vBulletin Mods

The Official vBulletin Modifications Site
https://www.vbulletin.org/forum/showthread.php?t=296383

AdminCP Firewall ~ Protect your AdminCP!
by liamwli
21 Mar 2013 20:33

2 Attachment(s)
This is a mod I made to increase the security of your forum!

It has the following features:
  • Email alert when an Admin logs into the CP
  • IP Checking for Admins
  • E-Mail if the IP isn't whitelisted
  • Block user access to the AdminCP if the IP isn't whitelisted
  • E-Mail if someone fails an AdminCP login
Those features will allow you to secure your AdminCP - and the only upload required is the product file!

So, what are you waiting for? Install now ;)

Update History
Version 1.3.3:
PHP error should be fixed

Version 1.3.2:
Fixed - PHP error message when logging into AdminCP :)
Branding Removed

Version 1.3.1:
Fixed - text would be displayed on login failure page if failure email turned off or not from admincp

Version 1.3:
Added - Ability to have an email sent when someone fails an admincp login.
Added - Branding. Sorry! Any donation of 2.50 or more will allow you to remove it :)

Version 1.2:
Added - Ability to specify IP's as CIDR ranges
Added - Ability to set both IP email and IP deny
Added - IP email will now tell you if any forum members registered using the unauthorized IP
Changed - Updated Admin Help Pages

Version 1.1:
Added - Ability to specify multiple email addresses
Added - Help entries for the admin options
Changed - IP's are separated with a line break now, not a comma.

Mark as Installed if Installed and Nominate for MOTM if you think this mod deserves it!

-----------

Donating

I kindly accept donations for my work. Donating will allow you to remove the branding. You can donate via paypal using the link on the right, or using bitcoin. Please PM me if you wish to donate using bitcoin.

This modification is free to modify and distribute with attribution. I no longer own a vBulletin license.

liamwli 21 Mar 2013 20:34

FAQ

Q. What if my IP changes? How can I get into the AdminCP!

A. Just add this line to your config.php file:


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

Q. You say the mod will deny a user access to the AdminCP. How does it do this - what is shown to the user?

A. The user will see the standard AdminCP no permission message, called by print_cp_no_permission().

Q. Can I reuse this mods code?

A. Please PM me.

synseal 22 Mar 2013 00:04

1 Attachment(s)
This works very well!.

Installed and set up, tested, received email when I logged in as I had it set to send on every log in.

Tried behind a proxy received the unauthorized email with username and IP address, also got the not authorized message.

Working fine 4.2 with vbseo.



Thank you!

liamwli 22 Mar 2013 11:32

Quote:

Originally Posted by synseal (Post 2411495)
This works very well!.

Installed and set up, tested, received email when I logged in as I had it set to send on every log in.

Tried behind a proxy received the unauthorized email with username and IP address, also got the not authorized message.

Working fine 4.2 with vbseo.



Thank you!

No worries, glad it works well for you :up: :)

Srdar 22 Mar 2013 14:00

Can multiple email addresses be notified on logins?

liamwli 22 Mar 2013 15:28

Quote:

Originally Posted by Srdar (Post 2411576)
Can multiple email addresses be notified on logins?

I'll add this by the end of the day GMT :)

liamwli 22 Mar 2013 17:40

Quote:

Originally Posted by Srdar (Post 2411576)
Can multiple email addresses be notified on logins?

This has been added to the latest version :)

Liam

Srdar 22 Mar 2013 18:05

Installed and working great

TheSupportForum 23 Mar 2013 00:36

would it be possible if it checks the IP address of registered members

for example if user gets denied message, the email will include the IP address and a registered member if it matches

dizzynation 23 Mar 2013 02:07

Seems like a great MOD, I will have to go to all the locations I go to now and get the IP's before I install though :)

Thanks!

ForceHSS 23 Mar 2013 03:02

And what if your ip chances each time you restart your pc

TheSupportForum 23 Mar 2013 09:26

Quote:

Originally Posted by ForceHSS (Post 2411685)
And what if your ip chances each time you restart your pc

yes that can happen only if you dont have static IP and the fact that your ISP doesnt control your IP

the only way to fool the system would be to clear all cookies and the forum will keep the cookie so even an IP change won't matter its picked up by the cookie

liamwli 23 Mar 2013 10:45

Quote:

Originally Posted by ForceHSS (Post 2411685)
And what if your ip chances each time you restart your pc

Then I suggest you use the email on login system and remain vigilant to those logins ;)

I will also try and make it so you can enter IP's as a CIDR mask - so as to whitelist multiple IP's at the same time

Quote:

Originally Posted by TheSupportForum (Post 2411662)
would it be possible if it checks the IP address of registered members

for example if user gets denied message, the email will include the IP address and a registered member if it matches

Hmm, clever! I'll see what I can do ;)

Liam

BadgerDog 23 Mar 2013 13:42

Installed for testing with thanks on 4.1.3 ...

Regards,
Doug

FTG LIQUID CL 23 Mar 2013 14:42

Sounds nice ,I will give it a try!


All times are GMT. The time now is 00:58.

Powered by vBulletin® Version 3.8.14
Copyright © 2021, MH Sub I, LLC dba vBulletin. All Rights Reserved. vBulletin® is a registered trademark of MH Sub I, LLC
Copyright ©2001 - , vbulletin.org. All rights reserved.