phpBB hacks: password security, anti robot login and a full board security system
by James Hicks - Thursday, 6 December 2007.
CrackerTracker Professional G5 is the 5th generation of the famous board security system. It features:
  • Worm & Exploit protection Unit with heuristic engine and more than 280 definitions
  • SQL Injection detector for GET, POST, ... Vars
  • Attack Counter function
  • Checksum Scanner to detect PHP Files wich were changed
  • Recovery System for the board configuration table
  • 8 different footer layouts
  • File Security Scanner wich detects general security issues in phpBB Files
  • Global Message Function
  • IP Blocker Engine
  • Proxy Blocker Engine
  • UserAgent Blocker Engine
  • Comfortable LOG Manager to view attack logfiles and manage the files
  • Selftest system
  • Automatically check file permissions on the logfiles
  • Show Security Tipps for your Server and Board
  • Maintenance function
  • "Miserable User" function to easily block userposts in viewtopic.php
  • Adjustable main logfile size
  • Completely new and modern layout in ACP and Forum
  • Every feature can easily be activated or deactivated over ACP
  • Search Flood Protection for Guests and Users
  • Login Brute Force Protection System
  • Detect wrong Logins and save them in your logfile
  • Login History for Users
  • IP Range Scanner to detect account abuse
  • Spammer Detection System
  • Detect human registered Spammer (Spam Detection Boost)
  • Spammer Keyword Detection for Posts and Profile
  • Registration Protection
  • Registration IP Scanning
  • Account Password Expire Function
  • Account Password Complexity Function
  • Account Password Length Control
  • Emergency console wich can restore board configuration Table without running phpBB
  • Password Reset Flood Protection
  • Massmail Protection System
  • Auto Recovery Board Settings
  • Visual Confirmation for Guest Postings
  • Protect from "Throw Away Mailservices"
  • Automatically detect misconfiguration of sensible Board Settings
  • Very fast code and OOP with Class Files etc.
  • Protect from overwriting sensible vars


MOD Author: http://www.cybercosmonaut.de
MOD Version: 5.0.4
Installation Level: Moderate
Installation Time: 40 minutes

Files To Edit:
common.php
login.php
posting.php
search.php
viewtopic.php
admin/admin_board.php
admin/admin_ranks.php
admin/admin_smilies.php
admin/admin_styles.php
admin/admin_user_ban.php
admin/admin_users.php
admin/admin_words.php
includes/auth.php
includes/constants.php
includes/emailer.php
includes/functions.php
includes/functions_post.php
includes/page_header.php
includes/page_tail.php
includes/smtp.php
includes/usercp_email.php
includes/usercp_register.php
includes/usercp_sendpasswd.php
templates/subSilver/overall_footer.tpl
templates/subSilver/overall_header.tpl
templates/subSilver/posting_body.tpl
templates/subSilver/subSilver.cfg

Spotlight

Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics

Posted on 23 October 2014.  |  Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Oct 24th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //