[DBTech] DragonByte Security [Paid] 4.0.1

[Nirjonadda]

@DragonByte Tech Where the controller option for this Feature?

• Feature: Added an option to enable additional spider identification (spider list provided by ozzy47)
• Feature: Added a toggle for whether WebGL should be excluded from fingerprinting (previously it was forced off)

 

[oO5 Dynasty]

do you have to pay the 24.95 and then another 50 bucks for the lifetime upgrade?

 

[DragonByte Tech]

@DragonByte Tech Where the controller option for this Feature?

• Feature: Added an option to enable additional spider identification (spider list provided by ozzy47)
• Feature: Added a toggle for whether WebGL should be excluded from fingerprinting (previously it was forced off)

Perhaps unsurprisingly, options are found in the "Options" page for this mod Specifically, under Watcher Options.

do you have to pay the 24.95 and then another 50 bucks for the lifetime upgrade?

I'm not 100% sure what the upgrade pricing from 3 months to Lifetime is, as it depends on a number of factors, but upgrading from an existing licence (even an expired one) is not the same as the cost for a new licence entirely.


Fillip

 

[Nirjonadda]

Perhaps unsurprisingly, options are found in the "Options" page for this mod Specifically, under Watcher Options.

Then still i can not find out the option.

 

[DragonByte Tech]

An issue in which the XML file was missing a few required settings has now been taken care of. Please re-download the latest version and re-upload all files, then re-import the XML file in order for this to be taken care of.


Fillip

 

[oO5 Dynasty]

Perhaps unsurprisingly, options are found in the "Options" page for this mod Specifically, under Watcher Options.

I'm not 100% sure what the upgrade pricing from 3 months to Lifetime is, as it depends on a number of factors, but upgrading from an existing licence (even an expired one) is not the same as the cost for a new licence entirely.


Fillip

I guess what i was trying to ask was, How much is it to buy this add-on if you a new customer? Is it a set price at 24.95 or can you just buy the add-on at 50 bucks and get the lifetime updates.

 

[DragonByte Tech]

I guess what i was trying to ask was, How much is it to buy this add-on if you a new customer? Is it a set price at 24.95 or can you just buy the add-on at 50 bucks and get the lifetime updates.

Oh, sorry I misunderstood. The licence length does indeed determine how long you get updates for, so if you buy the $24.95 version you get updates for 3 months, and then you have to pay to renew your licences to access further updates.

Hope that helps


Fillip

 

[oO5 Dynasty]

Ok i get it now, When i go for this add-on, i will just get the 49.95 version so i can get lifetime updates. (Makes more sense)

 

[Alpha1]

Are you planning to include the Bad Bots list?
http://www.botreports.com/badbots/
It would be very useful to see if malicious bots are spidering the website.

 

[oO5 Dynasty]

Are you planning to include the Bad Bots list?
http://www.botreports.com/badbots/
It would be very useful to see if malicious bots are spidering the website.

I Love that idea!

 

[DragonByte Tech]

Are you planning to include the Bad Bots list?
http://www.botreports.com/badbots/
It would be very useful to see if malicious bots are spidering the website.

Does the site have a downloadable database? I can't find one on their site.


Fillip

 

[Alpha1]

No, it doesn't have a downloadable database. But the bot index is in standardized format. All you need is the name (page title) and the user-agent (which is always in the same location)

Alternatively, there is this downloadable database: http://www.user-agents.org/allagents.xml

Type Legend:
B = Browser
C = Link-, bookmark-, server- checking
D = Downloading tool
P = Proxy server, web filtering
R = Robot, crawler, spider
S = Spam or bad bot

 

[Alpha1]

We are currently getting overrun with bots. It would be very useful to be able to see bad bots. This way we can see who is which malicious bots are there exactly.

As the addon has fingerprinting functions, can you please add a function to:
Find Multi-Account Access Fingerprints
This will be much more reliable than IP.

Please add a filter to the bad behavior log for: response code, IP, User-agent. Without it the log is useless. We typically have tens of thousands of lines in there.

