[XenForo] DragonByte Security v3.0.0 Beta 2 Released

Fillip H.

Staff member
Owner
Developer
Customer
Hey all,

We're releasing DragonByte Security v3.0.0 Beta 2 for XenForo to improve the experience for all customers.


If you like the product you can show your support by reviewing it here: [DBTech] DragonByte Security | xenForo Community.


Complete Change Log

DragonByte Security v3.0.0 Beta 2

New Features:

Compromised Account Lock
  • Ability to lock an account if it's detected as compromised
  • Prevents any action on the forum
  • The user whose account was logged in to will need to click a link in their email inbox to unlock their account

Compromised Account Alert
  • Alert staff when an account has potentially been compromised

Security Watcher: Failed Staff Logins
  • Identical to "Failed Logins" watcher, except only for staff accounts
  • Allows you to set stricter rules for staff accounts, or optionally only alert the webmaster if a staff account is broken into
  • Failed Staff Logins can lock the account in one of two ways; User Unlock or Admin Unlock. Admin Unlock requires an administrator (other than the affected user) to unlock the account.

Suspect IP Range Search
  • Collates IPs from various DB Security logs and matches partial IPs to detect suspicious IP ranges
  • Shows the suspected range(s) along with the number of "hits" this range has generated
  • Located on the "Search IP Addresses" screen

Password Generator
  • Generate a random password or use your own
  • Fill out username and password to encrypt it for use in Basic Authentication auth files

Mass Password Reset
  • Can be limited to only reset passwords for users without 2FA enabled
  • Can be limited to only reset passwords for users who have been inactive for X days

Force Password Change
  • Can be limited to only force password change for users without 2FA enabled
  • Can be limited to only force password change for users who have been inactive for X days

Changed Features:
  • The "Maintenance" page (Mass Password Reset and Force Password Change) has been split into separate pages to make it easier to find these features
  • The "Failed Logins" watcher no longer triggers for staff accounts

Bug Fixes:
  • The Mass Password Reset maintenance action would not check if the "confirm action" was set to Yes
  • The "Find Multi-Account IPs" tool would not work as intended
  • The "Close Forum" action would not set the correct close message
  • The "Alert Webmaster" action would not work as intended


As always, thank you for your continued support :)

Discuss this news here.
 
Back
Top