The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
|||||||
Advanced IP Ban Manager Details »»
|
|||||||||||||||||||||||||
Advanced IP ban manager
What is it/What does it do? This is intended as a replacement for the ip bans under vbulletin options. It allows for timed ip bans, cidr ranges and attatching reasons to bans. It also features registration only ip bans allowing members who may be effected by an ip ban to continue using the forums, but blocking registrations and ip ban exempts so that you can ban a large range of ips and let through a smaller subset of them. Features
Backup db. Upload files from zip. Import product. Refresh admincp. Once Version 0.3 is installed; upload the attached php file into your admin cp to replace the one already there. This file fixes a couple of minor issues for some people. Changelog
Notes This has been tested on 3.7.2 but should work on 3.6.x, 3.7.x and 3.8.x This mod has not been tested on vbulletin 4; a separate, improved vbulletin 4 version can be found HERE Access is now controlled by an admincp permission however no control over ip banning is done. This variable can be used in the config file to prevent banning any ip/range of ips that contain the ips listed in it: $config['SpecialUsers']['unbannableips'] = "127.0.0.1|127.0.0.2"; Ips should be separated by a | symbol. This will not effect any bans that are already in place. Bans are limited to a cidr range of 4. (This should be more than enough) If you require a ban that covers more than this, it should be set in the database. If there is demand for it, I may make the cidr limit optional/changable in future versions. Exempts/bans work by taking the tightest cidr range match. eg if you ban 127.0.0.1/16 and add an exempt for 127.0.0.1/24 the exempt will take precedence, however adding another ban against 127.0.0.1/32 would override the exempt. When uninstalling, the mod will remove the modifications to the admin table, however it is upto you to drop the ipbans table yourself. This has been done in order to preserve the data in that table incase you still want it for something. I've added a file which was created by a member of my admin team, it contains a large list of ip addresses from which A lot of malignant traffic seems to come from. If you are having trouble with spam bots this list may help in preventing them from registering. To use the file visit the url : <your forum url>/admincp/ipban.spambots.php It will ask you to log in to your cp then display a blank page; this is to be expected as all its doing is inserting into the database. It will add approximately 140 bans; so they've been coded NOT to show up in the ip ban list. This feature is something i plan to expand on with a full interface for viewing, creating, adding and removing ip blocklists, but for now this mechanism is what i've come up with. Support As all of my boards have been upgraded to vbulletin 4, I am no longer actively maintaining any of my vb3.x mods. Free support for all of my 3.x mods is being removed from the 31st of March 2010 after this date, I will only be offering paid support for 3.x mods; downloading and usage of the mods will remain free but unsupported. Please pm me for support of 3.x mods as I will not be checking their threads very often. [S]Support is now offered as this is a beta release. I'll be checking vborg from time to time but for critical support issues, you are best contacting me on my own forums. I'm hoping that this version (0.3) is bug free, so this can be considered a release candidate version.[/S] I've uploaded a fixed php file for some people who were having problems with short php tags and other parse errors. This needs to be uploaded to the admin cp. The file will be added into the zip once in the next release. This mod [S]will be [/S] has been upgraded to support vb4 The vbulletin 4 version will be released once the beta goes public. Extra features in vb4.0 version:
Planned features for future versions:
Show Your Support
|
|||||||||||||||||||||||||
About Developer
Visit Web Site
DB Changes 
Is in Beta Stage | Comments |
|
#3
07-25-2008, 09:40 PM
|
|||
|
|||
Thats not a bad idea acctually;
Would you think something like that should be in the config file along with the undeletable users stuff? Seems to me the most logical place to put it - that way if you accidentilly ban yourself, you just add your ip to the conf file and all is good again. I was considering adding some code that just exempt admins/superadmins from being ip banned at all. That would also require stopping ip bans from effecting login.php so that if an ip ban was effecting an admin they could still log in. 
|
|
#4
07-25-2008, 09:54 PM
|
||||
|
||||
|
The config file sounds the most logical to me, though I do not think many admins would be stupid enough to ban themselves. So if it means a lot more effort, then I would just make it an adminCP option to enter untouchable IP addresses.
I cant think of a reason why excluding login.php from IP bans would be a problem. If anyone can, then please let me know. Adding code to prevent admins /SA from being IP banned sounds good as well, but note that admins may have multiple accounts. If you can take that into account, then this may be a viable solution.
|
|
#5
07-25-2008, 10:08 PM
|
|||
|
|||
|
Well... we /had/ an admin who's in the past been noted for 'accidentilly' deleting users (her excuse was she dropped the keyboard. ) and having a .bash_history file containing meny entries similar to 'el ess'. Also, if you dont understand how cidr ranges work properly it could be fairly easy to set one too large that hits you as well. (part of the reason theres a hard coded limit on how big the cidr range can be)
My only thought about excluding login.php was that if you ip banned someone for trying to brute force login names it woudn't stop them, on the other hand, vb is quite resistant against that anyway with the strikes system and its something you should probably be adding firewall rules to prevent instead of vbulletin ip bans. If an admin has two accounts, they could just go in and add an exempt from ipbans ( once coded) for their own ip. An alternative was something i was thinking about a while ago - exempting ip bans by user group, which could be done as a setting or as an option (probably the better way) EDIT: bleh, wont work. Login.php dosn't provide a login form, so another page would have to be provided to do that. I have made it so that admins can now login ( by going to the admincp and logging in from there) and since ip bans arn't verified in the admin cp, they can remove the ban preventing their access. Unbannable ips is in; still need to test it, but i'm pretty sure the code is sound. ---------------------- Next step is to decide how best to implement exempts; I had two ideas 1) apply bans in decreasing order of cidr range. This would allow, for example you to set a ban against a range of /16 blocking off a troublesome group of spammers. however you could then exempt a group of /24 that are acctually nice people then you could ban an couple of /32 ips that were not quite as nice as you thought they were. This is much more flexable, but complex. 2) Exempts overide bans. eg if an exempt is set your ip will be allowed in no matter what.
|
|
#6
07-26-2008, 02:54 AM
|
|||
|
|||
|
so the way you saying do a database backup first does this actually work? have you tested it? if you ip ban sum1 they shouldnt be able to access the site correct? lol
|
|
#7
07-26-2008, 07:13 AM
|
|||
|
|||
|
Dude, you are amazing, I have been looking for something like this for ever. No other forum boards have anything like this. Awesome!
Quote:
|
|
#8
07-26-2008, 08:41 AM
|
|||
|
|||
|
Quote:
Quote:
2nd, i want all my admins to be able to ip ban, but giving them access to canadminsettings seemed somewhat over kill for this task.
|
|
#9
07-27-2008, 09:29 PM
|
|||
|
|||
|
well ppl please leave feedback on it i need to know if i should install it cuz i dont wana screw up my site lol
|
 |
«
Previous Thread
|
Next Thread
»
|
|
All times are GMT. The time now is 01:02 PM.