 

[ENF]

Just ran across a couple of errors that popped up (all the same as below):

Error Info
ErrorException: Undefined variable: results - library/DBTech/Security/3rdParty/functions_badbehavior.php:70
Generated By: Unknown Account, 35 minutes ago

Stack Trace
#0 /home/nginx/domains/working-domain.xzy/public/library/DBTech/Security/3rdParty/functions_badbehavior.php(70): XenForo_Application::handlePhpError(8, 'Undefined varia...', '/home/nginx/dom...', 70, Array)
#1 /home/nginx/domains/working-domain.xzy/public/library/DBTech/Security/3rdParty/bad-behavior/banned.inc.php(65): bb2_db_query('INSERT INTO `xf...')
#2 /home/nginx/domains/working-domain.xzy/public/library/DBTech/Security/3rdParty/bad-behavior/core.inc.php(21): bb2_log_denial(Array, Array, '45b35e30', false)
#3 /home/nginx/domains/working-domain.xzy/public/library/DBTech/Security/3rdParty/bad-behavior/core.inc.php(124): bb2_banned(Array, Array, '45b35e30')
#4 /home/nginx/domains/working-domain.xzy/public/library/DBTech/Security/XenForo/EventListener/FrontControllerPostView.php(66): bb2_start(Array)
#5 /home/nginx/domains/working-domain.xzy/public/library/XenForo/CodeEvent.php(90): DBTech_Security_XenForo_EventListener_FrontControllerPostView::listen(Object(XenForo_FrontController), '<!DOCTYPE html>...')
#6 /home/nginx/domains/working-domain.xzy/public/library/XenForo/FrontController.php(183): XenForo_CodeEvent::fire('front_controlle...', Array)
#7 /home/nginx/domains/working-domain.xzy/public/index.php(13): XenForo_FrontController->run()
#8 {main}
Request State
array(3) {
  ["url"] => string(67) "https://working-domain.xzy/threads/this-is-thread.6052/"
  ["_GET"] => array(1) {
    ["/threads/this-is-thread_6052/"] => string(0) ""
  }
  ["_POST"] => array(0) {
  }
}

Some content sanitized above (domain/thread).

 

[Alpha1]

I am getting these:

Error Info
Zend_Db_Adapter_Mysqli_Exception: Lost connection to MySQL server at 'reading authorization packet', system error: 0 - library/Zend/Db/Adapter/Mysqli.php:333
Generated By: Unknown Account, Today at 12:53 AM
Stack Trace
#0 /library/Zend/Db/Adapter/Abstract.php(315): Zend_Db_Adapter_Mysqli->_connect()
#1 /library/XenForo/Application.php(730): Zend_Db_Adapter_Abstract->getConnection()
#2 /library/XenForo/Application.php(973): XenForo_Application->loadDb(Object(Zend_Config))
#3 /library/XenForo/Application.php(1004): XenForo_Application->lazyLoad('db', NULL)
#4 /library/XenForo/Application.php(1632): XenForo_Application::get('db')
#5 /library/XenForo/Session.php(236): XenForo_Application::getDb()
#6 /library/DBTech/Security/XenForo/Session.php(14): XenForo_Session->__construct(Array, Object(Zend_Cache_Core), NULL)
#7 /library/XenForo/Session.php(323): DBTech_Security_XenForo_Session->__construct()
#8 /library/XenForo/Session.php(257): XenForo_Session::getPublicSession(Object(Zend_Controller_Request_Http))
#9 /library/XenForo/Controller.php(293): XenForo_Session::startPublicSession(Object(Zend_Controller_Request_Http))
#10 /library/XenForo/Controller.php(306): XenForo_Controller->_setupSession('Index')
#11 /library/XenForo/FrontController.php(350): XenForo_Controller->preDispatch('Index', 'XenForo_Control...')
#12 /library/XenForo/FrontController.php(134): XenForo_FrontController->dispatch(Object(XenForo_RouteMatch))
#13 /index.php(13): XenForo_FrontController->run()
#14 {main}
Request State
array(3) {
  ["url"] => string(112) "http://forum.com/threads/292206/"
  ["_GET"] => array(0) {
  }
  ["_POST"] => array(0) {
  }
}

 

[DragonByte Tech]

Just ran across a couple of errors that popped up (all the same as below):
ErrorException: Undefined variable: results - library/DBTech/Security/3rdParty/functions_badbehavior.php:70

Should be resolved in a hotfix

I am getting these:
Zend_Db_Adapter_Mysqli_Exception: Lost connection to MySQL server at 'reading authorization packet', system error: 0 - library/Zend/Db/Adapter/Mysqli.php:333

100% unrelated to this mod, you will need to contact your system administrator for assistance.


