Thread: Anti-Spam Options - [GlowHost] Spam-O-Matic - Spam Firewall stops forum spam
View Single Post
  #121  
Old 08-16-2010, 10:11 PM
GlowHost.com's Avatar
GlowHost.com GlowHost.com is offline
 
Join Date: Nov 2005
Location: USA
Posts: 371
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I can't really comment on the security issue, other than the following:

Everyone has their own opinion of what security "should be." There is almost always a trade-off for functionality vs. security and users have to decide where that line is on their own. Keeping the scripts up to date, maintaining an adequate server-side firewall, and strong passwords are generally good enough.

As a suggestion, ff you want to maintain functionality of this mod, other mods, make your upgrades easier for mods and the forum scripts themselves, and add another level of security by simply password protecting admincp and modcp using your web servers http_auth functions. Then keep modcp and admincp where they belong.

Now your crackers have to first guess your web authorization and secondly they have to get past your script authorization. It's unlikely.

Your bug comments are good to know cfish. In this case, hopefully you can wait until 2.x to get past these issues. Hopefully the trade off in reduced spam is worth it. In 2.x we will be removing those functions and making it one stop shopping from the postbit to delete, soft delete, ban etc so the need for admin or mod panels will be bypassed completely and productivity will be increased by just doing the dirty work on the front-end of the forum not the back.
Reply With Quote
 
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01130 seconds
  • Memory Usage 1,762KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD_SHOWPOST
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_box
  • (1)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit_info
  • (1)postbit
  • (1)postbit_onlinestatus
  • (1)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • reputationlevel
  • showthread
Included Files:
  • ./showpost.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showpost_start
  • bbcode_fetch_tags
  • bbcode_create
  • postbit_factory
  • showpost_post
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • showpost_complete