Private Messages Enhancements - Read Your Members Private Messages (v1.2)

First of all, I take no credit for this hack as its original coding and design is product of Scott And Xiphoid as shown in:

https://vborg.vbsupport.ru/showthread.php?t=59617

This hack is merely a bug fix and feature fix, as when I originally used the script I noticed a lot of small visual problems as well as misc other things.

Lots of the linking was a bit messed up, when you read peoples PM's you couldnt tell who they were from, it only shown who they were to etc.. Just a lot of stuff, I added who they were sent from, and sent to and clicking on the names take your to Their inbox instead of their userinfo section in the Admin Panel etc..

So yes, they get all the credit, I just thought people would want the bug fixed version. If scott or xiphoids wants to take this thread down, and stick the script in their original thread - fine by me.

Enjoy, and thanks you for making it first, lol.

[zetetic]

Quote:

Originally Posted by JTMON

You may want to read the 10+ pages discussing it on the original release in the 2.2 section or the 3.0 release in this section....I originally requested it a long time ago and many people find it useful for MANY different reasons.

Okay I just read the 17 page thread in the 2.2 section and the 7 page thread in this section. I'm disappointed by what I saw, but not at all surprised. It is sadly typical in such situations that only a small handful of people will take a stand against undermining civil liberties such as protection of personal privacy while many others will eagerly trample others rights in favor of maximizing their personal power and control.

Ethical arguments aside, there was no reasonable challenge to Bira's legal points, either. And no, I don't consider your "phpMyAdmin does the same thing" argument effective. As Bira pointed out, you install this hack to read PM's, period. The odds are slim that you install phpMyAdmin for that sole purpose. I strongly encourage anyone who reads this to heed Bira's advice and forewarn their users that their PM's are not private if this hack is installed.

And lastly, the only somewhat reasonable arguments I read in either of those threads (i.e. prevention of spam, porn, warez, and threats) can now be easily handled by simply requesting that your users forward any such PM's to the administration, given the fact that "forward" is now a built in feature that wasn't available when these points were first made.

So with all this in mind, do you have any other justification for enabling easy access to your user's PM's?

[ixian]

Quote:

Originally Posted by tmhall

Okay I just read the 17 page thread in the 2.2 section and the 7 page thread in this section. I'm disappointed by what I saw, but not at all surprised. It is sadly typical....

The only thing sadly typical is that you read through all that and still decided your opinion was special enough to make another post about it in another thread AGAIN.

The major point all of you guys are missing is that NO ONE CARES. All this hypothetical debate does is demonstrate the absolute height of internet nerdism. Jesus but this stuff gets old.

In short, please take your arguments to one of the other threads. Thanks.

[Lionel]

I don't think it is a good idea to criticize any hack and question its morality as everyone has his own needs.

Someone ought to be crazy to sit and go to its members PM. But there will be situations sometimes where you need to access records (that's how I view those PM), not necessarily to snoop around. Then what do you do? Go to mysql? I'll be silly to deny yourselves with fast access to those records.

Someone who is sick enough to snoop on people can do so by accessing the database. He'll be compelled to do it with or without this hack.

As administrators, you have some responsibilities. The same way that you will not be snooping your mysql, I don't see why you will have to do so because of a hack.

I think that if the author renames this hack to "quick access to all pm" instead of "read your members pm" it would have caused less roar.

[Dean C]

What you are saying is correct tmhall However, as long as you let you users know then it's perfectly legal

[Lionel]

shouldn't users also know that you can easily access them thru mysql?

[Dean C]

It's not a case of what the user should know. I hardly think that a 10 year old new to the internet who just found a UnrealTournemant forum via a search would know anything about MySQL

It's your legal responsibility as site owner to have a privacy policy to cover yourself and explain the usage of data on your site

[Odysseus]

This is a despicable hack and I cannot understand why vb.org administrators can allow it.

There is a reason why "private messages" are called "private". And it's NOT valid to say that the admin can read them easily with phpMyAdmin - this is so because it cannot be avoided. But the hack even encourages an admin to read PNs!

I doubt that this is even legal in most countries ...

[???`S?LV?R???`]

awesome, this hack will be good for security measures

[kall]

Quote:

Originally Posted by Odysseus

This is a despicable hack and I cannot understand why vb.org administrators can allow it.

There is a reason why "private messages" are called "private". And it's NOT valid to say that the admin can read them easily with phpMyAdmin - this is so because it cannot be avoided. But the hack even encourages an admin to read PNs!

I doubt that this is even legal in most countries ...

Personally, I couldn't ethically justify ever installing or using this hack, however there have already been pages and pages of debate on this subject.

It is the individual admin's choice to install it or not, and the debate just circles and circles.

[Floris]

Quote:

Originally Posted by Trigunflame

Well

1. I didnt ask because this is not an altogether new thing, its just a bug fix
2. If he doesnt like it, he can get it removed.
3. Most of the code is based solely on vbulletins built in queries that it uses to handle fetching pm's so the only real code modification is that of allowing you to view a particular list of them via an id variable. Technically "making" my own version, would not be feasible as there is really only 1 way as to which to get pm's from a db in the manner in which is needed..
4. Seeing as your a relatively new member, I really dont need to be getting rules from you, thanks.

If this is a bug fix, why didn't you contact me or scott about it so we can release an update and credit you for the bug fix? Now we have 2 threads, nothing but confusion.

If you'd have asked me, I would have said 'yeah sure, go ahead', now I just shrug and leave it to the site staff to process.