| Author |
 Topic  |
|
secretsquirrel
New Member
Australia
81 Posts |
 Posted - 09 May 2007 : 02:03:08
|
Have looked but then again i'm a blind squirrel.
Is there a sin bin mod or could one be made?
I would like something so problem members could be sin binned for a certain time, say 2 weeks or 4 weeks depending on Admin or Moderators decision. During this time they will be able to read the forum but not post. Would also like it to send an email to that member with a place for Admin or Mods to put an explanation why they have been binned.< |
Anyone who says a square peg does not fit into a circular hole has never seen a crazy bítch with a hammer |
|
|
MarcelG
Retired Support Moderator
Netherlands
2625 Posts |
Posted - 09 May 2007 : 03:49:50
|
| Sin Bin ? Ah, I see....you might want to try and search for the probation mod. Sounds similar.< |
portfolio - linkshrinker - oxle - twitter |
 |
|
|
AnonJr
Moderator
United States
5768 Posts |
Posted - 09 May 2007 : 06:30:48
|
| Either that or you could use the UserGroups MOD to set up a "Read Only" group and move them there. They wouldn't be moved out until you manually moved them out though.< |
|
|
|
secretsquirrel
New Member
Australia
81 Posts |
Posted - 09 May 2007 : 10:56:50
|
| Thankyou for the help. I've been thinking about the UserGroups mod so this would be a good reason to put it in.< |
Anyone who says a square peg does not fit into a circular hole has never seen a crazy bítch with a hammer |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 15 May 2007 : 13:43:29
|
Usergroups mod won't work for this if your members are smart.
If logged out, members can click on the "post link", enter their username and password, and still post...< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
Jezmeister
Senior Member
United Kingdom
1141 Posts |
Posted - 15 May 2007 : 14:01:37
|
| simply adding usergroup checks to the normal checks in post_info would get around that fairly easily, very quickly and roughly simply adding the check to where post_info redirects non-members would get around it.< |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 15 May 2007 : 14:18:32
|
Could you please provide the code for that?  Pretty please?< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
Jezmeister
Senior Member
United Kingdom
1141 Posts |
Posted - 15 May 2007 : 14:41:05
|
| Erm, I just downloaded the usergroups mod from this topic and it already covers that... the first instance of usergroups in post_info.asp prevents anyone banned from a forum from posting...< |
Edited by - Jezmeister on 15 May 2007 14:45:17 |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 15 May 2007 : 14:50:28
|
I downloaded the same one, and it didn't have that...
What code exactly is supposed to prevent this?< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
PPSSWeb
Junior Member
312 Posts |
Posted - 15 May 2007 : 14:55:42
|
quote:
Originally posted by CalloftheHauntedMaster
What code exactly is supposed to prevent this?
if isReadOnly(Forum_ID,MemberID) = 1 then
Go_Result "Your access to this forum is read-only"
end if < |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 15 May 2007 : 16:14:44
|
Nope, this code doesn't prevent the problem.
Let me give you an example.
Go here: http://www.schoolofduel.com/bbs/forum.asp?forum_id=18
Log in as
Username: Test Account
Password: Snitz
Trying post while logged in, you can't. Now, log out and manually try to post where you enter your password and username separately each time when prompted. Then, you can still post all you want. How can this be fixed?< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
Jezmeister
Senior Member
United Kingdom
1141 Posts |
Posted - 15 May 2007 : 16:24:31
|
Ah I see, because the login isn't done "properly" and is instead processed by post_info.asp you need to add a second check for usergroup which is usually done in inc_header (because at the time there's no member ID) try this (edit, this should work, I think, note I'm assuming from code in this page and inc_header this is enough - i could be wrong but worth a shot)
in post_info find:
add this below:< |
Edited by - Jezmeister on 15 May 2007 16:37:23 |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 15 May 2007 : 17:04:16
|
| Tried it and it doesn't solve the problem...< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
Jezmeister
Senior Member
United Kingdom
1141 Posts |
Posted - 15 May 2007 : 17:17:50
|
ok, i've never actually used the usergroup mod before so it was a shot in the dark really, if someone else doesn't I'll try and have a proper look at it later, 2 exams in 2 days now though so I should probably concentrate on them heh
btw, it's not gonna be possible to allow the existing code to be used, due to the fact all the functions in inc_func_common are relying on cookies... I also don't quite understand how this works, or at least where the useful data is stored - is the allowed usergroups table confusingly named? the only way to do this is going to be a series of queries, starting off fairly easily... bah I'll have a go at this when I have some time to get to grips with whats doing what.< |
Edited by - Jezmeister on 15 May 2007 17:31:31 |
|
|
|
CalloftheHauntedMaster
Junior Member
289 Posts |
Posted - 16 May 2007 : 21:12:25
|
Good luck on your exams.
In terms of the mod, I would think that a username check via the database would be necessary.
Unlogged member is about to post. In post_info.asp, the code checks the username with the database. If it's not in there, the post proceeds since the person isn't even a member. However, if the username has a database field, then that field is cross-referenced with the usergroup(s) that member is in. Then, a simple permissions check for that usergroup based on the forum is in order. If there are limitations, the post is adjusted accordingly.< |
This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums! |
|
|
|
PPSSWeb
Junior Member
312 Posts |
Posted - 16 May 2007 : 21:31:58
|
quote:
Originally posted by CalloftheHauntedMaster
Nope, this code doesn't prevent the problem.
Ah, I see now. I didn't understand and test your setup properly. All of my forums are configured as restricted (Registration Required with all forums Auth Type set to Members Only or Allowed Members List). Therefore a non-logged in user can not even view let alone access the forum.
< |
Edited by - PPSSWeb on 17 May 2007 09:10:23 |
|
|
|
Topic |
|
Sin Bin Mod
