Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > vBulletin 2.x > vBulletin 2.x Full Releases

Reply
 
Thread Tools
Details »»

Version: , by Scott MacVicar Scott MacVicar is offline
Developer Last Online: Mar 2016 Show Printable Version Email this Page

Version: 2.2.x Rating:
Released: 11-22-2001 Last Update: Never Installs: 122
 
No support by the author.

After some requests and a debate in the requests forum I've finally finished the majority of this hack. It allows the admin to find a user via the current method in the control panel then click view user's pm's. They are then shown all the pm's in the users folders.

Includes admin logging and is designed to use the cp.css file which is already used by the control panel. I considered adding a search feature but it would be hard without indexing all of the pm's the way vBulletin already does. This means it would be a very limited search.
You can also now select which admins can view user pm's this is done the same way that restriction to the adminlogging is done, the variable is at the top of pm.php

This hack involves uploading pm.php to the admin directory then following the instructions which requires you adding the two links within /admin/user.php

Updated 25th November 2001 @ 22:39

Update was to fix broken smilies by disabling them and to show pm's in all folders not just the inbox. To update simply upload pm.php to your admin folder again.

Scott

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #82  
Old 11-30-2001, 02:47 AM
JTMON's Avatar
JTMON JTMON is offline
 
Join Date: Oct 2001
Posts: 279
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

[QUOTE]Storing information on your server is passive. It is reasonable that a service provider will have the information stored on its server, and therefore it is reasonable to assume that someone with access could view that information.

However, once you take measures that actively violate the privacy of a user -- for example, install software that will allow you to read their personal communication - you are no longer within the bounds of "reasonable violation".

Reply With Quote
  #83  
Old 11-30-2001, 02:51 AM
bira's Avatar
bira bira is offline
 
Join Date: Nov 2001
Posts: 387
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

JTMON, you KNOW your ISP has your e-mails on their server, right?

You KNOW that any admin with root access to the mail server can log on and read your mail with a simple text editor, right?

But,

1) You also know your ISP pledged not to do that; and
2) If you found out anyone in your ISP did do it without your permission, you'd sue them and win.

Here, you are not pledging not to do it, in fact you are taking active steps to indeed do it, while at the same time de facto misleading your users ('clients') to believe their right to privacy is kept.
Reply With Quote
  #84  
Old 11-30-2001, 02:53 AM
bira's Avatar
bira bira is offline
 
Join Date: Nov 2001
Posts: 387
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

p.s.

No one can sue you for the fact that you could read his PMs, they'd have to prove you have in fact read them or had intent to do it.

By installing this hack you are exposing yourself to a lawsuit because the intent is there.
Reply With Quote
  #85  
Old 11-30-2001, 02:56 AM
JTMON's Avatar
JTMON JTMON is offline
 
Join Date: Oct 2001
Posts: 279
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

What can I say. It's the actuall action that could possibly lead to trouble. If this hack wasn't here. Anyone could use the same argument for myPHPAdmin. That software is installed for the reason of accessing the info in the database, this info could be private and you'd fall into the same trap.
Reply With Quote
  #86  
Old 11-30-2001, 03:01 AM
bira's Avatar
bira bira is offline
 
Join Date: Nov 2001
Posts: 387
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

well, if someone could prove in a court of law that you installed phpMyAdmin primarily or solely for the sake of viewing private communication without prior consent or alarm, you would be right.

However, proving that a hack called "Admins can view user's PMs" was installed solely or primarily for the sake of viewing private communication is much easier
Reply With Quote
  #87  
Old 11-30-2001, 06:31 AM
Scott MacVicar Scott MacVicar is offline
 
Join Date: Oct 2001
Location: Glasgow, Scotland
Posts: 1,199
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Hey its private property, there using your resources and your vBulletin you can do what you like.

I don't see hotmail with it in there privacy statement, but if someone abuses the hotmail account you forward the message to abuse@hotmail.com and they check the account to see if they have been abusing it... Whats the difference with this hack?

people send you emails about abuse, you check the pm account and if you find abusive emails, you deal with it.

Scott
Reply With Quote
  #88  
Old 11-30-2001, 08:18 AM
bira's Avatar
bira bira is offline
 
Join Date: Nov 2001
Posts: 387
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

[QUOTE]Originally posted by PPN
Hey its private property, there using your resources and your vBulletin you can do what you like.

I don't see hotmail with it in there privacy statement, but if someone abuses the hotmail account you forward the message to abuse@hotmail.com and they check the account to see if they have been abusing it... Whats the difference with this hack?

people send you emails about abuse, you check the pm account and if you find abusive emails, you deal with it.

Scott
Reply With Quote
  #89  
Old 11-30-2001, 08:26 AM
Crinos's Avatar
Crinos Crinos is offline
 
Join Date: Oct 2001
Location: Los Angeles, CA
Posts: 151
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Touch?
Reply With Quote
  #90  
Old 11-30-2001, 09:16 AM
Nam's Avatar
Nam Nam is offline
 
Join Date: Oct 2001
Location: NY
Posts: 206
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

[QUOTE]MSN does not read any of your private online communications. Your MSN Chat conversations, MSN Messenger messages, Hotmail e-mails, and MSN Internet Access e-mails are completely confidential.
Reply With Quote
  #91  
Old 11-30-2001, 10:11 AM
bira's Avatar
bira bira is offline
 
Join Date: Nov 2001
Posts: 387
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Nam, I won't go into further discussion over what MSN does or doesn't do. The point is, they actually write very clearly what they will or will not do and under what circumstances.

Some of the people here (I'll refrain from point at specifics, you figure it out) who argue most vehemently in favour of doing whatever they bloody want on their server, don't even have a PRIVACY STATEMENT on their BB. That's how seriously clueless they are about users' most basic rights.

Anyway, end of my part in this discussion.

I was posting to assist those who are perhaps misinformed and could appreciate a legal advice on the matter. not those who want to do something knowingly and with malice.

(and again, this is NOT a statement against the hack, it's merely an advice what to do if you install it).
Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:36 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05826 seconds
  • Memory Usage 2,302KB
  • Queries Executed 25 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (11)post_thanks_box
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete