Register Members List Search Today's Posts Mark Forums Read

Reply
 
Mod Options
[DBTech] vBSecurity v2 (vB3) Details »
[DBTech] vBSecurity v2 (vB3)
Mod Version: 3.3.0, by DragonByte Tech (Coder) DragonByte Tech is offline
Developer Last Online: Dec 2018 I like it Show Printable Version Email this Page

vB Version: 3.8.x Rating: (7 votes - 5.00 average) Installs: 30
Released: 31 Dec 2011 Last Update: 19 Jun 2018 Downloads: 243
Supported DB Changes Uses Plugins Additional Files Translations  

vBSecurity: What is it?
vBSecurity keeps a watchful eye over your forum even when you are not there, and has the capability to alert you of any suspicious activity.

Uses

vBSecurity is the ideal product for forums that are concerned about security, or wish to be alerted when something suspicious happens.
It keeps a watchful eye on your configuration file, ensuring that it does not get modified by mods or plugins.
Another important feature is the ability to add a secondary login, unique to each administrator, that is required before accessing the AdminCP. Ideal for forums where multiple administrators may share login information, or where administrators may log in from public computers.
Add in quick settings for the most vital vBulletin Options and Usergroup password settings, vBSecurity can easily be called one of the most comprehensive security suites for your vBulletin forum.

-------------------------------------------------------------------------------------------

If you like this mod please hit the button to the right ---->

Please remember to click the, button to the right if you installed the mod ---->

What does 'Marking As Installed' do ?

* It helps you to stay on top of updates - members who have installed modifications will be notified by us whenever new updates are available.

*
For security issues - vbulletin.org will contact all members who have installed a modification whenever a security issue is brought to their attention.

* Marking a modification as installed also helps us know how many people are using our work, giving us extra incentive to provide more features and new modifications.

We appreciate the support!
-------------------------------------------------------------------------------------------

Priority support & Product Demos available at: http://www.dragonbyte-tech.com

-------------------------------------------------------------------------------------------

Translations available @ our forum
Support for translations handled by the translator in its respective threads only.

-------------------------------------------------------------------------------------------

Major Features
Administrator Security: .htaccess-like logins for your administrators means that even if they use the same password on multiple sites, malicious users still need a fresh, unique password to log in.

Security Watchers: Keep an eye on the most important aspects of vBulletin: config.php tampering, AdminCP / User Account access attempts, vBulletin Options, User Data, Usergroup Settings and Usergroup Permissions.
Detailed changelogs available for each watcher dealing with changes.
IP Ban, User Ban, Email alerts and temporary forum closure options available for each watcher individually.

Lite
* Searchable list of all AdminCP access attempts
* Searchable list of all failed login attempts
* Searchable list of administrator changes for areas governed by the Security Watchers
* vBOption: IP Address whitelist for AdminCP access
* vBOption: Separate "Closed Reason" for closures that happened due to potential security breaches
* Quick setting page for the most important vBulletin Options security settings
* Quick setting page for the most important Usergroup security settings
* Security Watchers: General - config.php Variable Tampering, AdminCP Access Attempts
* Security Watchers: Logins - Failed Logons, Failed Mass Logons
* Security Watchers: vBOptions - vBulletin Active, Reason For Turning vBulletin Off, Banned Email Addresses, Banned IP Addresses, Use Login "Strikes" System, Whitelisted IP Addresses, Whitelisted IP Addresses - Exclude Super Administrators
* Security Watchers: User Data - User Name, Password, Email, Primary Usergroup, Additional Usergroups, Reputation Level, Warnings, Infractions, Infraction Points, Receive Admin Emails
* Security Watcher Actions: 2 thresholds with individual configuration options, IP Ban / User Ban / Email Webmaster / Close Forum options available for each Watcher option listed above. Some watcher options may not have all actions.

Pro
* Optional .htaccess-like login on a per-administrator basis
* Settings Snapshots - take a "snapshot" of how the vBulletin Options look at the time, instant restore by clicking Load on a previous snapshot
* Security Watchers: Usergroup - Password Expiry, Password History, every usergroup permission group, every "value" permission
* IP Guard: Administrator IP Address authorisation scheme (similar to Steam Guard) - Require email verification for new IP addresses to access the AdminCP, per-administrator disable

-------------------------------------------------------------------------------------------
This mod displays a copyright notification in the footer of all pages which includes:
  • 1 Link to DragonByte Technologies homepage
  • 1 Link to Product Description page of this modification

Download Now

Only licensed members can download files, Click Here for more information.

Screenshots

Click image for larger version

Name:	vbsec_adminpasswords.jpg
Views:	560
Size:	78.0 KB
ID:	135377   Click image for larger version

Name:	vbsec_recommendations.jpg
Views:	401
Size:	75.9 KB
ID:	135378   Click image for larger version

Name:	vbsec_watchergeneral.jpg
Views:	358
Size:	76.9 KB
ID:	135379   Click image for larger version

