In 0.14.5 Users can create a private room, and when
they promote a user that is not in the room, however is
in the main room, the user in the main room gains the
ability to view the IP address of users, and not be
kicked by admins.
Very interesting and makes sense to me. It should be
prevented. I'll take a look.
However, I won't let the power to moderators to see Ip's.
They can report to admins when somebody does anything
wrong. And this is pretty easy: only the whois.cmd.php:
Serach for this condition:
if ($power != "weak")
Change it to:
if ($power == "admin")
I would also limit the abillity for moderators to promote
users only in the room/rooms they are moderators in, not
in all (*)
I want to fix this somehow in the Plus version. Any
comments/suggestions?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Logged In: YES
user_id=1363553
Very interesting and makes sense to me. It should be
prevented. I'll take a look.
However, I won't let the power to moderators to see Ip's.
They can report to admins when somebody does anything
wrong. And this is pretty easy: only the whois.cmd.php:
Serach for this condition:
if ($power != "weak")
Change it to:
if ($power == "admin")
I would also limit the abillity for moderators to promote
users only in the room/rooms they are moderators in, not
in all (*)
I want to fix this somehow in the Plus version. Any
comments/suggestions?