Invision Community 4: SEO, prepare for v5 and dormant account notifications By Matt Monday at 02:04 PM
AshieF73 Posted May 26, 2016 Posted May 26, 2016 Good evening all. Hopefully this is not going to affect anyone else, but this evening I was making a group permissions edit and the software 4.1.12 reset all permissions for all groups to enable everything. Which meant for about five minutes until I noticed banned users, guests etc could view everything, including hidden moderator forums. I assume this is a problem with my database rather than the software, but until I hear back I wanted to suggest all users double check their settings if they have tinkered in the group permissions today.
AshieF73 Posted May 26, 2016 Author Posted May 26, 2016 Thank you so much Adriano. After 10+ years of using IPB forum software that's the first time anything like this happened, and the fact people could see our hidden mods forum is a major issue for me. But this link you provided does explain it and in my case the patch seems to have resolved.
Lab Rats Rule Posted May 27, 2016 Posted May 27, 2016 Is this something we all should do, just in case? Hey I had permission issues in the past where as they were changing on their own, So just call me paranoid... 6 hours ago, AshieF73 said: Thank you so much Adriano. After 10+ years of using IPB forum software that's the first time anything like this happened, and the fact people could see our hidden mods forum is a major issue for me. But this link you provided does explain it and in my case the patch seems to have resolved. The bots can all see your hidden thread names all the time. So be careful what you name them. I often wonder if they can see what is inside also,
MADMAN32395 Posted May 27, 2016 Posted May 27, 2016 6 hours ago, Lab Rats Rule said: The bots can all see your hidden thread names all the time. um. they shouldnt be able to... if they are on your site and you have perms setup correctly sounds like a bug report. afaik my internal threads are not google searchable
Lab Rats Rule Posted May 27, 2016 Posted May 27, 2016 8 minutes ago, MADMAN32395 said: um. they shouldnt be able to... if they are on your site and you have perms setup correctly sounds like a bug report. afaik my internal threads are not google searchable The bots most certainly are able to, IPS even admitted it was impossible to hide them from bots, Go look in your error log, you will find tons of bot hits on your hidden threads.
MADMAN32395 Posted May 27, 2016 Posted May 27, 2016 1 minute ago, Lab Rats Rule said: They most certainly are able to, IPS even admitted it was impossible to hide them from bots, Go look in your error log, you will find tons of bot hits on your hidden threads. yes, that is true, but they hit 404. so the bot is not going to index it.
Lab Rats Rule Posted May 27, 2016 Posted May 27, 2016 Just now, MADMAN32395 said: yes, that is true, but they hit 404. so the bot is not going to index it. Yeah, but wouldn't a prying human be able to see the page names that it hits the 404's on?
MADMAN32395 Posted May 27, 2016 Posted May 27, 2016 1 minute ago, Lab Rats Rule said: Yeah, but wouldn't a prying human be able to see the page names that it hits the 404's on? Show me a non-privileged page (privileged such as Google Webmaster) where you can pull bot data?
Stephen Fortin Posted May 27, 2016 Posted May 27, 2016 This happened to my site as well...And when I go to change perms on the forums....it dosent save the changes. Switch to 4.1.12, updated ips spectrum to 4.1.12
Mark H Posted May 27, 2016 Posted May 27, 2016 2 hours ago, Stephen Fortin said: This happened to my site as well...And when I go to change perms on the forums....it dosent save the changes. Switch to 4.1.12, updated ips spectrum to 4.1.12 Please upgrade to 4.1.12.1, which was released this morning and has a fix for that issue.
Stephen Fortin Posted May 28, 2016 Posted May 28, 2016 9 hours ago, Mark H said: Please upgrade to 4.1.12.1, which was released this morning and has a fix for that issue. My site is showing that there is an update, but no download or update option. I went to /admin/upgrade and is shows that 4.1.12 is the most current version? Is there somewhere I can get this patch?
CalvinK Posted May 28, 2016 Posted May 28, 2016 You need to go to your Admin CP. System -> Applications -> Click on "Check for Updates". That should sort it for you.
Stephen Fortin Posted May 28, 2016 Posted May 28, 2016 https://gyazo.com/a2140734eea78b5ef1e5910d5506337f Am getting that even though im on the master account with access to everything. I need the actual files to download and upload. Its due to my hosting company. I use one and its not very friendly with IPB. https://gyazo.com/0ad22c01f2158369e722239d37169a43 I can usually get everything to work fine however by just uploading FTP.
MADMAN32395 Posted May 28, 2016 Posted May 28, 2016 2 hours ago, Stephen Fortin said: Is there somewhere I can get this patch? if your hosting is struggle-busing allowing the auto updater, you would just fallback onto the old method of downloading your entire suite from the client area here. and just upload it, then once the upload is complete visit yoursite.com/admin/upgrade and should be straight forward at that point.
Stephen Fortin Posted May 28, 2016 Posted May 28, 2016 4 hours ago, MADMAN32395 said: if your hosting is struggle-busing allowing the auto updater, you would just fallback onto the old method of downloading your entire suite from the client area here. and just upload it, then once the upload is complete visit yoursite.com/admin/upgrade and should be straight forward at that point. If I download it right now will the patch be in there?
Stephen Fortin Posted May 28, 2016 Posted May 28, 2016 All good got it all sorted, Thanks for the help guys!
Recommended Posts
Archived
This topic is now archived and is closed to further replies.