No, the password will stay the same.

The timeout is the amount of time before the user will have to enter the same password again to access the forum.

In the next update it will.

Find:

Above this add:

Instructions updated.

Find in which file?

Dave.

forumdisplay.php
showthread.php

Thanks for the fix.

That's right, both of them. :)

thankz ur reply!!:D:D

now im understand...... :rambo:

install and work perfectly

but on index forumlist the $forum[description] appear what??

I have put the right code in the root/index.php


above
eval("\$forumbits .= \"".gettemplate("forumhome_forumbit_level$depth$te mpext")."\";");

i'didn't know what i do wrong

My forum description is like this:

Coding projects [Password Protected]


vb2.2.8

That's what is supposed to happen. It shows that the forum is password protected.

yes ok but in your screenshot the forum with the password hack show no description why??
It's because there is no description for the forum or it is the hack that hide description???

https://vborg.vbsupport.ru/attachmen...&postid=364734

There was no description. It doesn't replace it.

Hey guys, I tried to install on 2.30 and I have some problem, maybe you guys can help me out.

1) When Edit my forums, I choose Password Protect Security then I enter the password and the time out but when I click submit, I got this message.
"Password protection enabled, yet no password was submitted.
(Forum access can be gained by leaving the password field blank on entry.)"
However when I look in the database, the forumpass field got the right password.
2) I can't get inside that protective forums when I supply the password. It keeps asking me to enter the password.

thakz

G

Hmm, do you have register_globals turned on or off?

Thanks for releasing this hack. It's opens a fresh can o' worms, though.

---------------------------
Use of password-protected subforums will probably cause resentment among the excluded members, and generate repeated posts/PM from excluded members
demanding to know "Why?", "Why am I not special?", "Why can't I get in?!?"

You might preclude/alleviate this somehat by including in the forum description a CLEAR explanation of WHY the subforum is protected, HOW select members attain
eligibility to participate in it (and WHO to contact with a password request if a member believes he's eligible)...
and you'd probably need to change the forum description field to allow enough room for sufficient descriptive text ~~ the standard field is limited to 250 characters.

To avoid the "in your face, but you can't access it" effect, consider marking any password-protected subforum(s) "inactive" via the AdminCP--}Forums:Edit interface.
This will suppress the title/description display on ForumsHome, will remove the forum(s) from forumjump and from the search selectbox... yet it won't interfere with the
ability of "insiders" to use the "Search this forum" feature (included in the "forumdisplay" template).

---------------------------
Password-protection is "only as good as" the people protecting the password. Bear in mind that it's subject to "social engineering". Ultimately (eventually) you should
EXPECT that someone(s) not "officially" invited will coax a friend (to whom the password is known) into divulging the password.

So, if you decide to employ a pw-protection scheme, you should PLAN (and communicate to included members) in advance:
-- which person(s) has the ability/authority to change the password
-- when/why the password may be changed (how often // for what reason)
-- how the included members will be notified, in the event of a password change
-- who (everyone, or just the leader) is permitted to divulge the password and to invite new "insiders"
-- what penalty will be applied if someone irresponsibly divulges the password to unqualified/uninvited "outsiders"
---------------------------

People understand what they get when they install this hack.

If they wish to "brace themselves" for the potentially huge influx of people asking for access, they can do so. If they can't deal with this, they probably shouldn't be running a forum.

The hack is here to make it technically possible for people to do things with their bulletin boards, the way they deal with the results is up to them.

I should think that anyone who installs this hack would explain why it's there, in the form of a thread or an announcement.

If a user tries to access the forum, they'll still be prompted for a password. (Which would kind of give the game away)

Obviously.

This hack does exactly what it says it does. It password protects forums. If you can't handle having passwords, don't - stick to user access masks. It's not supposed to replace it, it's here as an alternative.

Honestly, people understand what the hack is for and if they need it, they use it. If anyone wants to release a "Enhanced Diplomatic Solutions to Ease Forum Tension in the Event of Password Protected Forum Usage" hack, be my guest.

