I view forums like used cars. If someone is selling it, I am immediately concerned as to why. Call me skeptical I guess

Very good point Mike. It's rare that you see healthy forums on the auction block. But there are a lot of forums out there that can be taken to the next level with a little TLC

Hack: Who Downloaded for vBulletin.org
Author: MarcoH64
Remark: DO NOT DISTRIBUTE THIS OUTSIDE VBULLETIN STAFF, CONFIDENTIAL!!!!!!

Purpose: Watermark zipfiles on download with userid, ip, etc..

This whole hack is not waterproof (string could be removed for example, and encryption is not
very strong) but better then nothing.

The following string is added to the end of each zip-file:

"+" 1 alpha - Start string marker
version 1 number - version of this script (so we could use different layouts later)
SiteId length 1 number - Length if the Site Identifier
SiteID ? alpha - Identification string for the site from where downlaoded
This is needed is more Jelsoft sites should use this, and we must
know where to lookup a userid.
Random 3 number - A random number used to obscure the information
Userid 8 hex - The hexadecimal value of the obscured userid
IpNumber 12 hex - The hexadecimal value of the obscured ip-number
Timestamp 8 hex - The hexadecimal value of the time downloaded
"+" 1 alpha - End string marker

To retrieve the information, open a downloaded zip-file in a (hex?) editor, navigate
to the end of the file, find the identification string (starting and ending with a "+").
Copy the identification string and paste it in the Who Downloaded lookup script if this
is available to you. If you don't have access to this tool, ask an Administrator.


++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
+++ PRE Installation ++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++

There are 2 configurable settings for this hack, these must be hardcoded into the file
edits, so decide them now:

$wm_secretseed
This is a number between 1 and 999999 used to mask the information. This is like a "secret"
key for decrypting the information. Optionally this should/can be different for different
vbulletin sites (if this is going to be used on other sites like vBt). See this as the
private-key part of the encryption. There is also a random generated public-key that is send
inside the watermark string. Both keys together will decypher the information.

$wm_siteid
A shorthand identifier for the site from which the file is downloaded. A 1 to 9 character
long string.


All editable settings are placed beween "// Start Config" and "// End Config" lines.
After the "// End Config" no modifiations needed.

The values for these 2 settings need to be the same in attachment.php and in
whodownloaded.php.

++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
+++ Installation ++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++

========================= ./attachment.php =====================================
File edit: ./attachment.php


Find:
--------------------------------------------------------------
$extension = strtolower(file_extension($attachmentinfo['filename']));
--------------------------------------------------------------

Add After (change the Config to your settings!!!!!!!!!!):
--------------------------------------------------------------
// Start hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)
$watermarkstring = '';
// Start Config
$wm_extensions = array("zip", "rar");
$wm_secretseed = 654321; // max 6 digits, edit here and in modcp
$wm_siteid = "VBO"; // Site identifier (1 to 9 characters)
// End Config
if (in_array($extension, $wm_extensions)) // Add some identifying info to the zip
{
// Random seed
$wm_randseed = rand(1,999);
$wm_randseed_hex = str_pad(dechex($wm_randseed), 3, "0", STR_PAD_LEFT);

// Version
$wm_version = 2;

// Userid
$wm_uid = str_pad(dechex(($wm_secretseed + $bbuserinfo['userid']) * $wm_randseed), 8, "0", STR_PAD_LEFT);

// Postid
$wm_pid = str_pad(dechex($wm_secretseed + $attachmentinfo['postid']), 8, "0", STR_PAD_LEFT);

// IP
foreach (explode(".", IPADDRESS) AS $key=>$value)
{
$wm_ip .= sprintf("%03s", dechex($value + $wm_randseed)); // hex zero padded 3 bytes
}

// timestamp
$wm_time = sprintf("%08s", dechex(TIMENOW));

// The final string
$watermarkstring = "+$wm_version" . strlen($wm_siteid) . "$wm_siteid$wm_randseed_hex$wm_uid$wm_pid$wm_ip$wm _time+";
}
$watermarksize = strlen($watermarkstring);
// End hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)
--------------------------------------------------------------


Find:
--------------------------------------------------------------
header('Content-Length: ' . $attachmentinfo['filesize']);
--------------------------------------------------------------

REPLACE by:
--------------------------------------------------------------
// Start hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)
// header('Content-Length: ' . $attachmentinfo['filesize']);
header("Content-Length: " . ($attachmentinfo['filesize'] + $watermarksize));
// End hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)
--------------------------------------------------------------

Find:
--------------------------------------------------------------
// update views counter if the file was served successfully
--------------------------------------------------------------

Add BEFORE:
--------------------------------------------------------------
// Start hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)
if ($watermarksize != 0)
{
echo "$watermarkstring";
flush();
}
// End hack: Watermark zip-files, Identify who downloaded for vb.org (NON PUBLIC!!!!)

--------------------------------------------------------------

Save and upload ./attachment.php


========================= whodownloaded.php =====================================

The whodownloaded.php is a script that can decode the information attached to the
zip-file. It can optionally be placed in the admincp or modcp directory. If wanted
you can make it into a menu option, don't think instructions for that are needed.

Edit the file whodownloaded.php, and set the information between the "// Start Config"
and "// End Config" lines.

The '$wm_siteids' array can hold all site identifiers used in teh vBulletin network.

Upload to the directory of choice.

Here is the file for a test

--------------------

HI!

--------------------

Test.

vBulletin SEO Setup

vBulletin Modifications - Powered by vBulletin

--------------------