vBSecurity 2.0.0

Change log

New Features:

(Pro) New Security Watcher: "Failed Logins: Non-Existent Usernames"
  • Checks for logins against a single username that doesn't exist
  • Lets you take separate action towards bots trying to login with stolen user credentials that don't exist on your site
  • Integrates into the existing "Logins" watcher group

(Pro) New Security Watcher: "Failed Mass Logins: Non-Existent Usernames"
  • Checks for logins against multiple usernames that don't exist
  • Lets you take separate action towards bots trying to login with stolen user credentials that don't exist on your site
  • Integrates into the existing "Logins" watcher group

(Pro) Compromised Accounts Detection
  • Alerts the webmaster if someone has failed multiple logins and then successfully logs in to an account
  • Lets you search the logs for the IP address in question to determine whether this is legitimate

(Pro) IP Ban Log Viewer
  • Browsable and searchable log of all banned IP addresses (from the point of installing v2)
  • Lets you ensure no legitimate members are banned

Multiple Watcher Actions
  • Define more than 2 actions per watcher
  • Prioritised in the order they are defined
  • Gives you even more fine-tuned control over the actions taken against potential intruders

Log Pruning
  • Old entries from the adminstrikes, loginstrikes and ipverify tables can be automatically pruned
  • Settable in the vBulletin Options
  • Defaults to pruning data older than 30 days


Changes To Existing Features:

Security Watcher Log
  • Rewritten to improve performance
  • Uses a dedicated log table instead of using the datastore
Top