Login

zicke · 10-12-2014, 04:42 PM

Because some kiddys are hacking Accounts with brute force with old Databases i have written this Addon.

The .sql Table example in newproject_db_auth, in the .php mysql data connect.

Count Variable is for self edit how many accesses per minute (10 should work fine)

Instruction:

1. The Script (.php) in the core folder.

2. in the login.php see the lines

session_start();
$file = 'login';
include "config/config.php";
include "styles/style.php";
include "core/plugin.php";
include 'core/functions.php';
include 'core/classes.php';
include 'core/post_check.php';
include "core/core.php";

add this:
include 'core/anti-checker.php';

finish Wink

2

regards DamonA

CDWriter · 10-13-2014, 02:55 AM

can you Tell us exactly what table does this sql goes into ?? Newproject_data? our db_auth ?

Or do we need to create a new tables Called.

zicke · 10-13-2014, 03:47 PM

can you Tell us exactly what table does this sql goes into ?? Newproject_data? our db_auth ?

Or do we need to create a new tables Called.

you can use which you want, you can create a complete new too only must say in the header of the file the same database where the .sql is located.

it's the variable $DBNameChecker

example the .sql is located in newproject_db_auth set it to

$DBNameChecker = 'newproject_db_auth ';

Jaiz · 10-13-2014, 08:30 PM

you can use which you want, you can create a complete new too only must say in the header of the file the same database where the .sql is located.

it's the variable $DBNameChecker

example the .sql is located in newproject_db_auth set it to

$DBNameChecker = 'newproject_db_auth ';

xD the com here still dont know for whats usefull XD ^^

BayBay · 10-14-2014, 01:29 AM

xD the com here still dont know for whats usefull XD ^^

Didnt u read some ppl are getting their DB's hacked ? by using brute force ?

BayBay · 10-14-2014, 01:58 AM

Thanks for the Script!! really appreciate it

CDWriter · 10-14-2014, 05:25 AM

oooh thanks ..works great ...+1

***Sutz*** · 10-14-2014, 09:02 AM

nice release but...

Would have been 100% easier to use the already active PDO connection an edit the t_user_log table in the cms db add a new row (count) then add the functions to the function.php

The cms already logs time of login so just a simple function to update count on login where time = $timo

an if count = 10 then show new block "error" with $msg = "Acount login limit reached";

zicke · 10-15-2014, 12:15 PM

nice release but...

Would have been 100% easier to use the already active PDO connection an edit the t_user_log table in the cms db add a new row (count) then add the functions to the function.php

The cms already logs time of login so just a simple function to update count on login where time = $timo

an if count = 10 then show new block "error" with $msg = "Acount login limit reached";

Yeah that is true but i have only converted from my site to cms so i haven't look in your cms Wink

This Bruteforces attacks, lcgeneric01/02, vorms, horus etc.

Stupied kiddys released it in epvp so i have write the protection for it.

***Sutz*** · 10-21-2014, 09:36 PM

Well ty for the effort Smile

I will integrate it into my cms Smile

I don't really bother with LC anymore so don't really know whats going on with hacks an exploits

Login
Username/Email:
Password:	Lost Password?
	Remember me