I have had a phpNuke site where the contribution from registered users was in the forum. I had left one forum open to unregistered visitors. I have recently made it members only due to postings with lots of drug related links.
For a long time I have had account requests, often with .ru email addresses, where the confirmation email was never acknowledged to make the account "live". Recently I have had similar account requests but the emails are being acknowledged and so a full account is created. Is this perhaps automatically being done? This is a new thing for my site. I thought it worth mentioning.
As a result I have now started using the security code in the login screen. I had been using the user_info block. Is there a login block that includes the security code and gives a list of logged in usernames?
jakec06 Sergeant
Joined: Jan 30, 2006
Posts: 75
Location: Surrey, UK
Posted:
Fri Oct 27, 2006 12:14 pm
You could try the site info block, which can be found here:
Thanks it looks like that is what I am after, but I have run into a problem with it.
I copied across the various block, language, image and module files after renaming the old user_info block. I then activated the block and my site goes into a recursive redirect. I tried re-naming the php block file and installing as a new block. The same thing happens. It was loading on the left and so was part of the admin page. The admin page was therefore in a loop. I had to use FTP to rename the php file to stop the looping.
Am I doing something wrong in the way I am trying to install the block because of the previous user_info install?
I would like to get a better understanding before trying again because the site is in use.
I am on version 7.8
pmarfell Nuke Soldier
Joined: Mar 21, 2004
Posts: 10
Posted:
Sat Oct 28, 2006 4:56 pm
pmarfell wrote:
...activated the block and my site goes into a recursive redirect.
I have now had a chance to look at the code for the block. There is a config value for patchLevelGE29. The code then builds a redirect based on its value. It is set to TRUE by default. I have no idea what it is referring to so it seemed sensible to set it to FALSE - the block now works.
Thanks.
jakec06 Sergeant
Joined: Jan 30, 2006
Posts: 75
Location: Surrey, UK
Posted:
Sun Oct 29, 2006 12:18 am
I must admit I don't use that block and I'm not sure what that value refers to, but it's good it's now working.
It might be worth finding out what that value does, just incase it comprises your security, or something. I would post a query on the Ravenphpscripts forum, they are usually very helpful.
Thanks for letting us know what you did.
Jakec
Evaders99 Site Admin
Joined: Aug 17, 2003
Posts: 12397
Posted:
Mon Oct 30, 2006 11:59 am
Yes there are robots that will automatically confirm a valid email and start spamming. Also check that they aren't going through the Forums profile registration to register an account
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
