Version: 1.0.0, by Deaths
Developer Last Online: Mar 2009
Version: 3.0.7
Rating:
Released: 04-05-2005
Last Update: 04-05-2005
Installs: 5
DB Changes
No support by the author.
PM Encryption v 1.0.0
As requested by Sully02, here: https://vborg.vbsupport.ru/showthrea...780#post636780
This nifty little hack encrypts your user's (and your), PMs when sent, and unencrypts them when they are read !
It also supports the downloading of the PMS, all PMs downloaded will be unencrypted.
Creator: Deaths
Live Demo: Theres nothing to see.
Screenshots: Nothing to see.
Support is in this thread, and preferably at vBadditions.com
I have included an Installer, which will encrypt all previously sent PMs!
Tested on 3.0.7, should work with all 3.0.x's.
Stats:
Files to Edits: 1
New Files: 0
Templates to edit: 0
Templates to add: 0
Dont underestimate this hack though, its not a mini-mod .
Follow the instructions in the install file, and everything should go just fine .
and use a JavaScript (client side) on the fly decryption?
I think something like a public and private password: RSA?
public password is stored in database, so anyone can crypt the message using adressee public pass.
When the message is ready to be decrypted and the user open it, a javascript prompt ask him the private password.
Then a function will decrypt client side the crypted message.
That made a whole lot of sense right there... seeing how the admin would have to install this in the first place to prevent himself, the lame admin, from reading pms... uh huh
The encryption works for storing it in the database, but when you reply to a private message, the text in the quote box is the encrypted message.
Edit - Removed quote so as not to confuse posters... I'm so used to the quote not showing up by default on my board.
Another thing I notice... When it quotes a previous PM in a reply, it has trouble parsing the apostorphes... They show up, but they are preceded by several slashes. I assume that's a side effect of the encoding.
I think PM encryption is one of the things that jellsoft may have thought about and decided it is pointless. If someone has access to your database they could do far worse than read private messages. Unless obviously it is the Administrator, But he/she could easily read the 'encrypted' message if they so desired.
If a user recieves a private/personal message they could always download it and delete the message. (Is the row in the database removed when the recipient and sender delete the message?).
Privacy depends on what your forum is about. For example if your userbase was largely under 13 years old and there were a few 40-50 year old males on your board then it may be prudent to actually check or screen messages. Obviously that is a stereotypical example and I am not saying that all 40-50 males are seedy... Rather it would be odd if they were on a board dominated by younger people.
Anyway it is a good idea though not really that useful...
Privacy depends on what your forum is about. For example if your userbase was largely under 13 years old and there were a few 40-50 year old males on your board then it may be prudent to actually check or screen messages. Obviously that is a stereotypical example and I am not saying that all 40-50 males are seedy... Rather it would be odd if they were on a board dominated by younger people.
your're right, of course.. and..
Quote:
Originally Posted by zsdave
Privacy depends on what your forum is about.
But this is a coder forum and we like to talk about algos, vb coding technics and beer!
(not enought women around here... )