Mini Mods - [OzzModz] Log Failed Login

Another mod brought to you by,


Here is a small modification you can use to log selected users IP's when there is a login failure.

It is a simple installation, upload the file, ozzmodz_failed_login_log.log, in the UPLOAD folder, to your forum root, then import the product XML, product-ozzmodz_log_failed_login

You can edit the options under the settings, OzzModz: Log Failed Login IP Settings

Complete Feature List

• Option to disable the mod completely.
• Option to change the name of the file, so you can make it unique to your site, keeps it out of prying eyes.
• Option to set which userid's to log.
• Option to set which usergroups to log.

Frequently Asked Questions.

Q. Why do I need such a thing, you ask?

A. If you feel your members accounts are trying to be accessed by unauthorized people, this will log the IP's when the person fails the login, usually due to a wrong password. You can get the IP's from the log and add them to your ban list. Also it was requester by 00pavan00 here, How to log ips of failed attempts?

Q. How do I view the log?

A. Navigate to the log file, in your forum root, via FTP, and view it from there.

Q. How do I clear the log entries?

A. You can clear the log by deleting the entries and saving.

Q. How do I read the log?

A. It will have the info in this format, Date, Time, Userid, Username, IP Address.


-------------------------------------------------------------------------------------------

If you like this mod please hit the button to the right ---->

Please remember to click the, button to the right if you installed the mod ---->

What does 'Marking As Installed' do ?

* It helps you to stay on top of updates - members who have installed modifications will be notified whenever new updates are available.

* For security issues - vbulletin.org will contact all members who have installed a modification whenever a security issue is brought to their attention.

* Marking a modification as installed also helps me know how many people are using my work, giving me extra incentive to provide more features and new modifications.

I appreciate the support!
-------------------------------------------------------------------------------------------

v1.0.0 Initial release.

[ozzy47]

Reserved.

[madness85]

will you be updating so log can be viewed from admincp?

[ozzy47]

TBH I avoided putting it in the db don't need unnecessary stuff being stored in there. If you stay on top of the log you will see patterns quickly. I think it is better the way it is, you can save the file to your comp this way, and have a hard copy.

[Marv]

May be you should advise the users in the faq to CHMOD the .php file to 622. Otherwise the log file could become compromised when unexperienced admins are setting the file permission to read and write to public.

[ozzy47]

You could, but that is why I added the option to rename the file, it can't be compromised if the hacker don't know what the file is named.

[Marv]

Errm..yeah, sorry Chris. I see I?m splitting hairs again. Never mind

[ozzy47]

No problem, it happens to us all.

[Justinphx]

Nice mod Ozzy. One question though...

12-09-2013,12:29 AM,,,23.91.x.xx

This is an example of what the output looks like if the failed login is not a member. Is there a way to display what name they attempted? Thanks.

[ozzy47]

If it did not have a userid or username in the log, then it may have been a bot that hit the page somehow, as it should show in the log like so, Date, Time, Userid, Username, IP Address