LOL

Database error in vBulletin 2.3.0:

Invalid SQL: SELECT security,forumpass,passtimeout
FROM forum
WHERE forumid='2'
mysql error: Unknown column 'security' in 'field list'

mysql error number: 1054

Date: Wednesday 19th of March 2003 10:51:28 AM
Script: http://pinuvccio.altervista.org/foru....php?forumid=2
Referer:



help my

You didn't run the queries at the beginning (the very first thing listed in the instructions.)

error in musql look :(

1. SQL QUERIES

Run these queries:
-----------------------------------------------------------
ALTER TABLE `forum` ADD `security` TINYINT(1) UNSIGNED DEFAULT "1" NOT NULL;
ALTER TABLE `forum` ADD `forumpass` text NOT NULL;
ALTER TABLE `forum` ADD `passtimeout` int(8) UNSIGNED DEFAULT "0" NOT NULL;
-----------------------------------------------------------


Database error in vBulletin Control Panel 2.3.0:

Invalid SQL: UPDATE forum
SET
styleid='1', title='Main Category', description='Main Category Description',
active='1', displayorder='1', parentid='-1', parentlist='1,-1',
allowposting='0', cancontainthreads='0', daysprune='0',
newpostemail='', newthreademail='',
moderatenew='0', allowhtml='0', allowbbcode='0',
allowimages='0', allowsmilies='0', allowicons='0',
styleoverride='0', allowratings='0', countposts='1',
moderateattach='0', security='', forumpass='', passtimeout=''
WHERE forumid='1'
mysql error: Unknown column 'security' in 'field list'

mysql error number: 1054

Date: Wednesday 19th of March 2003 11:47:40 AM
Script: www.???_?????????.da.ru/admin/forum.php
Referer: http://pinuvccio.altervista.org/admi...edit&forumid=1

There is a major security flaw in this hack that was just discovered. I can tell you an easy way to get in to a password protected forum.

r u gunna tell us how?

If you've found a flaw, why haven't you contacted me about it?

Well I tried to update my forum descriptions and it seems not to update any longer?

Did I miss something?

Hmm, one of my members used another password and he was still able to get into the forum =\

awesome. Finally someone puts a working one up. the other one had so many bugs.

So is this hack stable or what?

What's it's status?

Edit - Nevermind, I forgot to clear my cookies.

Actually, there does seem to be a problem with this. Some people are able to click on a link to a post in the password protected thread, and it asks them for the password. So far, so good. But then, if they click back to the main index and reload it, THEN click on the password protected forum, they get right in.

I haven't been able to duplicate this, but some of my members said they got in without a password and that was one of the ways they did it.

I have the same problem and I also managed to duplicate it. I am running 2.2.6 though so I don't know if that's the problem - can any else confrim?

FWIW, I'm running 2.3.0, and have had more reports of people being able to get in without a password today, as well.

I told you guys there was a problem with this in post #61. Did you think I was kidding?

Confirmed this weeks ago, and I did pm the author of this hack. He complained that I didn't contact him about the problem, and when I did, I received no response.

That's too bad, this would be pretty badass if it weren't for that odd little bug.

Bug ?
Security flaw !

I hope he can still fix it, I have this installed, working and the flaw is confirmed & reproducable on 2.2.9

I hope he can fix it.

We really needed this hack, and after looking at it, I threw it towards Scott and he fixed it in 1 minute, lol.

Here is version 1.2 which at least works on one of the sites I have it installed on. So hopefully it works for you too.

The changes are the forumdisplay and showthread text that you have to replace, the whole chunck. So, to upgrade, just remove it from those 2 files again and put this stuff instead.

Moo

Nice,

/me clicks install

im getting this Invalid SQL:
SELECT security,forumpass,passtimeout
FROM forum
WHERE forumid =

mysql error: You have an error in your SQL syntax near '' at line 5

mysql error number: 1064

idem
Database error in vBulletin 2.3.0:

Invalid SQL:
SELECT security,forumpass,passtimeout
FROM forum
WHERE forumid =

mysql error: You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 3

mysql error number: 1064

This looks pretty cool, I may have use for this :)