|
From: SourceForge.net <no...@so...> - 2012-04-09 21:30:01
|
Feature Requests item #2190501, was opened at 2008-10-23 15:27 Message generated for change (Settings changed) made by christian_boltz You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=937967&aid=2190501&group_id=191583 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: None Group: SVN (please specify revision!) >Status: Closed >Resolution: Wont Fix Priority: 1 Private: No Submitted By: Christian Boltz (christian_boltz) Assigned to: Nobody/Anonymous (nobody) Summary: Superadmin should not be able to delete or disable himself Initial Comment: A superadmin should not be able to shoot himself in the foot^W^W^W^W^Wdelete or disable himself (in the list/edit admin section) because this will lock him out of postfixadmin. This can be done by a) not showing the delete link for the currently logged in superadmin b) like a, but at server side before deleting the admin c) while editing an admin, unchecking the superadmin checkbox should be impossible for the currently logged in superadmin d) c) should also be checked server-side ---------------------------------------------------------------------- >Comment By: Christian Boltz (christian_boltz) Date: 2012-04-09 14:30 Message: I don't remember someone asking for help how to re-create an accidently deleted superadmin account, and with setup.php it is quite easy nowadays. In other words: no need for additional protection ;-) (This doesn't mean I'll reject a patch for AdminHandler if someone is bored enough ;-) ---------------------------------------------------------------------- Comment By: Christian Boltz (christian_boltz) Date: 2010-06-22 14:40 Message: e) use bullet-proof shoes ;-) Seriously: setup.php can easily create a new superadmin - therefore the reason to implement self-protection has gone to nearly zero. I'm lowering the priority to lowest. I'll accept patches, but I won't implement it myself. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=937967&aid=2190501&group_id=191583 |
