tranceandy

Hopefully it was just a little omission and would be good to have it added

You mean like I'm trying to do with the secondary groups? That would be nice. Doubt it'll make it into the 3.0.x series. But definitely for that if it will allow me to set a group to Admin (but very limited access) and then grant them permissions based on the masks I apply to them.

I think we are on the same lines I doubt it would make it for 3.0.x release too but look forward to seeing it in the future if IPS think it is worthwhile

Could even have some pre-defined masks (to get you started), such as member editing, forum editing, emoticon/bbcode and skin/language.

That would definately be a great help in setting up access

You can do that by means of restricting the groups themselves. I was planning to make it so that as I gave an admin more responsibility/trust, I would add another secondary group to their name to open up more functions to them. However, it works in reverse, where you would have to set up groups that REMOVE/DENY access for a function/set and apply it to them before hand and then remove the things you want to grant them access to.

Be nice if it worked where it would give access instead of denying it.

Yes I am aware you can do that by groups, what I am meaning is having different permission masks similiar to the forum permissions :)

Good improvements suggested

What I would like to see is permission masks for the Admin CP, so you can have easily have different settings for different groups of admin :)

I too am running Windows 7 with IE8 but don't have these problems you are showing

I was reading the Wordpress Whitepaper v1.2 at BlogSecurity.net and read some useful tips to making Wordpress more secure. My question is could/would any of these recomendations make IPB more secure? I have also included what I know about already :D

For example:

[*]They mention when creating the database user to only give GRANT SELECT,INSERT,UPDATE,DELETE,CREATE,DROP permissions. Is this the same for IPB?[*]With regards to the sql tbl prefix:

$INFO['sql_tbl_prefix']   = '';

Is this safe to have blank, just something like ibf_, ipb_ etc or would it be better as they suggest to have something more random i.e 95MkN8 to prevent database injection threats?[*]They also have the ability for generating secret keys at which creates something like this for Wordpress.

https://api.wordpress.org/secret-key/1.1/

define('AUTH_KEY', 'l4Zyc=XP3D4C1b`#k~Zj1TYh,dT/C/:9+{wx,ZhVXI]8!O7VIXDjs]iPhpPx[zmp'); define('SECURE_AUTH_KEY', ')EU[Nf`FRl9mYvh4Xzc.h:2DI`Jv-v!5l27d=]Ks1K$f{}3z/|a:o-d2pedu.Dyq'); define('LOGGED_IN_KEY', 'Z/=ujR`e^1fuGnb[4} 4FP!ASkozQ~>(!~Xbd@4coz-Kp ,07%|O;_xSWw`p13&m'); define('NONCE_KEY', ' g-y+$I&WBL?nD4.;Xw<f:x|*36FDEn9<)D<6EFO~vE_BlN6Uta?F2Y_`(]dQD-L');

I think IPB has something like this from what I remember but wasn't too sure so thought I would mention it [*]Creating a very secure password for the Admin CP, FTP, MySQL etc goes without saying but how many people actually do? I generate a 16 alphanumeric password with special characters included.[*]Restrict access to the Admin CP by:

Renaming the folder and changing the new name in the initdata.php file i.e

define( 'CP_DIRECTORY', 'XP3D4C1b' );

CHMODing the directory to 501 as suggested:

You are secured. To improve this, change CHMOD of your renamed admin directory to 501.

Restricting access by requesting a password using .htpasswd and .htaccessRestricting access to it by entering static IP addresses of those admins who have permission to it.

What do you think of these ideas? Please give your feedback as I am sure it will benefit many IPB owners and administrators :D

I know we have talked about this already but just to add publically, I think it would be a great idea if it was easy enough to do. I suppose it could be easily reset like the demo board here. I am sure it would help a lot of people understand for installing applications/hooks etc.

I would think this could be open to abuse and best in the Admin CP. Especially with it protected by renaming the folder, htaccess and/or htpasswd :)

The licence key was something that was used before.

I would very much like to be able to disable post reputation in the off-topic forums, so that reputation is based on supportive posts to users needing support in our ostomy-support forums, rather than from posting cute pics of the dog with a toy in the off topic forums.

Great suggestion :D I am sure it just got missed as IPB is wonderful for giving the Admins settings to customise to their needs.

Another possible feature, which would be useful in cases of the reputation system being abused is a setting that lets ONLY the Original Poster being able to vote as to which replies/posts have been useful to them.

Personally I like it the way it is as it enables other members who have found a post useful too.

XML/HTML/PDF if possible would be great :D

That would be a suggestion for IP.Tracker, IP.Board has the functionality built in to it to allow this already, apps (like IP.Tracker) just need to tie into that.

You'd have to ask the community resources team for that - that's not something with ipb (and IPB does make it possible)

Thanks both of you in helping me understand the new functionality and how it ties in together :D

Links, Shoutbox, Downloads, Wiki's, FAQ's, FBI, CIA, FDA, IRS, DEA, SSA, FAA, FCC, FTC, etc.

OK OK :P

With a custom option of choosing which modules aslong as it's not the FBI, CIA etc

Just done a search for Tracker in this topic but nothing found...

So I would like to suggest that the View New Content link shows new Tracker posts too aswell as Help Files, Forums, Members, Blogs, Calendar and Gallery :)

I wanna a detailed documentation, like how hooks works, how make skin, and BBCode using php.

That is more developer documentation which you can find on the resources site and I believe documentation for that is to follow


The Admin CP help as far as I know is more about the setting of IPB :D

If we're going to go with "today's standards" instead of what the site owner wants, why doesn't IPB just offer the option of having both? The way Wikipedia does. The text link opens in the same window, but is followed by a small icon that gives someone the option of opening the link in a new window.

That's really what "today's standard" is, because not every device used to surf the internet has a right mouse button, let alone a middle button. Or, indeed, any buttons at all.

It does It's in the Admin CP :)

Although I do like the idea of the little icon next to the link

Thank you Andy.

I am considering to renew the support so that I can access the resources website.

Btw, what is peer-to-peer tech. support?

Is that mean active customers supporting active customers?

No problem Ballet and as Rikki reminded me documentation is in the Admin CP :)

Yes the peer-to-peer tech. support is active customers supporting active customers :D

Sorry Rikki, I should have remembered that

Documentation hasn't been released yet and is still being worked on from the last I read. You may find the resources website useful until then or ask in the Peer-to-Peer Technical Support forum :D

I see that new private conversation - messenger system does not allow to archive the messages via email anymore. Why this feature it's been disabled?

Hopefully it will come back if it is possible as some people like to keep their messages when their all full up

Hold the scroll wheel and drag up about 6 inches. Release.

OK if you have a middle mouse button Thankfully, I do

Then middle-click.

That's what I do except when I aren't using a mouse without a middle button

You could Brandon but if you have your hand on your mouse then you have to move your hand of it, too much like hard work

Sat0ri, for IPB support, you need to ask for support question in the IPBoard Peer-toPeer Technical Support forum.

Please see the forum rules that appear at the top to help you :)

IP.Board Feedback

Do you need technical support?

You can obtain support via

the client area

, or you can try to obtain peer-to-peer support at

IPS Resources.

Did you find a bug in IP.Board?

If you believe you've found a bug please post it to the

bug tracker

.

Have a suggestion or feedback?

Post it here. Thanks!