Name:	vbsec_watcherlogin.jpg
Views:	395
Size:	77.5 KB
ID:	135380  

Show Your Support

  • To receive notifications regarding updates -> Click to Mark as Installed.
  • If you like this modification support the author by donating.
  • This modification may not be copied, reproduced or published elsewhere without author's permission.
Similar Mod
Mod Developer Type Replies Last Post
Administrative and Maintenance Tools [DBTech] vBSecurity v2 (vB4) DragonByte Tech vBulletin 4.x Add-ons 149 25 Oct 2018 20:02
Major Additions [DBTech] vBShop v3 (vB3) DragonByte Tech vBulletin 3.8 Add-ons 202 24 Sep 2017 02:20
Major Additions [DBTech] vBQuiz v2 (vB3) DragonByte Tech vBulletin 3.8 Add-ons 131 14 Mar 2017 17:20
Administrative and Maintenance Tools [DBTech] vBMail v2 (vB3) DragonByte Tech vBulletin 3.8 Add-ons 80 18 Dec 2015 22:56
Mini Mods [DBTech] User Spotlight v1 (vB3) DragonByte Tech vBulletin 3.8 Add-ons 96 06 Apr 2013 01:33

  #31  
Old 12 Dec 2014, 16:32
adwade adwade is offline
 
Join Date: Aug 2006
Real name: A.D.
So what does checking the Ban IP Address box actually do then? The mod emailed me just fine, indicating that "The actions you have configured in the Security Center have been taken." but according to your reply above the mod will not perform the action of (automatically) adding a new IP Address to the Banned IP Address box in vB.(i.e. What difference does it make, whether the Ban IP Address box is checked or not?)

Last edited by adwade; 13 Dec 2014 at 05:18.
Reply With Quote
  #32  
Old 18 Dec 2014, 22:10
adwade adwade is offline
 
Join Date: Aug 2006
Real name: A.D.
While my question still remains (above), educate me as to why it would not be a good idea to automatically Ban an IP Address that is attempting to login using -1' -and/or- user name as the actual username? These examples just seem like nefarious attempts to gain illegitimate access to a board by general (up to) no-good-doers.
Reply With Quote
  #33  
Old 30 Mar 2015, 20:50
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.3

Changes to Existing Features:

Mass Password Reset
  • Now uses a more secure method of generating temporary passwords
  • Enables greater security for users, avoiding brute force attacks on their passwords before the passwords can be changed


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #34  
Old 20 Apr 2015, 22:40
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.4

New Features:

Scheduled Password Reset
  • Enforces a password reset for a user upon next login, via the User Manager in the ACP
  • Mimicks the "Password Expiry" feature in vBulletin
  • Great for forcing users to provide a more secure password

(Pro) Mass Scheduled Password Reset
  • Enforces a password reset for every account upon next login
  • Mimicks the "Password Expiry" feature in vBulletin
  • Great for forcing users to provide a more secure password


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #35  
Old 27 Apr 2015, 20:26
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.4 Patch Level 1

Bug Fixes:
  • Fixed an issue where the mod wasn't initialised in the ModCP


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #36  
Old 04 May 2015, 20:53
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.4 Patch Level 2

Bug Fixes:
  • Fixed an issue where the "IP Awaiting Authorisation" message would not display correctly in the DBSEO CP.


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #37  
Old 25 May 2015, 22:52
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.4 Patch Level 3

Bug Fixes:
  • The "Unrecognised AdminCP Login From <new IP address>" email would be sent without a subject and body


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #38  
Old 01 Jun 2015, 20:21
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.5

New Features:

AdminCP Login Viewer
  • Paginated list of all AdminCP logins
  • Filter by User Name
  • Filter by start/end date
  • Filter by IP Address
  • Change sort column

AdminCP Login Prune
  • Only accessible to users with the required config.php permission
  • Optional age limit


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #39  
Old 15 Jun 2015, 21:00
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.6

New Features:

Admin Strikes Viewer: Prune
  • Only accessible to users with the required config.php permission
  • Optional age limit

Changes To Existing Features:

General / Other
  • Streamlined the phrasing for the ACP Logins and Admin Strikes interfaces


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #40  
Old 22 Jun 2015, 22:35
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.7

New Features:

Change Log Viewer: Prune
  • Only accessible to users with the required config.php permission
  • Optional age limit


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #41  
Old 04 Jul 2015, 22:50
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.7 Patch Level 1

Bug Fixes:
  • Turning off the modification via the vBulletin Options will now work as intended


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #42  
Old 06 Jul 2015, 17:25
SpadMan SpadMan is offline
 
Join Date: Sep 2004
Several good improvements this year. Unfortunately vBSecurity hasn't reduced the number of mass logons hammering my site. And banning the spoofed IP addresses just causes problems for legitimate users.
Reply With Quote
  #43  
Old 06 Jul 2015, 17:32
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
Unfortunately, in order to reduce those, you would need alternative solutions. This isn't designed to be a preventative measure, but rather a reactive measure. In other words, "oh hey I see X is going on, I should verify and react to it" rather than something akin to what a firewall would be (e.g. blocking malicious traffic without user interaction).


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #44  
Old 10 Aug 2015, 02:40
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.8

New Features:

Login Strikes Viewer
  • Login Strikes log entries can now be pruned
  • Requires the "Can Prune Log Entries" config.php permission


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
  #45  
Old 18 Aug 2015, 00:38
DragonByte Tech's Avatar
DragonByte Tech DragonByte Tech is offline
 
Join Date: Feb 2010
Real name: Fillip & Iain
vBSecurity v1.1.8 Patch Level 2

Bug Fixes:
  • Turning the modification off via the "Enable Modification" vBOption meant you could no longer access the majority of vBSecurity admin controls
  • Fixed an issue with the "login strikes" page that could produce a fatal error in certain scenarios


Fillip
__________________
www.Dragonbyte-tech.com
Please support our mods by nominating them to MOTM!
Please do NOT PM us for support. Private Messages are only for exchanging sensitive details (like FTP / AdminCP logins).
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Mod Options

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 07:22.

Layout Options | Width: Wide Color: