We hope you enjoy your visit.

You're currently viewing our forum as a guest. This means you are limited to certain areas of the board and there are some features you can't use. If you join our community, you'll be able to access member-only sections, and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Registration is simple, fast, and completely free.


Join our community!


If you're already a member please log in to your account to access all of our features:

Username:   Password:
Add Reply
  • Pages:
  • 1
Suggestion: Limit Admin Cp permissions
Topic Started: Jul 27 2010, 05:33 PM (1,931 Views)
○ Mokeli ○
Member Avatar
The one and only
[ * ]
I really think it would be nice if you added a feature that allows you to limit a user admin Cp Permissions.
Offline Profile Quote Post Goto Top
 
Viral.
Member Avatar
Member
[ *  *  *  *  *  * ]
You can add Admin Managers where you can limit users access to only the webpages, and other sections.
Offline Profile Quote Post Goto Top
 
Nemomon
Member Avatar
My dad's a soldier blue I'll be a soldier too
[ *  *  *  *  *  *  * ]
Viral.
Jul 28 2010, 07:27 AM
You can add Admin Managers where you can limit users access to only the webpages, and other sections.
Sure, but we cannot edit their Admin permissions.
Offline Profile Quote Post Goto Top
 
Kevin^
Member
[ * ]
I agree with this. In the former forum package IPBFree you could set what admin powers each admin had. Even in IPB3 there are admin restrictions that you can set.
Offline Profile Quote Post Goto Top
 
ElementalAlchemist
Member Avatar


Someone once suggested this in the form of "more customizable admin assistants." I thought that was a cool idea. :) I figure this is the same idea worded differently. :P
So yes, I believe this would be quite helpful. :)
Offline Profile Quote Post Goto Top
 
Nemomon
Member Avatar
My dad's a soldier blue I'll be a soldier too
[ *  *  *  *  *  *  * ]
ElementalAlchemist
Jul 28 2010, 08:00 PM
Someone once suggested this in the form of "more customizable admin assistants." I figure this is the same idea worded differently. :P
More or less this is not the same idea. Admin Assistants do not appear on Admin List. Admins appear on Admin List. We should be able to customize Abilities of both of that groups. Why? Admin Assistants would be cool to have some "hidden" Admins - Admins that only we know that they exist. If we would remove possibility to see Admin Logs (and we could do that, if we would have customized Admin group), no one but we could see them. Normal Admins could be normal, sometimes even with very limited power.

Again that could be a great ACP protection feature. Even, if some cracker could crack Admin's password, he would do nothing, because that Admin powers would be very limited. Because that Admin would use another ordinary Members group account to administrate his board.
Offline Profile Quote Post Goto Top
 
○ Mokeli ○
Member Avatar
The one and only
[ * ]
Nemomon
Jul 29 2010, 04:29 AM
ElementalAlchemist
Jul 28 2010, 08:00 PM
Someone once suggested this in the form of "more customizable admin assistants." I figure this is the same idea worded differently. :P
More or less this is not the same idea. Admin Assistants do not appear on Admin List. Admins appear on Admin List. We should be able to customize Abilities of both of that groups. Why? Admin Assistants would be cool to have some "hidden" Admins - Admins that only we know that they exist. If we would remove possibility to see Admin Logs (and we could do that, if we would have customized Admin group), no one but we could see them. Normal Admins could be normal, sometimes even with very limited power.

Again that could be a great ACP protection feature. Even, if some cracker could crack Admin's password, he would do nothing, because that Admin powers would be very limited. Because that Admin would use another ordinary Members group account to administrate his board.
Yes thats another way to put it. there would be less hacks to forums. Now we Just have to cross our fingers and hope they Add that feature.
Offline Profile Quote Post Goto Top
 
Pete B
Member
[ *  *  *  *  *  *  *  * ]
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
Offline Profile Quote Post Goto Top
 
Nemomon
Member Avatar
My dad's a soldier blue I'll be a soldier too
[ *  *  *  *  *  *  * ]
Pete B
Jul 30 2010, 07:02 PM
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
Sure, Admin must have secure password. But other security features won't hurt anyone, but they may help. For example, if someone want to access our ACP, and finally he will block us from accessing it for a 1 day. Additional security features are only for that ones, who wants to use them.
Offline Profile Quote Post Goto Top
 
Tom Gale
Member
[ *  * ]
Pete B
Jul 30 2010, 07:02 PM
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
I agree. Just as the real answer to the question of restricting admins is not to appoint co Admins who aren't competent or trustworthy.
Offline Profile Quote Post Goto Top
 
Zedboards
Member
[ *  *  * ]
A secure password is good against many forms of hacking but I don't think it helps against keyloggers, does it?
Offline Profile Quote Post Goto Top
 
Nemomon
Member Avatar
My dad's a soldier blue I'll be a soldier too
[ *  *  *  *  *  *  * ]
So we have two reasons for adding more security features:

- malicious blocking from accessing to the ACP (and ZB don't have failed ACP log-in logs, so we may not know, who is trying to access our ACP)
- keyloggers

So, possibility to transfer Ownership to another account + possibility to set Admin Assistants abilities = very good protection.

Of course that would require some other features, like blank page in ACP (so, our official Admin accounts could see only them, so even if some cracker will crack Admin's password, he will be able to see literally nothing but a blank page) and possibility to disable /profile/admin/. Sure, that's some kind of protection for finding own account, but first:

- it not always is visible to guest/Members (it is using normal Profile page, so if malicious Admin disabled possibility to see it by guests or Members, we aren't able to see it)
- not so many users know about this. I would bet, that on my board if 10 users already know this link, that's all. But experienced crackers know how to use it
- not always we need this or want to be easily catch-able.
Offline Profile Quote Post Goto Top
 
○ Mokeli ○
Member Avatar
The one and only
[ * ]
Pete B
Jul 30 2010, 07:02 PM
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
But when you run a promotion site you will need another Administrator to help but if you demote that admin He already got the link to the ACP and he easily tell someone or random people which could cause a domain change.
Offline Profile Quote Post Goto Top
 
Nemomon
Member Avatar
My dad's a soldier blue I'll be a soldier too
[ *  *  *  *  *  *  * ]
○ Mokeli ○
Aug 1 2010, 08:40 PM
Pete B
Jul 30 2010, 07:02 PM
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
But when you run a promotion site you will need another Administrator to help but if you demote that admin He already got the link to the ACP and he easily tell someone or random people which could cause a domain change.
That's a little another thing. Everyone can have link to Your ACP. It is there: http://s1.zetaboards.com/AdminJunction/admin/ but only people with Admin access can access to it. In fact I never had any domain, so I may not know, if there is another ACP other than board ACP or not.
Offline Profile Quote Post Goto Top
 
Pando-ZNS
Member Avatar
Member
[ *  *  *  * ]
○ Mokeli ○
Aug 1 2010, 08:40 PM
Pete B
Jul 30 2010, 07:02 PM
The best and easiest prevention of getting cracked is having a secure password. Any other features are pointless.
But when you run a promotion site you will need another Administrator to help but if you demote that admin He already got the link to the ACP and he easily tell someone or random people which could cause a domain change.
That's in InvisionFree, not Zetaboards.
Offline Profile Quote Post Goto Top
 
1 user reading this topic (1 Guest and 0 Anonymous)
Go to Next Page
« Previous Topic · Service Discussion and Feedback · Next Topic »
Add Reply
  • Pages:
  • 1