Fillip

 

[ENF]

Should be resolved in a hotfix

Thanks for taking a look and getting a fix out.

 

[Alpha1]

Zend_Db_Statement_Mysqli_Exception: Mysqli prepare error: Unknown column 'user.username' in 'order clause' - library/Zend/Db/Statement/Mysqli.php:77
Generated By: Alfa, A moment ago

Stack Trace
#0 /library/Zend/Db/Statement.php(115): Zend_Db_Statement_Mysqli->_prepare('\n\t\t\tSELECT logi...')
#1 /library/Zend/Db/Adapter/Mysqli.php(381): Zend_Db_Statement->__construct(Object(Zend_Db_Adapter_Mysqli), '\n\t\t\tSELECT logi...')
#2 /library/Zend/Db/Adapter/Abstract.php(478): Zend_Db_Adapter_Mysqli->prepare('\n\t\t\tSELECT logi...')
#3 /library/DBTech/Security/Application/Database.php(483): Zend_Db_Adapter_Abstract->query('\n\t\t\tSELECT logi...')
#4 /library/DBTech/Security/ActionAdmin/Loginstrikes.php(162): DBTech_Security_Application_Database->fetchAllKeyed('\n\t\t\tSELECT logi...', 'loginstrikesid', Array)
#5 /library/DBTech/Security/Application/Core.php(337): DBTech_Security_ActionAdmin_Loginstrikes->actionView()
#6 /library/DBTech/Security/XenForo/ControllerAdmin/Security.php(32): DBTech_Security_Application_Core->runAction()
#7 /library/XenForo/FrontController.php(351): DBTech_Security_XenForo_ControllerAdmin_Security->actionIndex()
#8 /library/XenForo/FrontController.php(134): XenForo_FrontController->dispatch(Object(XenForo_RouteMatch))
#9 /admin.php(13): XenForo_FrontController->run()
#10 {main}
Request State
array(3) {
  ["url"] => string(262) "https://forum.com/admin.php?perpage=15&username=&ipaddress=&startdate%5Bmonth%5D=&startdate%5Bday%5D=&startdate%5Byear%5D=&enddate%5Bmonth%5D=&enddate%5Bday%5D=&enddate%5Byear%5D=&orderby=username&direction=DESC&action=view&_=dbtech-security%2Floginstrikes"
  ["_GET"] => array(11) {
    ["perpage"] => string(2) "15"
    ["username"] => string(0) ""
    ["ipaddress"] => string(0) ""
    ["startdate"] => array(3) {
      ["month"] => string(0) ""
      ["day"] => string(0) ""
      ["year"] => string(0) ""
    }
    ["enddate"] => array(3) {
      ["month"] => string(0) ""
      ["day"] => string(0) ""
      ["year"] => string(0) ""
    }
    ["orderby"] => string(8) "username"
    ["direction"] => string(4) "DESC"
    ["action"] => string(4) "view"
    ["_"] => string(28) "dbtech-security/loginstrikes"
    ["do"] => string(12) "loginstrikes"
    ["id"] => int(0)
  }
  ["_POST"] => array(0) {
  }
}

 

[Alpha1]

@DragonByte Tech could you please explain what it means exactly when a user comes up in the compromised account log?
Since installing the addon I see 1 user coming up in it since they registered yesterday. But the used IP address is not used on any other account and the posting pattern is consistent with the profile. There doesn't seem anything wrong. What exactly triggered this account to be in the log?

 

[DragonByte Tech]

Zend_Db_Statement_Mysqli_Exception: Mysqli prepare error: Unknown column 'user.username' in 'order clause'

Fixed in a hotfix

What exactly triggered this account to be in the log?

If an IP address fails to login to any account, then successfully logs into any account, the account they successfully logged into gets recorded as being potentially compromised.


Fillip