Hacker Tracker
Printed From: Web Wiz Forums
Category: General Discussion
Forum Name: Classic ASP Discussion
Forum Description: Discussion on Active Server Pages (Classic ASP).
URL: https://forums.webwiz.net/forum_posts.asp?TID=3279
Printed Date: 29 March 2026 at 1:57pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: Hacker Tracker
Posted By: pedalcars
Subject: Hacker Tracker
Date Posted: 04 June 2003 at 5:35pm
|
I've just implemented a hacker tracker (200+ password guesses from an Algerian source the other day!).
When anyone puts in a wrong username / password combo into a login page that's tied in, it writes the date/time, source IP and hostname, page attacked, username and password tried to a DB. You can then log in and see if your login page has been attacked, which can then allow you to ban the source IP address from your site or report it to your host so they can, etc. Just wondered if anyone else would be potentially interested in this; if so I would consider making it available. ------------- http://www.pedalcars.info/ - www.pedalcars.info The most fun on four wheels 
|
Replies:
Posted By: the boss
Date Posted: 04 June 2003 at 5:45pm
MEEEEEEEEEEEEEE 
|
Posted By: Mart
Date Posted: 05 June 2003 at 9:12am
| yea that sounds pretty good... |
Posted By: MorningZ
Date Posted: 05 June 2003 at 2:38pm
|
another step to take is track the number of attemps in a session variable... incrementing each invalid attempt after three, just flat out kill the page like wrap the whole login form in: if you want to take a step and protect against simply closing the window and reopening it (to clear session), use a cookie instead
------------- Contribute to the working anarchy we fondly call the Internet |
Posted By: the boss
Date Posted: 06 June 2003 at 12:22am
 awsome
|
Posted By: pedalcars
Date Posted: 06 June 2003 at 4:23am
|
That's not such a bad idea. Could set a cookie with maybe a 30 minute timeout, so 3 wrong attempts and you have to wait another half hour before you can try again.
As there seems to be some interest, I'll set about de-integrating it to turn it into a relatively simple bolt-on. No promises about timescales, mind!! ------------- http://www.pedalcars.info/ - www.pedalcars.info The most fun on four wheels
|
Posted By: fernan82
Date Posted: 07 June 2003 at 4:59pm
|
i think one of the best ways to prevent your logins from being hacked is to track the session id on the form as -Borg- recently implemented on wwf (see the examples on the forums code) ... the above are good suggestions but with some programming knowledge anyone can make a bot and try thousands of passwords in no time and get around cookies and all that, and by the time you read them logs the damage will be done already and the info in the logs will be useless as mostlikely all you'll have is an anonymous proxy IP and will never be able to get the hacker's IP <edit> in simple words it's about impossible to track down a hacker, what you can do is try to keep them away... ------------- FeRnAN http://www.danasoft.com/"> 
|
Posted By: neilcarter
Date Posted: 07 June 2003 at 7:07pm
In my experience ( 56GB Bandwidth of hacking attempts in the last week ) most attempts come from comprimised machines, mainly on broadband, rather than ananymous proxys. Logging the ips allows the offending machines isp to shut the connection down. Neil |
fernan82 wrote:Posted By: pedalcars
Date Posted: 09 June 2003 at 5:18am
|
I never promised it was a cure all, and yes I'm sure that someone with enough technical nouse could hack your site before you even noticed, regardless of anything you've done.
However, what it will do is track the significant number of amateurs who're just "having a bit of a laugh", and allow you to block them, report them to their ISPs, etc. Plus, what Neil says. No, it wont track the hacker deeply enough to let you phone them at home and quote their shoe size back at them, but it gives you another tool to try to keep them away. ------------- http://www.pedalcars.info/ - www.pedalcars.info The most fun on four wheels
|
Posted By: Bluefrog
Date Posted: 09 June 2003 at 9:45am
| Every little bit helps. |