Thread: Administrative and Maintenance Tools - Miserable users
View Single Post
  #93  
Old 12-08-2006, 06:59 PM
da420 da420 is offline
 
Join Date: Nov 2005
Posts: 1,232
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Quote:
Originally Posted by basskiller View Post
The senrio I described was goofing around tp see if it could be done.
It's unintelligent to think it can't be done because you don't think someone should do it.



Here let me explain it to you.
Lets say you have a few admins on your site. You get into an arguement with one of them.. He decides he wants to get even with you or whatever.. He puts you in that usergroup.


As a default. The vbulletin script is built so the owner and whomever you wish can not be deleted. This is done through an addition to a PHP file.

This hack hasn't quite circumvented the defult, but has put a huge damper on it
I understand your point, but I still think it's unintelligent.

I would never make an admin on board that I did not trust, or thought was that immature that they would do that, so it is unlikely that would happen on my board, and if it did there are ways to gain that access back. Trust me on this, If I was the owner of the board they would no longer be an admin.

Make the owner of the board unalterable in the config.php file in the includes directory, that way their usergroup cannot be changed if it is that bothersome. It's a good idea to do anyways.

I just tried to alter one of my admins that is set to unalterable usergroup to the miserable users user group and I got the correct error message. "Sorry, this user is protected from being altered in the config.php file by the $config['SpecialUsers']['undeletableusers'] variable." If this message does not show then you have an incorrect setting in the config file.
Reply With Quote
 
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01055 seconds
  • Memory Usage 1,765KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD_SHOWPOST
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_quote
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_box
  • (1)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit_info
  • (1)postbit
  • (1)postbit_onlinestatus
  • (1)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • reputationlevel
  • showthread
Included Files:
  • ./showpost.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showpost_start
  • bbcode_fetch_tags
  • bbcode_create
  • postbit_factory
  • showpost_post
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • showpost_complete