MySessions

Description:
With this plugin, users can view all of their account's current sessions and log out any sessions they find suspicious. Admins can view all sessions. Based on the functionality found in Gmail and Deviantart.

The below screenshot shows the usercp?action=mysessions page. The useragent "1'" was made by Nathan as he was testing the plugin for vulnerabilities, of which he found some and I fixed immediately :P

IP address links go to *the ip address*.ipaddress.com. If the plugin can, it will display the hostname and location of the IP address.



If there are multiple sessions for the same account, a warning shows up (which can be dismissed)



Install:
This plugin adds one database table and edits one template.

Upgrade:
From 1.0 to 1.1: re-upload mysessions.php
From 1.0, 1.1 to 1.2, 1.3: re-upload mysessions.php, deactivate and reactivate. This is needed to add a new column, uid, to the mysessions_kill table.

Change log:
1.0: Initial release
1.1: Minor bug fixes, and feature Multiple Sessions Alerts added
1.2 Added features:

• Cancel kill request
• Search by IP/username
  

Miscellaneous bug fixes
Fully commented code
1.3 Fixed SQL injection (SQLi) issue
1.3.1 Fixed a few links, userCP menu issue, and pagination issue

Has anyone been able to try this out?

Updated to 1.1, one feature added: Multiple Sessions Alerts.

Hm. I don't really see a use for this for me personally. I'll download it and take a look though.

what type of hash does the sid have?

It's a simple md5 hash. It's used only as a uniquifier.

Has anyone else been able to use this? It is used in gmail and deviantart, I thought it'd be a bit more popular.

I'll be adding some more features in the near future.

I might install it here as a demo.

Upcoming features added to first post.

Also, version 1.2 will be fully commented.