vb.org Archive
Page 2 of 3 1 2 3
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.6 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=194)
-   -   Administrative and Maintenance Tools - Member's area in the admin cp. (https://vborg.vbsupport.ru/showthread.php?t=129752)

bashy 10-23-2006 11:03 PM
41 downloads and only 15 installs lol...

Cheers m8 will install this now :)

Antivirus 10-24-2006 01:21 AM
sweet!

Floris 10-24-2006 09:51 AM
Instead of new admin permissions, why not limit this to the super admin only?

Another suggestion is to include a link to the security patches download area. Not something jelsoft fully promotes, but it is there and might be handy ;) http://members.vbulletin.com/patches.php

Biek 10-27-2006 08:06 AM
I love these little snippets that make life easier. Thanks!

phill2003 10-29-2006 02:40 PM
So let me get this straight, If i install this and someone manages to steal my password somehow or hacks the server that my site is on and changes my password then goes and logs into the admin section as me, Then they have free rain in the vbulletin members area to download anything on offer and bog off and pirate it to their hearts content :)

Hmm that's the way it reads to me, think i will give it a miss can't see why i would need to download from the vb members area from inside my board anyway.

But well done i presume some people will think this is a great addition.

Brad 10-29-2006 03:32 PM
Quote:
If i install this and someone manages to steal my password somehow or hacks the server that my site is on and changes my password then goes and logs into the admin section as me, Then they have free rain in the vbulletin members area to download anything on offer and bog off and pirate it to their hearts content
No.

The only way anyone can get into the member's area is finding out your customer number and password. This modification never asks for such things, it just loads the member's area inside the admincp iframe.

It's no less secure then going directly to the member's area with your webbrowser.

Luggruff 11-08-2006 05:43 PM
Quote:
Originally Posted by Brad
No.

The only way anyone can get into the member's area is finding out your customer number and password. This modification never asks for such things, it just loads the member's area inside the admincp iframe.

It's no less secure then going directly to the member's area with your webbrowser.
Now you just said that it automaticly fills in the customer number and password, and then you said that they won't get access to the members area if they gain access to the adminCP.. did you not? Yes.

Quote:
Originally Posted by Brad
Instead of adding new admin permissions (I'm lazy) I just used the one already in place for vBoptions, as the 'main' admin (read: license owner) will likely have permission to use that anyway.
And if I'm the licence owner, and not userID #1 (as I presume you mean by that).. then what?

Listen to floris and make it a superadmin permission.

vbreal 11-13-2006 08:50 PM
thanks

Brad 11-17-2006 04:06 PM
Quote:
Originally Posted by Luggruff (Post 1113151)
Now you just said that it automaticly fills in the customer number and password, and then you said that they won't get access to the members area if they gain access to the adminCP.. did you not? Yes.



And if I'm the licence owner, and not userID #1 (as I presume you mean by that).. then what?

Listen to floris and make it a superadmin permission.
The permissions do nothing but hide the link. I rarely if ever log-in as super admin so this would be useless to me if I had done it that way. If you want it super admin only you'll have to do that part for yourself.

You seem confused here so allow me to explain;

All this does is link you to the member's area. This hack does not remember your username and password for the member's area, it does not automatically log you into the member's area, it does not allow anyone into the member's area that does not know your username and password for it.

In short it's just like typing in the address to the member's area in your web browser and visiting it that way. If you're smart and do not share your log-in details with anyone else you will be fine even if they know the link to the member's area.

Please, don't spread FUD in this thread. I know people may be iffy about linking such a thing from the admin cp and will probably have questions/concerns about it (which I am happy to answer and address).

johnrizz 11-17-2006 08:24 PM
Thanks!


All times are GMT. The time now is 03:20 AM.
Page 2 of 3 1 2 3
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.02020 seconds
  • Memory Usage 1,738KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete