Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
 Password:
Save Password
Forgot your Password?

 All Forums
 Help Groups for Snitz Forums 2000 Users
 Help: General / Classic ASP versions(v3.4.XX)
 Login information for 3.4.03 version		  New Topic  Topic Locked
 Printer Friendly
Author Previous Topic Topic Next Topic  

gcoleman
New Member

USA
55 Posts
Posted - 27 December 2007 :  22:30:35  Show Profile
Hello all,

I have my forum set up so they usually have to log into a password protected part of my website to be able to login to the forum. Tonight I logged in to check things and noticed 20 users waiting to be authorized. I wondered how this could be done because each time I tried to login I got the message that I did not have permission and to go back and log in properly. I then noticed that if I just typed in (this part is made up for security)/forum/login.asp?target=default.asp it would bypass the security part and let a new user register! How can I stop this??

Thanks for any suggestions

gary b
Junior Member

USA
267 Posts
Posted - 28 December 2007 :  00:22:45  Show Profile  Visit gary b's Homepage
Here are some thoughts from a relatively new user:

Having a protected (passworded) website does not 'enclose' the forum in the website security. By default, Snitz forum are installed in the <domainName>/forum/ directory.

It doesn't take much experience to realize that, if abc.com has a Snitz forum, it is probably at www.abc.com/forum/ So by simply typing in a (any?) forum URL as you did takes you to the FORUM login page. Alas, the 'Register' link is clearly visible and accessible. The partial URL in your post (when adjusted for domain) takes me to the equivalent page on my forum.

The links at the top of the Snitz page are created in inc_header.asp. If your website login does (or can!) create session variables, you could embed an If.. Then test in inc_header.asp that looks for the session variable. Incorrect or absent variable results in no 'menu' being displayed. Ta da! No registration... Better (?) yet, no variable redirects to website login page...

But again, a caveat! I am relatively new so there may be an easier way. Did you use this forum's search to look for similar topics?

gary b
Go to Top of Page

ruirib
Snitz Forums Admin

Portugal
26364 Posts
Posted - 28 December 2007 :  05:42:33  Show Profile  Send ruirib a Yahoo! Message
The login requirement does not prevent registrations, in fact it "encourages" them. If you want to stop registrations, set Prohibit New Members to On in Admin Options->Main Forum Configuration.

Snitz 3.4 Readme | Like the support? Support Snitz too
Go to Top of Page

gcoleman
New Member

USA
55 Posts
Posted - 28 December 2007 :  23:20:27  Show Profile
Thank you ruirib, you have solved my dilema.

g
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Topic Locked
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.36 seconds. Powered By: Snitz Forums 2000 Version 3.4.07