The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
#1
11-12-2012, 11:10 PM
|
|||
|
|||
brute force attemps
somebody try to brute force my forum...
and i dont no on which account he try's but i have 2000 failet logins in a short time... from ip adresses al over de world..... and this is the fourt time today!! so he has try's over 8000 combinations.... is there an way to counter this? I thought captcha on login form but cant find no mod for that....  so somebody!!! please help me! anybody knows where i can view the attemps to login and on which account he/see trys?? greet 
|
|
#2
11-14-2012, 12:50 PM
|
|||
|
|||
|
nobody??
i have made a .htaccess file now.... that block other country's this is helping me for now... but i hope there is an other solution for this problem....
|
|
#3
11-14-2012, 12:56 PM
|
|||
|
|||
|
As you dont specify what they are trying to login, what area, admincp, modcp, ssh, ftp etc, not much we can help you with.
If they're trying to login to your admincp, simply change the default location via config.php. But a htaccess protection after the above change is till the best way to protect it.
|
|
#4
11-14-2012, 01:03 PM
|
|||
|
|||
|
he's trying to login on the login screen off the forum.....
not mod cp or admin cp... but if he knows de admin's password he's in..... i had in sort time in "online users" 2100 guest who try to login.. lucky me he ha's failed to login...
|
|
#5
11-14-2012, 01:09 PM
|
|||
|
|||
|
Make sure all your admins and moderators have strong passwords and you probably don't need to worry. If they're trying common passwords across all users then there's probably nothing you can do unless you want to force all users to have strong passwords (I think there's a mod for that), but at least they won't find an admin password.
Edit: I was thinking you might be able to add a delay after an incorrect password, but I'm not sure if that would tie up server connections. Another idea I had was to redirect to the home page on an incorrect password, so that maybe their program would get confused. Either way I think you might need to modify vb files. (BTW, I don't know for sure that would work, these are just a couple ideas I had).
|
|
#6
11-14-2012, 01:14 PM
|
|||
|
|||
|
If the range of the IP's are close in the 2nd & 3rd Octet, i would start there for now, you may fluster him enough to get him to stop trying, if its a person or a person using a script.
Ie... 10.10 10.10.10 Ban the range of IP via a .htaccess file w/ deny
|
|
#7
11-14-2012, 01:21 PM
|
|||
|
|||
|
ok thanks for the answers..
i hope he's get irritated en stops trying... admins password is a long password... so i dont think he's getting the password... but its very irritating to see so much's online users when it is actually one person/script that make that large number... --------------- Added [DATE]1352903033[/DATE] at [TIME]1352903033[/TIME] --------------- is there a way to see which account he try's to login?
|
|
#8
11-14-2012, 01:24 PM
|
|||
|
|||
|
Well, you could add a ddos protection script to the server, but what he is doing may NOT trigger a action by ddos, depends on how fast he is going.
|
|
#9
11-14-2012, 01:32 PM
|
|||
|
|||
|
hmm yes...
i don't think that works.. he is change ip every second... the ip's coming from all over the world.... i don't know how he does that.. (very impressive  )
|
|
#10
11-14-2012, 01:37 PM
|
|||
|
|||
|
Add a ddos script to the server, it might help depending on his actions.
|
 |
«
Previous Thread
|
Next Thread
»
Linear Mode
|
|
All times are GMT. The time now is 02:11 AM.