Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 Snitz Forums 2000 MOD-Group
 MOD Add-On Forum (W/O Code)
 Sin Bin Mod
 New Topic  Reply to Topic
 Printer Friendly
Next Page
Author Previous Topic Topic Next Topic
Page: of 2

secretsquirrel
New Member

Australia
81 Posts

Posted - 09 May 2007 :  02:03:08  Show Profile  Visit secretsquirrel's Homepage  Reply with Quote
Have looked but then again i'm a blind squirrel.
Is there a sin bin mod or could one be made?
I would like something so problem members could be sin binned for a certain time, say 2 weeks or 4 weeks depending on Admin or Moderators decision. During this time they will be able to read the forum but not post. Would also like it to send an email to that member with a place for Admin or Mods to put an explanation why they have been binned.<

Anyone who says a square peg does not fit into a circular hole has never seen a crazy bítch with a hammer

MarcelG
Retired Support Moderator

Netherlands
2625 Posts

Posted - 09 May 2007 :  03:49:50  Show Profile  Visit MarcelG's Homepage  Reply with Quote
Sin Bin ? Ah, I see....you might want to try and search for the probation mod. Sounds similar.<

portfolio - linkshrinker - oxle - twitter
Go to Top of Page

AnonJr
Moderator

United States
5768 Posts

Posted - 09 May 2007 :  06:30:48  Show Profile  Visit AnonJr's Homepage  Reply with Quote
Either that or you could use the UserGroups MOD to set up a "Read Only" group and move them there. They wouldn't be moved out until you manually moved them out though.<
Go to Top of Page

secretsquirrel
New Member

Australia
81 Posts

Posted - 09 May 2007 :  10:56:50  Show Profile  Visit secretsquirrel's Homepage  Reply with Quote
Thankyou for the help. I've been thinking about the UserGroups mod so this would be a good reason to put it in.<

Anyone who says a square peg does not fit into a circular hole has never seen a crazy bítch with a hammer
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 15 May 2007 :  13:43:29  Show Profile  Reply with Quote
Usergroups mod won't work for this if your members are smart.

If logged out, members can click on the "post link", enter their username and password, and still post...<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

Jezmeister
Senior Member

United Kingdom
1141 Posts

Posted - 15 May 2007 :  14:01:37  Show Profile  Visit Jezmeister's Homepage  Reply with Quote
simply adding usergroup checks to the normal checks in post_info would get around that fairly easily, very quickly and roughly simply adding the check to where post_info redirects non-members would get around it.<
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 15 May 2007 :  14:18:32  Show Profile  Reply with Quote
Could you please provide the code for that? Pretty please?<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

Jezmeister
Senior Member

United Kingdom
1141 Posts

Posted - 15 May 2007 :  14:41:05  Show Profile  Visit Jezmeister's Homepage  Reply with Quote
Erm, I just downloaded the usergroups mod from this topic and it already covers that... the first instance of usergroups in post_info.asp prevents anyone banned from a forum from posting...<

Edited by - Jezmeister on 15 May 2007 14:45:17
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 15 May 2007 :  14:50:28  Show Profile  Reply with Quote
I downloaded the same one, and it didn't have that...

What code exactly is supposed to prevent this?<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

PPSSWeb
Junior Member

312 Posts

Posted - 15 May 2007 :  14:55:42  Show Profile  Reply with Quote
quote:
Originally posted by CalloftheHauntedMaster

What code exactly is supposed to prevent this?



	if isReadOnly(Forum_ID,MemberID) = 1 then
		Go_Result "Your access to this forum is read-only"
	end if
<
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 15 May 2007 :  16:14:44  Show Profile  Reply with Quote
Nope, this code doesn't prevent the problem.

Let me give you an example.

