that could potentially lock you out of your own ACP. I would think your htaccess security should be sufficient in keeping someone from accessing your ACP.
I experimented with another mod (not this mod) that did not install completely. The result was that I could not access my ACP and I had to completely restore my entire site. I see that the author no longer has a vBulletin license. |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|