The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
Urgent: how to disable login strike without admincp access
A couple days ago my site has been put behind a proxy to protect it from being dossed. However now it appears when anyone fails to login 5 times, it is banning everyone from being able to login for 15 minutes, as it appears the proxy is placing everyone on the same IP.
If I turn off the proxy my site will go down due to the dos attack, so that is not an option. I have closed my forums with tools.php but it appears even after 15 minutes, I am still getting the message you have to wait 15 minutes. I cant log into my admincp to disable it. I need another way to disable it. Any ideas? |
#2
|
||||
|
||||
Put up a temporary page in place of index.php and login, disable the striking system, and remove that temporary index file.
EDIT: I just realised it was you, Matt. I've heard about the recent DDoS attacks on the server. What are you using to try to prevent the attacks? Have you tried using mod_evasive? |
#3
|
|||
|
|||
Only 1 good solution: Configure your proxy to forward the clients IP, instead of using the proxyservers IP for all connections.
|
#4
|
|||
|
|||
PS If the attack is done by accessing a page on your server by too many people/bots, there might be a quick workaround to stop this.
I also admin a site that gets hit by attacks pretty often. First what i do when it happens is to password protect the site with a .htaccess, using a simple user/pasword. I provide the user and pass in the login prompt. Like this any human can see the user/pass and get in. All bots etc... will be stopped by the login prompt, reducing the server load a lot. Just leave that extra login until the attack is over/stopped. Only "problem" is members who do not read. |
#5
|
|||
|
|||
I will wait 15 minutes and try again, however I just put up the temp index.php page and tried one last time before waiting another 15 minutes, and this is the message I get:
Wrong username or password. You have used up your failed login quota! Please wait 15 minutes before trying again. Don't forget that the password is case sensitive. Forgotten your password? Click here! Does that mean my password is wrong that I am entering or that I am locked out or both? I have gone into phpmyadmin and changed my password through that to ensure I am entering it correctly, just want to ensure after I wait 15 mintues, I wont be getting a wrong password problem, as I do not have any email attached on my account to reset it any other way. As for the ddos (botnet) attack, I have tried everything including a hardware firewall, I am now behind a proxy which authenticates the traffic before it is allowed to go my server, it is working, but at a cost and slower performance to the network, but it is working at least. --------------- Added [DATE]1204195632[/DATE] at [TIME]1204195632[/TIME] --------------- Well to ensure my password is correct, I am now adding a new email in through phpmyadmin and then will reset it. And then will wait another 15 minutes. But even after that last 15 minutes, I got the same message straight away. |
#6
|
|||
|
|||
Login attempts are logged by IP-address. If your proxyserver only forwards it's own IP, then all attempts (regardless of username or client-IP) will be summed together. Once there have been 5 failed logins (from any PC/user account), all logins wil be blocked for 15 minutes!
Solution: See post #3 |
#7
|
||||
|
||||
Quote:
Quote:
|
#8
|
|||
|
|||
There is no use in resetting passwords etc..
See my posts. |
#9
|
|||
|
|||
Well it successfully reset through the forums just now, so it has to be set 100% correctly now. I will wait one last 15 minutes before trying again, but if it does not work after this 15 minutes, then I will need other options to make sure I am the only one that is able to see the login button or to disable to strike altogether by altering the login.php I will let you know how I go in the next 15 minutes, hopefully you will be able to think of some other ways to help if it fails. thanks.
--------------- Added [DATE]1204196434[/DATE] at [TIME]1204196434[/TIME] --------------- Quote:
However if they wont/cant then I will need to disable the strike system altogether on my site. I tried again, and I got the wrong password/username try again in 15 minutes, so hopefully there are other options as well. thanks. |
#10
|
|||
|
|||
If they won't do that, then you should reconsider using their services.
A lot more might not go as expected if everyone reaches the webserver using the same IP. |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|