Go here: http://www.schoolofduel.com/bbs/forum.asp?forum_id=18

Log in as
Username: Test Account
Password: Snitz

Trying post while logged in, you can't. Now, log out and manually try to post where you enter your password and username separately each time when prompted. Then, you can still post all you want. How can this be fixed?<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

Jezmeister
Senior Member

United Kingdom
1141 Posts

Posted - 15 May 2007 :  16:24:31  Show Profile  Visit Jezmeister's Homepage  Reply with Quote
Ah I see, because the login isn't done "properly" and is instead processed by post_info.asp you need to add a second check for usergroup which is usually done in inc_header (because at the time there's no member ID) try this (edit, this should work, I think, note I'm assuming from code in this page and inc_header this is enough - i could be wrong but worth a shot)

in post_info find:
if not(IsNull(strSelectSize)) and strSelectSize <> "" then 
if strSetCookieToForum = 1 then
Response.Cookies(strUniqueID & "strSelectSize").Path = strCookieURL
else
Response.Cookies(strUniqueID & "strSelectSize").Path = "/"
end if
Response.Cookies(strUniqueID & "strSelectSize") = strSelectSize
Response.Cookies(strUniqueID & "strSelectSize").expires = dateAdd("yyyy", 1, strForumTimeAdjust)
end if


add this below:
if mLev < 1 and strDBNTUserName <> "" then
'Get userid from strdbntusername
strSql = "SELECT * FROM "& strTablePrefix &"MEMBERS WHERE M_NAME='"& strDBNTUserName &"'"
rsid = my_Conn.Execute(strSql)
MemberID = rsid("MEMBER_ID")
set rsid = nothing
End if
<

Edited by - Jezmeister on 15 May 2007 16:37:23
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 15 May 2007 :  17:04:16  Show Profile  Reply with Quote
Tried it and it doesn't solve the problem...<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

Jezmeister
Senior Member

United Kingdom
1141 Posts

Posted - 15 May 2007 :  17:17:50  Show Profile  Visit Jezmeister's Homepage  Reply with Quote
ok, i've never actually used the usergroup mod before so it was a shot in the dark really, if someone else doesn't I'll try and have a proper look at it later, 2 exams in 2 days now though so I should probably concentrate on them heh

btw, it's not gonna be possible to allow the existing code to be used, due to the fact all the functions in inc_func_common are relying on cookies... I also don't quite understand how this works, or at least where the useful data is stored - is the allowed usergroups table confusingly named? the only way to do this is going to be a series of queries, starting off fairly easily... bah I'll have a go at this when I have some time to get to grips with whats doing what.<

Edited by - Jezmeister on 15 May 2007 17:31:31
Go to Top of Page

CalloftheHauntedMaster
Junior Member

289 Posts

Posted - 16 May 2007 :  21:12:25  Show Profile  Reply with Quote
Good luck on your exams.

In terms of the mod, I would think that a username check via the database would be necessary.

Unlogged member is about to post. In post_info.asp, the code checks the username with the database. If it's not in there, the post proceeds since the person isn't even a member. However, if the username has a database field, then that field is cross-referenced with the usergroup(s) that member is in. Then, a simple permissions check for that usergroup based on the forum is in order. If there are limitations, the post is adjusted accordingly.<

This account was hacked into by Image, a very honest guy as you all can see! Stealing people's passwords is his pasttime. Beware of this, before you register at his forums!
Go to Top of Page

PPSSWeb
Junior Member

312 Posts

Posted - 16 May 2007 :  21:31:58  Show Profile  Reply with Quote
quote:
Originally posted by CalloftheHauntedMaster

Nope, this code doesn't prevent the problem.



Ah, I see now. I didn't understand and test your setup properly. All of my forums are configured as restricted (Registration Required with all forums Auth Type set to Members Only or Allowed Members List). Therefore a non-logged in user can not even view let alone access the forum.
<

Edited by - PPSSWeb on 17 May 2007 09:10:23
Go to Top of Page
Page: of 2 Previous Topic Topic Next Topic  
Next Page
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.12 seconds. Powered By: Snitz Forums 2000 Version 3.4.07