Compdigitec Labs

« | Home | »

phpBB force login hack

By admin | December 16, 2008

To set up a private forum in phpBB, you could simply make all the forums “No Access” to guests and bots. But if they can still view your member list and profiles, that is a security leak. Here is a patch to remedy that by forcing the guest or bot to login before they can see the forum:

  1. Open up index.php from your phpBB installation.
  2. After line 25 (“$auth->acl($user->data);“), add the following code:
    // Hack to disable anonymous viewing
    if ($user->data[‘user_id’] == ANONYMOUS || $user->data[‘is_bot’])
    {
    login_box();
    } else {
  3. After the line “page_header($user->lang[‘INDEX’]);“, add the following code:
    // end hack to disable anonymous viewing
    };
  4. Re-upload index.php to your web server. Don’t forget to clear your cache and log out to see the effect.

If you found this article helpful or interesting, please help Compdigitec spread the word. Don’t forget to subscribe to Compdigitec Labs for more useful and interesting articles!

Topics: PHP | 6 Comments »

6 Responses to “phpBB force login hack”

  1. Adam Parkzer Says:
    December 13th, 2009 at 14:55

    This actually works! I just wasted about 15 minutes searching around for a modification that would do the job for me, when all I needed to do was manually add a few lines of code. Thanks for the useful post.

  2. iracruz Says:
    October 30th, 2010 at 10:30

    Hack again?!

  3. Pedro Henrique Says:
    February 11th, 2013 at 11:22

    Great! It really works!

  4. ufabet Says:
    August 27th, 2021 at 18:13

    … [Trackback]

    […] Read More to that Topic: compdigitec.com/labs/2008/12/16/phpbb-force-login-hack/ […]

  5. vegan meal plan 1200 calories Says:
    September 29th, 2021 at 12:57

    … [Trackback]

    […] Find More Information here to that Topic: compdigitec.com/labs/2008/12/16/phpbb-force-login-hack/ […]

  6. dried shrooms Says:
    October 8th, 2021 at 02:59

    … [Trackback]

    […] Find More here on that Topic: compdigitec.com/labs/2008/12/16/phpbb-force-login-hack/ […]

Comments