Hey all,
We're releasing DragonByte Security v3.0.0 Beta 2 for XenForo to improve the experience for all customers.
If you like the product you can show your support by reviewing it here: [DBTech] DragonByte Security | xenForo Community.
Complete Change Log
DragonByte Security v3.0.0 Beta 2
New Features:
Compromised Account Lock
Compromised Account Alert
Security Watcher: Failed Staff Logins
Suspect IP Range Search
Password Generator
Mass Password Reset
Force Password Change
Changed Features:
Bug Fixes:
As always, thank you for your continued support
Discuss this news here.
We're releasing DragonByte Security v3.0.0 Beta 2 for XenForo to improve the experience for all customers.
If you like the product you can show your support by reviewing it here: [DBTech] DragonByte Security | xenForo Community.
Complete Change Log
DragonByte Security v3.0.0 Beta 2
New Features:
Compromised Account Lock
- Ability to lock an account if it's detected as compromised
- Prevents any action on the forum
- The user whose account was logged in to will need to click a link in their email inbox to unlock their account
Compromised Account Alert
- Alert staff when an account has potentially been compromised
Security Watcher: Failed Staff Logins
- Identical to "Failed Logins" watcher, except only for staff accounts
- Allows you to set stricter rules for staff accounts, or optionally only alert the webmaster if a staff account is broken into
- Failed Staff Logins can lock the account in one of two ways; User Unlock or Admin Unlock. Admin Unlock requires an administrator (other than the affected user) to unlock the account.
Suspect IP Range Search
- Collates IPs from various DB Security logs and matches partial IPs to detect suspicious IP ranges
- Shows the suspected range(s) along with the number of "hits" this range has generated
- Located on the "Search IP Addresses" screen
Password Generator
- Generate a random password or use your own
- Fill out username and password to encrypt it for use in Basic Authentication auth files
Mass Password Reset
- Can be limited to only reset passwords for users without 2FA enabled
- Can be limited to only reset passwords for users who have been inactive for X days
Force Password Change
- Can be limited to only force password change for users without 2FA enabled
- Can be limited to only force password change for users who have been inactive for X days
Changed Features:
- The "Maintenance" page (Mass Password Reset and Force Password Change) has been split into separate pages to make it easier to find these features
- The "Failed Logins" watcher no longer triggers for staff accounts
Bug Fixes:
- The Mass Password Reset maintenance action would not check if the "confirm action" was set to Yes
- The "Find Multi-Account IPs" tool would not work as intended
- The "Close Forum" action would not set the correct close message
- The "Alert Webmaster" action would not work as intended
As always, thank you for your continued support
Discuss this news here.
